Mededeling

Collapse
No announcement yet.

reimage probleem

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • reimage probleem

    Tijdje geleden kreeg ik een melding over de windows installer die niet zou werken en kwam al zoekende op een site van reimage, programma geïnstalleerd en scan gedaan toen bleek dat er fouten in mijn windows 7 zaten en tegen betaling kon men die fouten dan fixen.
    Mijn installer werkte gewoon dus programma met revo uninstaller verwijderd, kortom een valse melding.
    Vorige week windows 10 geïnstalleerd over 7 heen en krijg nu steeds meldingen van reimage en gisteren diep gescand met McAfee total protection en zojuist met malware bytes free gescand die 168 malwares vond die in Quarantenne zijn geplaatst.
    Maar ik heb opnieuw met malware bytes gescand maar er komen weer een een stuk of 4 waarschuwingen terug, dus ergens zit nog steeds iets.

    Heeft iemand een goed advies bvd jimny
    Last edited by jimny; 21-12-17, 03:46.

  • #2
    Wil je aub de uitslagen plaatsen van Mbam en aub ook een logje van FRst zoals verzocht in lees dit eerst

    Windows 10 opstarten in Veilige Modus

    Comment


    • #3
      Hier alvast de Mbam log van gisteren

      Malwarebytes
      www.malwarebytes.com

      -Logboekdetails-
      Scandatum: 20-12-17
      Scantijd: 16:33
      Logbestand: 2137c284-e59b-11e7-bfe1-00269e484625.json
      Beheerder: Ja

      -Software-informatie-
      Versie: 3.3.1.2183
      Versie componenten: 1.0.236
      Update pakketversie: 1.0.3528
      Licentie: Premium

      -Systeeminformatie-
      Besturingssysteem: Windows 10 (Build 16299.125)
      Processor: x64
      Bestandssysteem: NTFS
      Gebruiker: Leo-PC\Leo

      -Scansamenvatting-
      Scantype: Bedreigingsscan
      Resultaat: Voltooid
      Objecten gescand: 347564
      Dreigingen herkend: 168
      Dreigingen in quarantaine: 168
      Verstreken tijd: 11 min, 37 sec

      -Scanopties-
      Geheugen: Ingeschakeld
      Opstarten: Ingeschakeld
      Bestandssysteem: Ingeschakeld
      Archieven: Ingeschakeld
      Rootkits: Uitgeschakeld
      Heuristiek: Ingeschakeld
      POP: Detectie
      POA: Detectie

      -Scandetails-
      Proces: 2
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE, In quarantaine, [1086], [327202],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REISYSTEM.EXE, In quarantaine, [1086], [327181],1.0.3528

      Module: 2
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE, In quarantaine, [1086], [327202],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REISYSTEM.EXE, In quarantaine, [1086], [327181],1.0.3528

      Registersleutel: 28
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\REI_AxControl.DLL, In quarantaine, [1086], [327193],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine.1, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{10ECCE17-29B5-4880-A8F5-EAD298611484}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BD51A48E-EB5F-4454-8774-EF962DF64546}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\REI_AxControl.ReiEngine, In quarantaine, [1086], [327197],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\REI_AxControl.DLL, In quarantaine, [1086], [327193],1.0.3528
      PUP.Optional.Reimage, HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\REIMAGE\PC REPAIR, In quarantaine, [1086], [327204],1.0.3528
      PUP.Optional.Reimage, HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\Reimage, In quarantaine, [1086], [357494],1.0.3528
      PUP.Optional.Reimage, HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Reimage - Windows Problem Relief., In quarantaine, [1086], [327203],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ReimageUpdater, In quarantaine, [1086], [332364],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\REIMAGE PROTECTOR, In quarantaine, [1086], [332504],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\REI_AxControl.DLL, In quarantaine, [1086], [327193],1.0.3528
      PUP.Optional.Reimage, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ReimageRealTimeProtector, In quarantaine, [1086], [327202],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{A3CCDFC6-EA64-4798-990F-618A819A69CE}, In quarantaine, [1086], [332365],1.0.3528
      PUP.Optional.RegUtility, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RegUtility_is1, In quarantaine, [14917], [459130],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, In quarantaine, [1086], [327206],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, In quarantaine, [1086], [332494],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, In quarantaine, [1086], [332494],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}, In quarantaine, [1086], [332494],1.0.3528

      Registerwaarde: 3
      PUP.Optional.Reimage, HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\REIMAGE\PC REPAIR|QUITMESSAGE, In quarantaine, [1086], [327204],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\REIMAGE\REIMAGE PROTECTOR|CFLPATH, In quarantaine, [1086], [332504],1.0.3528
      PUP.Optional.Reimage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{A3CCDFC6-EA64-4798-990F-618A819A69CE}|PATH, In quarantaine, [1086], [332365],1.0.3528

      Registerdata: 0
      (Geen kwaadaardige items gedetecteerd)

      Gegevensstroom: 0
      (Geen kwaadaardige items gedetecteerd)

      Map: 18
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Temp\20171217_1125\DownloaderTemp, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Temp\20171217_1125, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\tmp, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Temp, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAMDATA\REIMAGE PROTECTOR, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Backup\Favorites, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Backup\Registry, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Backup\Drivers, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Backup, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Config, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\PROGRAM FILES (X86)\REGUTILITY, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\REGUTILITY, In quarantaine, [14917], [459127],1.0.3528

      Bestand: 115
      PUP.Optional.Reimage, C:\WINDOWS\SYSTEM32\TASKS\REIMAGEUPDATER, In quarantaine, [1086], [327190],1.0.3528
      PUP.Optional.Reimage, C:\REI\AV\HBEDV.KEY, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aevdf.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aebb.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aecore.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aecrypto.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aedroid.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aeemu.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aeexp.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aegen.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aehelp.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aeheur.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aelibinf.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aelidb.dat, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aemobile.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aemvdb.dat, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aeoffice.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aepack.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aerdl.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aesbx.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aescn.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aescript.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aeset.dat, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\aevdf.dat, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase000.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase001.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase002.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase003.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase004.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase005.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase006.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase007.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase008.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase009.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase010.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase011.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase012.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase013.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase014.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase015.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase016.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase017.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase018.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase019.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase020.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase021.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase022.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase023.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase024.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase025.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase026.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase027.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase028.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase029.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase030.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\vbase031.vdf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\avupdate.conf, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\avupdate.exe, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\avupdate.log, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\avupdate_msg.avr, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\master.idx, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi.exe, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi3.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi3client.dll, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi3_restart.exe, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi3_start.exe, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\AV\savapi3_stop.exe, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\debug-repair-2.log, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\debug-repair.log, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\Info_EnvironmentVars.res, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\Info_Installed.rec, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\out.log, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Results\EXE1.8.7.1\RUN20171217_1125\StabilityScanRes.xml, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\Temp\20171217_1125\ApplicationList.ini, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\About.txt, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\cfl.rei, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\rei1871nvt.ini, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\reimage.qsr, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\rei\SupportInfoTool.ini, In quarantaine, [1086], [327187],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAMDATA\REIMAGE PROTECTOR\RESULTS\PROTECTORUPDATER.LOG, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\active_protection.txt, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ProtectorPackage.log, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ScanAgent.log, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\ScanAgentDebugRepair.log, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\scan_agent_result_log.txt, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\Results\url_setting_definitions.txt, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\ProgramData\Reimage Protector\cfl.rei, In quarantaine, [1086], [332488],1.0.3528
      PUP.Optional.Reimage, C:\USERS\LEO\APPDATA\LOCAL\TEMP\REIMAGE.LOG, In quarantaine, [1086], [334717],1.0.3528
      PUP.Optional.Reimage, C:\WINDOWS\TEMP\REIMAGE.LOG, In quarantaine, [1086], [334717],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REIGUARD.EXE, In quarantaine, [1086], [327202],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Config\App.ini, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\campus_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\default_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\home_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\internet_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\notebook_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Data\service\office_model.bat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\ActiveX.dat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Cleaner.ini, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\ErrorClean.ini, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\License.txt, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Registry.ini, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Regutility.dll, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\RegUtility.url, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\unins000.dat, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\unins000.exe, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\Program Files (x86)\RegUtility\Update.ini, In quarantaine, [14917], [459126],1.0.3528
      PUP.Optional.RegUtility, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegUtility\Uninstall RegUtility.lnk, In quarantaine, [14917], [459127],1.0.3528
      RiskWare.DontStealOurSoftware, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Vervangen, [680], [353142],1.0.3528
      PUP.Optional.Reimage, C:\WINDOWS\REIMAGE.INI, In quarantaine, [1086], [412667],1.0.3528
      PUP.Optional.Reimage, C:\PROGRAM FILES\REIMAGE\REIMAGE PROTECTOR\REISYSTEM.EXE, In quarantaine, [1086], [327181],1.0.3528
      PUP.Optional.Funmoods, C:\USERS\LEO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Vervangen, [752], [455241],1.0.3528
      PUP.Optional.Funmoods, C:\USERS\LEO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Vervangen, [752], [455241],1.0.3528
      PUP.Optional.Funmoods, C:\USERS\LEO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Vervangen, [752], [455241],1.0.3528

      Fysieke sector: 0
      (Geen kwaadaardige items gedetecteerd)


      (end)

      Comment


      • #4
        edit sorry
        Last edited by jimny; 21-12-17, 10:43.

        Comment


        • #5
          Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 17-12-2017
          Gestart door Leo (Beheerder) op LEO-PC (21-12-2017 10:58:43)
          Gestart vanaf C:\Users\Leo\Desktop
          Geladen Profielen: Leo (Beschikbare Profielen: Leo)
          Platform: Windows 10 Home Versie 1709 16299.125 (X64) Taal: Nederlands (Nederland)
          Internet Explorer Versie 11 (Standaardbrowser: Edge)
          Boot Modus: Normal
          Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

          ==================== Processen (gefilterd) =================

          (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

          (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
          (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
          (SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
          (SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
          (SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
          (SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
          (Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
          (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
          (McAfee LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
          (McAfee LLC) C:\Windows\System32\mfevtps.exe
          (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
          (Microsoft Corporation) C:\Windows\System32\mqsvc.exe
          (Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
          (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
          () C:\Windows\SysWOW64\NMSAccessU.exe
          () C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
          (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
          (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
          (Acer) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
          (McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
          (McAfee LLC) C:\Windows\System32\mfevtps.exe
          (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
          (McAfee LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
          (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

          Comment


          • #6
            (McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
            (McAfee LLC) C:\Windows\System32\mfevtps.exe
            (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
            (McAfee LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
            (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
            (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
            (McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_7\mcapexe.exe
            (McAfee, Inc.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
            (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.6.319.0\McCSPServiceHost.exe
            (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
            (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
            (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
            (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
            (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
            (Acer Corp.) C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe
            (Acer Corp.) C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
            (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
            (Intel Corporation) C:\Windows\System32\hkcmd.exe
            (Intel Corporation) C:\Windows\System32\igfxpers.exe
            () C:\Program Files (x86)\RocketDock\RocketDock.exe
            (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
            (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
            (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
            (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
            (CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
            (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
            (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
            () C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\SNSAgent.exe
            () C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\MusicAgent.exe
            (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21155.0_x64__8wekyb3d8bbwe\HxOutlook.e xe
            (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21155.0_x64__8wekyb3d8bbwe\HxTsr.exe
            (Microsoft Corporation) C:\Windows\System32\dllhost.exe
            (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
            (Microsoft Corporation) C:\Windows\System32\browser_broker.exe
            () C:\Windows\System32\Windows.WARP.JITService.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
            (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

            ==================== Register (gefilterd) ===========================

            (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

            HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
            HKLM\...\Run: [TouchPortal] => C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe [4936192 2009-08-25] (Acer Corp.)
            HKLM\...\Run: [TouchORB] => C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [151368 2009-08-10] (Acer Corp.)
            HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor)
            HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
            HKLM\...\Run: [ALU] => C:\Program Files\Packard Bell\Packard Bell Updater\ALU.exe [2547232 2009-08-04] (Acer)
            HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
            HKLM-x32\...\Run: [YouCam Mirror Tray icon] => C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [171104 2010-02-24] (CyberLink Corp.)
            HKLM-x32\...\Run: [AllShareAgent] => C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
            HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
            Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [Software Suite SE] => C:\Program Files (x86)\Packard Bell\Software Suite SE\SoftSuiteSE.exe [2353184 2009-07-28] (Acer Incorporated)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-10-22] (Google Inc.)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [EPSON SX218 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [PhotoGadgetFirstRun_Portal] => 0
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [PhotoGadgetFirstRun] => 0
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [PhotoGadget] => 0
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [MusicGadget] => 0
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [TouchMemo] => 0
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [Google Update] => C:\Users\Leo\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe [601680 2017-11-14] (Google Inc.)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [{9168D391-E9F7-46D5-90C9-99C567C3C6A0}] => C:\Windows\system32\msiexec.exe /cmdloc "HKCU\Software\Ookla AiTemp\{9168D391-E9F7-46D5-90C9-99C567C3C6A0}"
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [Norton Download Manager{NISREMEXE-SHPD-FSD5183}] => C:\Users\Public\Downloads\Norton\{NISREMEXE-SHPD-FSD5183}\FSDUI_NIS.exe /m /SHOWONECLICK /WIN10_UPGRADE "C:\Users\Leo\AppData\Local\Temp\{AE22CC61-156F-4056-855D-B67C5D34674E}\Upgrade.exe" <==== AANDACHT
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
            HKU\S-1-5-21-119311582-2730875941-4092977369-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [425984 2009-08-05] ()
            HKU\S-1-5-18\...\Run: [EPSON SX218 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
            Startup: C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk [2009-12-03]
            ShortcutTarget: OneNote 2007 Schermopname en Snel starten.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
            GroupPolicy\User: Restrictie <==== AANDACHT

            ==================== Internet (gefilterd) ====================

            (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

            Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
            Tcpip\Parameters: [DhcpNameServer] 192.168.2.254

            Comment


            • #7
              ==================== Internet (gefilterd) ====================

              (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

              Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
              Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
              Tcpip\..\Interfaces\{388D2D87-5840-4C2F-A575-94DE098614CB}: [DhcpNameServer] 192.168.2.254
              Tcpip\..\Interfaces\{DAD5357F-D891-4885-956E-D9CEC3FD7C26}: [DhcpNameServer] 192.168.2.254

              Internet Explorer:
              ==================
              HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
              HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
              HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
              HKU\S-1-5-21-119311582-2730875941-4092977369-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
              HKU\S-1-5-21-119311582-2730875941-4092977369-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
              SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ACPW
              SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.nl/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ADFA_nlNL454
              SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.nl/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ADFA_nlNL454
              SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={C360C6F9-02E6-4943-B411-733A6DEFFB48}&mid=66450f97162647d1a40fd16fd8acafd6-1a18055d5f34304faf2f54a7e385bf04479ccdb9&lang=en&ds=AVG&coid=avgtbavg&cmpid=0116pit&pr=fr&d=2016-02-21 22:30:45&v=4.2.5.441&pid=wtu&sg=&sap=dsp&q={searchTerms}
              SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NS&chn=retail&geo=US&ver=22&locale=nl_US&gct=kwd&qsrc=2869
              BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-20] (Oracle Corporation)
              BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
              BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
              BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
              BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-20] (Oracle Corporation)
              BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
              BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-20] (Oracle Corporation)
              BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc.)
              BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
              BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-20] (Oracle Corporation)
              Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
              Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
              Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc.)
              Toolbar: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
              Toolbar: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand
              DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab
              DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
              Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
              Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
              Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
              Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
              Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\MCSNIE~1.DLL [2017-11-02] (McAfee, Inc.)
              Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-11-02] (McAfee, Inc.)

              FireFox:
              ========
              FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
              FF Extension: (Geen Naam) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2017-12-15]
              FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
              FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-12] ()
              FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-20] (Oracle Corporation)
              FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-20] (Oracle Corporation)
              FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\NPMCSN~1.DLL [2017-11-02] ()
              FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
              FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ ()
              FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
              FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
              FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.8\\npsitesafety.dll [Geen bestand]
              FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-20] (Oracle Corporation)
              FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-20] (Oracle Corporation)
              FF Plugin-x32: @logitech.com/HarmonyRemote,version=1.0.0 -> C:\Program Files (x86)\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll [2010-01-04] (Logitech Inc.)
              FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\NPMCSN~1.DLL [2017-11-02] ()
              FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
              FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
              FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
              FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ ()
              FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
              FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
              FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
              FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
              FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
              FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
              FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
              FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Leo\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
              FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @talk.google.com/O1DPlugin -> C:\Users\Leo\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
              FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Leo\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
              FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Leo\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
              FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Leo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
              FF Plugin ProgramFiles/Appdata: C:\Users\Leo\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
              FF Plugin ProgramFiles/Appdata: C:\Users\Leo\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

              Comment


              • #8
                ==================== Internet (gefilterd) ====================

                (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

                Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
                Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
                Tcpip\..\Interfaces\{388D2D87-5840-4C2F-A575-94DE098614CB}: [DhcpNameServer] 192.168.2.254
                Tcpip\..\Interfaces\{DAD5357F-D891-4885-956E-D9CEC3FD7C26}: [DhcpNameServer] 192.168.2.254

                Internet Explorer:
                ==================
                HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
                HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
                HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
                HKU\S-1-5-21-119311582-2730875941-4092977369-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
                HKU\S-1-5-21-119311582-2730875941-4092977369-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
                SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ACPW
                SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.nl/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ADFA_nlNL454
                SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.nl/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncodin g}&oe={outputEncoding}&rlz=1I7ADFA_nlNL454
                SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={C360C6F9-02E6-4943-B411-733A6DEFFB48}&mid=66450f97162647d1a40fd16fd8acafd6-1a18055d5f34304faf2f54a7e385bf04479ccdb9&lang=en&ds=AVG&coid=avgtbavg&cmpid=0116pit&pr=fr&d=2016-02-21 22:30:45&v=4.2.5.441&pid=wtu&sg=&sap=dsp&q={searchTerms}
                SearchScopes: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NS&chn=retail&geo=US&ver=22&locale=nl_US&gct=kwd&qsrc=2869
                BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-20] (Oracle Corporation)
                BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
                BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
                BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
                BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-20] (Oracle Corporation)
                BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
                BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-20] (Oracle Corporation)
                BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc.)
                BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
                BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-20] (Oracle Corporation)
                Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
                Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
                Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-02] (Google Inc.)
                Toolbar: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-02] (Google Inc.)
                Toolbar: HKU\S-1-5-21-119311582-2730875941-4092977369-1000 -> Geen Naam - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Geen bestand
                DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab
                DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
                Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
                Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
                Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
                Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-12-13] (McAfee, Inc.)
                Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\MCSNIE~1.DLL [2017-11-02] (McAfee, Inc.)
                Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-11-02] (McAfee, Inc.)

                FireFox:
                ========
                FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
                FF Extension: (Geen Naam) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2017-12-15]
                FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
                FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-12] ()
                FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-20] (Oracle Corporation)
                FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-20] (Oracle Corporation)
                FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\NPMCSN~1.DLL [2017-11-02] ()
                FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
                FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ ()
                FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
                FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
                FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.8\\npsitesafety.dll [Geen bestand]
                FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-20] (Oracle Corporation)
                FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-20] (Oracle Corporation)
                FF Plugin-x32: @logitech.com/HarmonyRemote,version=1.0.0 -> C:\Program Files (x86)\Logitech\Harmony Remote Driver\NprtHarmonyPlugin.dll [2010-01-04] (Logitech Inc.)
                FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\NPMCSN~1.DLL [2017-11-02] ()
                FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
                FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
                FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
                FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ ()
                FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
                FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
                FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
                FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
                FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
                FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
                FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
                FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Leo\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
                FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @talk.google.com/O1DPlugin -> C:\Users\Leo\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
                FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Leo\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
                FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Leo\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
                FF Plugin HKU\S-1-5-21-119311582-2730875941-4092977369-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Leo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
                FF Plugin ProgramFiles/Appdata: C:\Users\Leo\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
                FF Plugin ProgramFiles/Appdata: C:\Users\Leo\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

                Comment


                • #9
                  Chrome:
                  =======
                  CHR DefaultProfile: Default
                  CHR HomePage: Default -> mysearch.avg.com
                  CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=114506&tt=4712_1&babsrc=HP_clro&mntrId=e07c4c0e0000000000000017c4b66950"
                  CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
                  CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
                  CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
                  CHR Profile: C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default [2017-12-20]
                  CHR Extension: (AVG Secure Search) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2016-02-26]
                  CHR Extension: (Skype) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-10-04]
                  CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-04]
                  CHR Extension: (Chrome Media Router) - C:\Users\Leo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-04]
                  CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
                  CHR HKU\S-1-5-21-119311582-2730875941-4092977369-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
                  CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <geen Path/update_url>
                  CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
                  CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <geen Path/update_url>
                  CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
                  CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - <geen Path/update_url>
                  CHR HKLM-x32\...\Chrome\Extension: [jmfkcklnlgedgbglfkkgedjfmejoahla] - <geen Path/update_url>
                  CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
                  StartMenuInternet: Google Chrome - C:\Users\Leo\AppData\Local\Google\Chrome\Application\chrome.exe

                  ==================== Services (gefilterd) ====================

                  (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

                  R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
                  S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc.)
                  S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-11-28] (Macrovision Europe Ltd.) [Bestand niet getekend]
                  R2 Greg_Service; C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated)
                  R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
                  R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
                  R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604312 2017-12-13] (McAfee, Inc.)
                  R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_7\McApExe.exe [728296 2017-10-24] (McAfee, Inc.)
                  R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.6.319.0\\McCSPServiceHost.exe [2145496 2017-09-27] (McAfee, Inc.)
                  S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [357840 2017-09-14] (McAfee LLC)
                  R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [509904 2017-09-14] (McAfee LLC)
                  R2 mfevtp; C:\Windows\system32\mfevtps.exe [466384 2017-09-14] (McAfee LLC)
                  R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1622856 2017-10-24] (McAfee, Inc.)
                  R2 NMSAccess; C:\Windows\SysWOW64\NMSAccessU.exe [71096 2009-01-12] ()
                  R2 OberonGameConsoleService; C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe [44312 2009-08-29] ()
                  R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1046456 2017-09-24] (Intel Security, Inc.)
                  R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
                  R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160 2009-07-04] (Acer)
                  S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
                  S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)

                  ===================== Drivers (gefilterd) ======================

                  (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

                  R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2016-03-24] (AnvSoft Inc.)
                  R1 archlp; C:\WINDOWS\System32\drivers\archlp.sys [139840 2011-11-18] ()
                  R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [321032 2017-10-04] (AVAST Software s.r.o.)
                  R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [198976 2017-10-04] (AVAST Software s.r.o.)
                  R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [343288 2017-10-04] (AVAST Software s.r.o.)
                  R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [57736 2017-10-04] (AVAST Software s.r.o.)
                  S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [53904 2017-10-04] (The OpenVPN Project)
                  R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77296 2017-09-15] (McAfee LLC)
                  R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-12-20] ()
                  S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] () [Bestand niet getekend]
                  S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [235904 2017-10-11] (McAfee, Inc.)
                  S3 int15.sys; C:\Windows\System32\OEM\Factory\int15.sys [17952 2008-03-29] (Acer, Inc.)
                  R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [36560 2016-03-10] (ITE Tech. Inc. )
                  R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2017-12-20] (Malwarebytes)
                  R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-12-20] (Malwarebytes)
                  R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-12-20] (Malwarebytes)
                  R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-20] (Malwarebytes)
                  R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-12-21] (Malwarebytes)
                  R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [492520 2017-09-15] (McAfee LLC)
                  R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [355304 2017-09-15] (McAfee LLC)
                  U3 mfeavfk01; geen ImagePath
                  S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [84024 2017-09-15] (McAfee LLC)
                  R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [505328 2017-09-15] (McAfee LLC)
                  R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [936936 2017-09-15] (McAfee LLC)
                  R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [505768 2017-11-14] (McAfee LLC.)
                  S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108456 2017-11-14] (McAfee LLC.)
                  R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115184 2017-09-15] (McAfee LLC)
                  R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
                  R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252904 2017-09-15] (McAfee LLC)
                  R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2506384 2015-08-12] (MediaTek Inc.)
                  R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
                  S3 RapportIaso; c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [175352 2013-04-16] (Trusteer Ltd.)
                  R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
                  S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
                  S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
                  S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
                  U3 idsvc; geen ImagePath
                  U3 wpcsvc; geen ImagePath

                  ==================== NetSvcs (gefilterd) ===================

                  (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


                  ==================== Een Maand Aangemaakt bestanden en mappen ========

                  (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

                  2017-12-21 10:58 - 2017-12-21 11:00 - 000029998 _____ C:\Users\Leo\Desktop\FRST.txt
                  2017-12-21 10:58 - 2017-12-21 10:58 - 000000000 ____D C:\FRST
                  2017-12-21 10:53 - 2017-12-21 10:53 - 000001024 _____ C:\Users\Leo\Desktop\FRST64.exe - Snelkoppeling.lnk
                  2017-12-21 10:52 - 2017-12-21 10:52 - 002392064 _____ (Farbar) C:\Users\Leo\Desktop\FRST64.exe
                  2017-12-21 10:36 - 2017-12-21 10:36 - 000019614 _____ C:\Users\Leo\Desktop\mbam log.txt
                  2017-12-20 19:09 - 2017-12-21 10:26 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
                  2017-12-20 19:09 - 2017-12-20 19:09 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
                  2017-12-20 19:09 - 2017-12-20 19:09 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
                  2017-12-20 19:09 - 2017-12-20 19:09 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
                  2017-12-20 19:09 - 2017-12-20 19:09 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
                  2017-12-20 18:17 - 2017-12-21 10:22 - 000003606 _____ C:\WINDOWS\System32\Tasks\McAfee DAT Built in test
                  2017-12-20 18:01 - 2017-12-20 19:09 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
                  2017-12-20 18:01 - 2017-12-20 18:01 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
                  2017-12-20 18:01 - 2017-12-20 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
                  2017-12-20 17:20 - 2017-12-20 17:20 - 000000000 ____D C:\ProgramData\MB3CoreBackup
                  2017-12-20 16:29 - 2017-11-04 04:41 - 000000000 ____D C:\Users\Leo\Downloads\Malwarebytes Premium 3312183 Final Nederlands Geactiveerd
                  2017-12-20 11:49 - 2017-12-20 11:49 - 000000000 ____D C:\Users\Leo\AppData\Local\{82C0F85A-ADCE-4A41-B4C9-B26EF94888B9}
                  2017-12-20 11:17 - 2017-12-20 11:20 - 000000000 ____D C:\Users\Leo\Downloads\Microsoft Office 2016 Pro x86 x64 Nederlands Updated December 2017
                  2017-12-19 15:55 - 2017-12-19 15:55 - 000000000 ____D C:\Users\Leo\Downloads\_UNPACK_Ashampoo Office Professional 2018 rev 9171121 Nederlands
                  2017-12-19 15:14 - 2017-12-19 15:14 - 000000000 ____D C:\Users\Leo\AppData\Local\{9E39C04B-1C59-42E0-AD9A-3156A11EBC09}
                  2017-12-18 17:33 - 2017-12-18 17:33 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
                  2017-12-18 17:33 - 2017-12-18 17:33 - 000002848 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
                  2017-12-18 17:33 - 2017-12-18 17:33 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
                  2017-12-18 17:33 - 2017-12-18 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
                  2017-12-18 17:33 - 2017-12-18 17:33 - 000000000 ____D C:\Program Files\CCleaner
                  2017-12-18 17:32 - 2017-12-18 17:32 - 011201632 _____ (Piriform Ltd) C:\Users\Leo\Downloads\ccsetup538.exe
                  2017-12-18 17:03 - 2017-12-18 17:03 - 000000000 ____D C:\Users\Leo\AppData\Local\{CCF61105-43A3-452B-AFA8-F58D57DFB4A4}
                  2017-12-17 11:24 - 2017-12-17 20:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
                  2017-12-17 11:23 - 2017-12-20 16:46 - 000000000 ____D C:\rei
                  2017-12-15 16:14 - 2017-12-15 16:15 - 000000000 ____D C:\Users\Leo\Downloads\Nederlandse Tijdschriften 14-12-2017
                  2017-12-15 10:45 - 2017-12-15 10:45 - 000000000 ____D C:\Users\Leo\AppData\Local\{7D7C994C-5752-4A03-A0AE-9FFEBDE257E1}
                  2017-12-15 10:41 - 2017-12-21 10:24 - 000004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{67A84AB1-7487-47BD-AB59-C34676612067}
                  2017-12-14 21:46 - 2017-12-14 21:46 - 000000000 ____D C:\Users\Leo\Documents\FeedbackHub
                  2017-12-14 19:52 - 2017-12-14 19:59 - 000000000 ____D C:\Users\Leo\AppData\Local\PlaceholderTileLogoFolder
                  2017-12-14 19:34 - 2017-12-14 19:34 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-119311582-2730875941-4092977369-1000
                  2017-12-14 19:32 - 2017-12-14 19:34 - 000002413 _____ C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
                  2017-12-14 19:32 - 2017-12-14 19:34 - 000000000 ___RD C:\Users\Leo\OneDrive
                  2017-12-14 19:26 - 2017-12-14 19:26 - 000000000 ____D C:\Users\Leo\AppData\Local\DBG
                  2017-12-14 19:16 - 2017-09-28 19:05 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
                  2017-12-14 19:16 - 2017-09-28 19:05 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
                  2017-12-14 19:16 - 2017-09-28 18:56 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
                  2017-12-14 19:16 - 2017-09-28 18:44 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
                  2017-12-14 19:16 - 2017-09-28 18:38 - 005484032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
                  2017-12-14 19:13 - 2017-12-14 19:13 - 000000000 ____D C:\Users\Leo\AppData\Local\{14080827-33DC-4F69-8E02-3E8E7C29400E}
                  2017-12-14 19:10 - 2017-12-14 19:10 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
                  2017-12-14 19:08 - 2017-12-14 19:55 - 000000000 ____D C:\Users\Leo\AppData\Local\Publishers
                  2017-12-14 19:08 - 2017-12-14 19:08 - 000000000 ___HD C:\Users\Leo\MicrosoftEdgeBackups
                  2017-12-14 19:08 - 2017-12-14 19:08 - 000000000 ____D C:\Users\Leo\AppData\Local\MicrosoftEdge
                  2017-12-14 19:07 - 2017-12-14 21:52 - 000000000 ____D C:\Users\Leo\AppData\Local\Comms
                  2017-12-14 19:06 - 2017-12-14 19:06 - 000000000 __RHD C:\Users\Public\AccountPictures
                  2017-12-14 19:06 - 2017-12-14 19:06 - 000000000 ___RD C:\Users\Leo\3D Objects
                  2017-12-14 19:05 - 2017-12-17 23:03 - 000000000 ____D C:\Users\Leo\AppData\Local\Packages
                  2017-12-14 19:05 - 2017-12-14 21:52 - 000000000 ____D C:\Users\Leo\AppData\Local\ConnectedDevicesPlatform
                  2017-12-14 19:05 - 2017-12-14 19:05 - 000000262 __RSH C:\Users\Leo\ntuser.pol
                  2017-12-14 19:05 - 2017-12-14 19:05 - 000000020 ___SH C:\Users\Leo\ntuser.ini
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Public\Documents\Mijn video's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Public\Documents\Mijn muziek
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Public\Documents\Mijn afbeeldingen
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Sjablonen
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Netwerkprinteromgeving
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Mijn documenten
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Menu Start
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Documents\Mijn video's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Documents\Mijn muziek
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\Documents\Mijn afbeeldingen
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default\AppData\Local\Geschiedenis
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default User\Documents\Mijn video's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default User\Documents\Mijn muziek
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default User\Documents\Mijn afbeeldingen
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Geschiedenis
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Sjablonen
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programma's
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Menu Start
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Favorieten
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Documenten
                  2017-12-14 18:59 - 2017-12-14 18:59 - 000000000 _SHDL C:\ProgramData\Bureaublad
                  2017-12-14 18:58 - 2017-12-20 17:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000004532 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003890 _____ C:\WINDOWS\System32\Tasks\Adobe Reader and Acrobat Manager
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003806 _____ C:\WINDOWS\System32\Tasks\Auto Backup SE Leo
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003770 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119311582-2730875941-4092977369-1000UA
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003570 _____ C:\WINDOWS\System32\Tasks\{D756F8EF-1E00-497E-A146-25FE4B874D56}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003544 _____ C:\WINDOWS\System32\Tasks\Browser Manager
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003498 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119311582-2730875941-4092977369-1000Core
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003440 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003438 _____ C:\WINDOWS\System32\Tasks\{B07038E5-07FB-4CCD-ACB5-D1CCB4C6DD97}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003394 _____ C:\WINDOWS\System32\Tasks\{7FC2061E-A9EF-4CA7-B1C0-C2CCF8C894AC}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003342 _____ C:\WINDOWS\System32\Tasks\{F266C126-DA1A-4334-9D2D-47A49D4C2D35}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003326 _____ C:\WINDOWS\System32\Tasks\{55B1391E-A588-4B99-9CB9-74FE14395AEB}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003294 _____ C:\WINDOWS\System32\Tasks\{4E4D010C-0677-4980-A604-0DD8835BC27D}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003290 _____ C:\WINDOWS\System32\Tasks\{C945CB74-9599-467D-BD74-D0C3658B67ED}
                  2017-12-14 18:58 - 2017-12-14 18:59 - 000003092 _____ C:\WINDOWS\System32\Tasks\{C4232387-EF7A-492D-A8D5-CC164E6DF5D2}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000004586 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000004024 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003928 _____ C:\WINDOWS\System32\Tasks\Google Update
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003814 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003804 _____ C:\WINDOWS\System32\Tasks\Adobe-online actualiseringsprogramma
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003548 _____ C:\WINDOWS\System32\Tasks\{2EFFF81B-39BC-4B77-87C5-2E103118ACD0}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003406 _____ C:\WINDOWS\System32\Tasks\{E216F6C8-B564-4927-B61C-DC4AA6A99F39}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003336 _____ C:\WINDOWS\System32\Tasks\{85711B86-C3B3-49E8-8B3E-93C64A63705C}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003312 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003296 _____ C:\WINDOWS\System32\Tasks\{130A69E6-0520-4466-B57E-81982BD63BB3}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003272 _____ C:\WINDOWS\System32\Tasks\{48C56139-BB23-44B0-BA8B-9897D8725F83}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003186 _____ C:\WINDOWS\System32\Tasks\{2E4C4893-DF99-4B6D-8EEF-6344309F26E1}
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000003178 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Taken voor Logboeken
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\BlueStacks
                  2017-12-14 18:58 - 2017-12-14 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\2BrightSparks
                  2017-12-14 18:57 - 2017-12-14 18:58 - 000007623 _____ C:\WINDOWS\diagwrn.xml
                  2017-12-14 18:57 - 2017-12-14 18:58 - 000007623 _____ C:\WINDOWS\diagerr.xml
                  2017-12-14 18:56 - 2017-12-14 18:56 - 000022980 _____ C:\WINDOWS\system32\emptyregdb.dat
                  2017-12-14 18:36 - 2017-12-14 18:36 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
                  2017-12-14 18:30 - 2017-12-14 19:32 - 000000000 ____D C:\Users\Leo
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Sjablonen
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Netwerkprinteromgeving
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Mijn documenten
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Menu Start
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Documents\Mijn video's
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Documents\Mijn muziek
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\Documents\Mijn afbeeldingen
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programma's
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 _SHDL C:\Users\Leo\AppData\Local\Geschiedenis
                  2017-12-14 18:30 - 2017-12-14 18:30 - 000000000 ____D C:\ProgramData\USOShared
                  2017-12-14 18:28 - 2017-12-20 11:04 - 002254580 _____ C:\WINDOWS\system32\PerfStringBackup.INI
                  2017-12-14 18:22 - 2017-09-29 14:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
                  2017-12-14 18:21 - 2017-12-14 18:21 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
                  2017-12-14 18:21 - 2017-12-14 18:21 - 000000000 ____D C:\Intel
                  2017-12-14 18:19 - 2017-12-20 20:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
                  2017-12-14 18:19 - 2017-12-15 10:02 - 002949584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
                  2017-12-14 18:14 - 2017-12-14 19:05 - 000000000 ____D C:\Windows.old
                  2017-12-14 18:02 - 2017-12-14 18:13 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
                  2017-12-14 18:02 - 2017-12-14 18:02 - 000000000 ____D C:\WINDOWS\ServiceProfiles
                  2017-12-14 17:59 - 2017-12-14 17:59 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
                  2017-12-14 17:55 - 2017-12-14 17:55 - 025245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 023652864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 021352136 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 018916352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 012829696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 011923456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 008590744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
                  2017-12-14 17:55 - 2017-12-14 17:55 - 008097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 006478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 006092664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 006037504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004740608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003903784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003678208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003484840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
                  2017-12-14 17:55 - 2017-12-14 17:55 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll

                  Comment


                  • #10
                    2017-12-14 17:55 - 2017-12-14 17:55 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 003163648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002862080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002709200 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002510336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002192112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001413760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001090440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000924136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000779440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
                    2017-12-14 17:55 - 2017-12-14 17:55 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 003669504 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001426152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001200536 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001170000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001053592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000677272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
                    2017-12-14 17:54 - 2017-12-14 17:54 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll

                    Comment


                    • #11
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
                      2017-12-14 17:54 - 2017-12-14 17:54 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
                      2017-12-14 17:48 - 2017-12-14 18:14 - 000000000 ____D C:\Program Files (x86)\MSBuild
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\WINDOWS\system32\msmq
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\WINDOWS\system32\BestPractices
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\Program Files\Reference Assemblies
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\Program Files\MSBuild
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
                      2017-12-14 17:48 - 2017-12-14 17:48 - 000000000 ____D C:\inetpub
                      2017-12-14 17:47 - 2017-09-28 15:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
                      2017-12-14 17:47 - 2017-09-28 15:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
                      2017-12-14 17:47 - 2017-09-28 15:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
                      2017-12-14 17:47 - 2017-09-22 18:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
                      2017-12-14 17:47 - 2017-09-22 18:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
                      2017-12-14 17:47 - 2017-09-22 18:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
                      2017-12-14 15:49 - 2017-12-18 17:38 - 000000000 ___DC C:\WINDOWS\Panther
                      2017-12-13 19:36 - 2017-12-13 19:45 - 000000000 ____D C:\Program Files (x86)\Cobian Backup 11
                      2017-12-13 19:32 - 2017-12-13 19:32 - 019709440 _____ (Luis Cobian, CobianSoft) C:\Users\Leo\Downloads\cbSetup.exe
                      2017-12-13 15:46 - 2017-12-13 15:47 - 000000000 ____D C:\Users\Leo\Documents\Fax
                      2017-12-13 15:46 - 2017-12-13 15:46 - 000000000 ___RD C:\Users\Leo\Documents\Scanned Documents
                      2017-12-12 15:27 - 2017-12-12 15:27 - 000000000 ____D C:\Users\Leo\AppData\Local\{9855A158-2AA0-4080-942D-7EB093B59BED}
                      2017-12-12 15:20 - 2017-12-12 15:20 - 000000000 ____D C:\Users\Leo\Downloads\Nederlandse Tijdschriften 11-12-2017
                      2017-12-11 19:38 - 2017-12-14 15:49 - 000000036 _____ C:\WINDOWS\progress.ini
                      2017-12-10 19:40 - 2017-12-10 19:40 - 000329752 _____ C:\Users\Leo\Downloads\DIGITAAL TENZIJ.pdf
                      2017-12-10 19:39 - 2017-12-10 19:39 - 000044003 _____ C:\Users\Leo\Downloads\PARTNERMAILING 2016.pdf
                      2017-12-10 19:37 - 2017-12-10 19:37 - 000707323 _____ C:\Users\Leo\Downloads\TOELICHTING SPECIFICATIE.pdf
                      2017-12-10 19:34 - 2017-12-10 19:34 - 000063649 _____ C:\Users\Leo\Downloads\UITKERINGSSPECIFICATIE.pdf
                      2017-12-08 15:11 - 2017-12-08 15:11 - 000000000 ____D C:\Users\Leo\Downloads\Danielle Steel 83 Boeken
                      2017-12-05 17:38 - 2017-12-05 17:38 - 000000000 ____D C:\Users\Leo\Downloads\FIXT Tomtom Go Navigazione e Traffico v1171 Build 2121 Patched By DFoX URETapk FIXT
                      2017-12-05 17:35 - 2017-12-20 16:29 - 000000000 ____D C:\Users\Leo\Downloads\Incompleet
                      2017-12-05 17:24 - 2017-12-05 17:24 - 000000000 ____D C:\Users\Leo\AppData\Local\{9BE914A5-62CD-4E01-829A-3CB8A0FF527E}
                      2017-12-05 15:33 - 2017-12-05 15:33 - 000000000 ____D C:\Users\Leo\Downloads\Danielle Steel - Vriendschap
                      2017-12-04 19:46 - 2017-12-04 19:46 - 000000000 ____D C:\Users\Leo\Downloads\Playboy Nederland December 2017
                      2017-12-04 19:46 - 2017-12-04 19:46 - 000000000 ____D C:\Users\Leo\AppData\Local\{83FC7D32-50A0-47A4-8ED1-9AD095261FD3}
                      2017-12-02 12:11 - 2017-12-02 12:11 - 000000000 ____D C:\Users\Leo\Downloads\Saskia Noort - Terug Naar De Kust
                      2017-12-02 12:04 - 2017-12-02 12:04 - 000000000 ____D C:\Users\Leo\AppData\Local\{DE5ABDAB-79B5-4FA8-81F2-66B17C96E4AE}
                      2017-12-02 12:02 - 2017-12-02 12:02 - 000000000 ____D C:\Users\Leo\Downloads\Saskia Noort - Nieuwe buren
                      2017-12-02 11:57 - 2017-12-02 11:57 - 000000000 ____D C:\Users\Leo\Downloads\Debet - Saskia Noort
                      2017-12-01 21:44 - 2017-12-01 21:44 - 000000000 ____D C:\Users\Leo\Downloads\Nederlandse Tijdschriften 01-12-2017
                      2017-12-01 14:11 - 2014-10-20 09:52 - 000000000 ____D C:\Users\Leo\Downloads\Saskia Noort & Jan Heemskerk-Jan & Saskia
                      2017-12-01 14:09 - 2017-12-01 14:09 - 000000000 ____D C:\Users\Leo\Downloads\Saskia Noort - Een goed huwelijk
                      2017-11-29 19:51 - 2016-12-29 13:45 - 000000000 ____D C:\Users\Leo\Downloads\Vinny27 - Microsoft Office Professional Plus 2016 3264-bit Updated tm December 2016
                      2017-11-26 12:20 - 2017-11-26 12:20 - 006541184 _____ (Microsoft Corporation) C:\Users\Leo\Downloads\Windows10Upgrade24074 (1).exe
                      2017-11-25 19:13 - 2017-12-14 19:04 - 000000000 ___HD C:\$GetCurrent
                      2017-11-24 17:45 - 2017-11-24 17:46 - 000000000 ____D C:\Users\Leo\Downloads\Nederlandse Tijdschriften 23-11-2017
                      2017-11-23 17:41 - 2017-11-23 17:41 - 000000000 ___HD C:\$Windows.~WS
                      2017-11-22 20:38 - 2013-10-22 11:51 - 000000000 ____D C:\Users\Leo\Downloads\Gijp - Michel van Egmond 2012
                      2017-11-22 20:36 - 2017-11-22 20:36 - 000000000 ____D C:\Users\Leo\Downloads\Saskia Noort - Huidpijn - 2016

                      ==================== Een Maand Gewijzigd bestanden en mappen ========

                      (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

                      2017-12-21 10:25 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
                      2017-12-21 10:24 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
                      2017-12-21 10:24 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
                      2017-12-20 18:01 - 2017-11-10 20:44 - 000000000 ____D C:\Program Files\Malwarebytes
                      2017-12-20 18:01 - 2009-12-05 15:16 - 000000000 ____D C:\ProgramData\Malwarebytes
                      2017-12-20 17:34 - 2017-09-29 09:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
                      2017-12-20 12:10 - 2016-11-06 13:29 - 000000000 ____D C:\Users\Leo\Desktop\Jewel Quest 3
                      2017-12-20 11:04 - 2017-09-30 15:32 - 000969500 _____ C:\WINDOWS\system32\perfh013.dat
                      2017-12-20 11:04 - 2017-09-30 15:32 - 000217008 _____ C:\WINDOWS\system32\perfc013.dat
                      2017-12-19 21:40 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
                      2017-12-18 17:38 - 2010-01-09 14:34 - 000000000 ____D C:\Users\Leo\AppData\Local\CrashDumps
                      2017-12-18 16:58 - 2009-12-06 16:10 - 000000000 ____D C:\Users\Leo\AppData\Local\QuickPar
                      2017-12-18 16:58 - 2009-12-06 14:56 - 000003171 _____ C:\Users\Leo\Documents\Untitled.nbi
                      2017-12-18 16:50 - 2009-12-06 14:54 - 000000000 ____D C:\Program Files (x86)\nbpro
                      2017-12-17 19:17 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\rescache
                      2017-12-17 17:09 - 2009-09-30 06:24 - 000000000 ____D C:\ProgramData\Temp
                      2017-12-17 11:22 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
                      2017-12-15 09:58 - 2009-11-28 20:19 - 000000000 ____D C:\Users\Leo\Documents\Youcam
                      2017-12-15 09:47 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\appcompat
                      2017-12-14 19:54 - 2013-03-06 13:05 - 000002507 _____ C:\Users\Leo\Desktop\Google Chrome.lnk
                      2017-12-14 19:54 - 2010-10-30 06:46 - 000002515 _____ C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
                      2017-12-14 19:47 - 2009-09-11 04:26 - 000000000 ____D C:\ProgramData\Norton
                      2017-12-14 19:35 - 2009-12-31 23:34 - 000000000 ____D C:\Users\Public\Downloads\Norton
                      2017-12-14 19:23 - 2010-10-20 07:12 - 000000000 ____D C:\Users\Leo\AppData\Local\Windows Live
                      2017-12-14 19:21 - 2010-01-01 15:41 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Belastingdienst
                      2017-12-14 19:16 - 2017-09-30 15:33 - 000000000 ____D C:\WINDOWS\OCR
                      2017-12-14 19:05 - 2017-11-17 16:09 - 000000000 ____D C:\Windows10Upgrade
                      2017-12-14 18:59 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
                      2017-12-14 18:59 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\windows nt
                      2017-12-14 18:58 - 2017-09-29 09:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
                      2017-12-14 18:57 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\Registration
                      2017-12-14 18:54 - 2017-11-11 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
                      2017-12-14 18:54 - 2017-09-29 14:46 - 000000000 __RHD C:\Users\Public\Libraries
                      2017-12-14 18:45 - 2017-09-29 14:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
                      2017-12-14 18:43 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\spool
                      2017-12-14 18:39 - 2011-12-21 19:46 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GemistDownloader
                      2017-12-14 18:39 - 2011-10-20 11:40 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
                      2017-12-14 18:39 - 2011-02-27 10:53 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Newsgroup
                      2017-12-14 18:39 - 2010-10-09 11:14 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
                      2017-12-14 18:39 - 2009-12-31 23:34 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
                      2017-12-14 18:39 - 2009-12-11 11:02 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Garmin
                      2017-12-14 18:39 - 2009-12-06 14:54 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NewsBin
                      2017-12-14 18:39 - 2009-12-01 22:31 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
                      2017-12-14 18:39 - 2009-11-28 03:28 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
                      2017-12-14 18:39 - 2009-09-30 06:27 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
                      2017-12-14 18:39 - 2009-09-30 06:27 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
                      2017-12-14 18:33 - 2012-11-06 15:00 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
                      2017-12-14 18:33 - 2012-02-21 19:22 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3herosoft
                      2017-12-14 18:30 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\USOPrivate
                      2017-12-14 18:28 - 2017-09-29 09:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
                      2017-12-14 18:28 - 2009-12-21 11:45 - 001971752 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
                      2017-12-14 18:25 - 2017-09-29 14:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
                      2017-12-14 18:25 - 2017-09-29 14:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
                      2017-12-14 18:21 - 2009-09-30 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
                      2017-12-14 18:17 - 2017-09-29 14:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
                      2017-12-14 18:14 - 2017-10-01 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
                      2017-12-14 18:14 - 2017-09-30 15:32 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
                      2017-12-14 18:14 - 2017-09-30 15:32 - 000000000 ____D C:\WINDOWS\SysWOW64\nl
                      2017-12-14 18:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
                      2017-12-14 18:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
                      2017-12-14 18:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
                      2017-12-14 18:14 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
                      2017-12-14 18:14 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
                      2017-12-14 18:14 - 2016-11-04 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
                      2017-12-14 18:14 - 2016-03-27 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotnet
                      2017-12-14 18:14 - 2013-10-07 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
                      2017-12-14 18:14 - 2013-02-26 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
                      2017-12-14 18:14 - 2012-11-24 23:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek
                      2017-12-14 18:14 - 2012-11-06 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
                      2017-12-14 18:14 - 2012-04-15 18:19 - 000000000 ____D C:\WINDOWS\nl
                      2017-12-14 18:14 - 2012-04-15 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Talk
                      2017-12-14 18:14 - 2011-12-31 14:53 - 000000000 ____D C:\WINDOWS\SysWOW64\System32
                      2017-12-14 18:14 - 2011-10-25 22:37 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
                      2017-12-14 18:14 - 2011-03-02 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
                      2017-12-14 18:14 - 2011-03-02 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0 Sprint
                      2017-12-14 18:14 - 2011-03-01 14:07 - 000000000 ____D C:\WINDOWS\system32\SPReview
                      2017-12-14 18:14 - 2011-03-01 14:07 - 000000000 ____D C:\WINDOWS\system32\EventProviders
                      2017-12-14 18:14 - 2011-02-23 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
                      2017-12-14 18:14 - 2010-10-20 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoontyGames
                      2017-12-14 18:14 - 2010-09-29 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
                      2017-12-14 18:14 - 2010-03-15 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sitecom USB to Serial Adapter
                      2017-12-14 18:14 - 2010-03-10 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3CX Phone
                      2017-12-14 18:14 - 2010-03-08 16:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
                      2017-12-14 18:14 - 2010-03-05 15:10 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.2
                      2017-12-14 18:14 - 2010-02-20 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
                      2017-12-14 18:14 - 2010-01-04 21:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis
                      2017-12-14 18:14 - 2009-12-28 23:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
                      2017-12-14 18:14 - 2009-12-18 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 3
                      2017-12-14 18:14 - 2009-12-12 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
                      2017-12-14 18:14 - 2009-12-06 14:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewsBin
                      2017-12-14 18:14 - 2009-12-03 14:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
                      2017-12-14 18:14 - 2009-12-03 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
                      2017-12-14 18:14 - 2009-12-02 19:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickPar
                      2017-12-14 18:14 - 2009-12-01 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
                      2017-12-14 18:14 - 2009-11-29 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup
                      2017-12-14 18:14 - 2009-11-28 22:13 - 000000000 ____D C:\Program Files\Windows Live
                      2017-12-14 18:14 - 2009-11-28 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
                      2017-12-14 18:14 - 2009-11-28 13:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
                      2017-12-14 18:14 - 2009-11-28 13:46 - 000000000 ____D C:\Program Files (x86)\Windows Live
                      2017-12-14 18:14 - 2009-09-30 06:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerCinema
                      2017-12-14 18:14 - 2009-09-30 06:10 - 000000000 ____D C:\WINDOWS\SysWOW64\x64
                      2017-12-14 18:14 - 2009-09-30 06:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Lang
                      2017-12-14 18:14 - 2009-09-11 04:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
                      2017-12-14 18:14 - 2009-09-11 04:13 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support
                      2017-12-14 18:14 - 2009-09-11 04:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
                      2017-12-14 18:14 - 2009-09-11 04:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell
                      2017-12-14 18:14 - 2009-09-11 03:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell GameZone
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Touch Pack for Windows 7
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\zh-CHT
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\zh-CHS
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\tr
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\sv
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\sk
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ru
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ro
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\pl
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\no
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ko
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ja
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\it
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\hu
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\fi
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\el
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\de
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\da
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
                      2017-12-14 18:14 - 2009-09-11 03:52 - 000000000 ____D C:\WINDOWS\SysWOW64\bg
                      2017-12-14 18:14 - 2009-07-14 08:45 - 000000000 ____D C:\WINDOWS\ShellNew
                      2017-12-14 18:14 - 2009-07-14 08:44 - 000000000 ___RD C:\Users\Public\Recorded TV
                      2017-12-14 18:14 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
                      2017-12-14 18:14 - 2009-07-14 04:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
                      2017-12-14 18:14 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\SysWOW64\catroot2.bak
                      2017-12-14 18:14 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated

                      Comment


                      • #12
                        2017-12-14 18:13 - 2017-09-29 14:49 - 000000000 ____D C:\WINDOWS\Setup
                        2017-12-14 18:05 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
                        2017-12-14 18:05 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\oobe
                        2017-12-14 18:05 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\IME
                        2017-12-14 18:03 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\schemas
                        2017-12-14 18:02 - 2017-09-29 14:46 - 000000000 __SHD C:\Program Files\Windows Sidebar
                        2017-12-14 18:02 - 2017-09-29 14:46 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
                        2017-12-14 18:02 - 2016-11-21 14:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
                        2017-12-14 18:02 - 2013-01-12 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
                        2017-12-14 18:02 - 2011-12-31 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
                        2017-12-14 18:02 - 2011-03-24 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
                        2017-12-14 18:02 - 2010-11-14 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
                        2017-12-14 18:02 - 2010-03-16 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2BrightSparks
                        2017-12-14 18:02 - 2010-01-01 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belastingdienst
                        2017-12-14 18:02 - 2009-09-30 06:14 - 000000000 ____D C:\Program Files\Realtek
                        2017-12-14 18:02 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
                        2017-12-14 18:02 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\DVD Maker
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\TextInput
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\Provisioning
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Windows Defender
                        2017-12-14 17:56 - 2017-09-29 14:46 - 000000000 ____D C:\PerfLogs
                        2017-12-14 17:56 - 2017-09-29 09:45 - 000000000 ____D C:\WINDOWS\system32\Dism
                        2017-12-14 17:54 - 2017-09-29 14:42 - 001587200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
                        2017-12-14 17:54 - 2017-09-29 14:41 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
                        2017-12-14 17:54 - 2017-09-29 14:41 - 000139672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
                        2017-12-14 17:54 - 2017-09-29 14:41 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
                        2017-12-14 17:48 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
                        2017-12-14 17:48 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
                        2017-12-14 17:48 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\MUI
                        2017-12-14 17:48 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\inetsrv
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
                        2017-12-14 17:48 - 2017-09-29 14:43 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
                        2017-12-14 17:48 - 2017-09-29 14:42 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
                        2017-12-14 17:48 - 2017-09-29 14:42 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
                        2017-12-14 17:48 - 2017-09-29 14:42 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
                        2017-12-14 17:48 - 2017-09-29 14:42 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 001381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
                        2017-12-14 17:48 - 2017-09-29 14:41 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
                        2017-12-14 17:47 - 2017-09-29 14:43 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
                        2017-12-14 17:47 - 2017-09-29 14:41 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
                        2017-12-14 17:47 - 2017-09-29 14:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
                        2017-12-14 16:29 - 2009-07-14 05:45 - 000009920 _____ C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
                        2017-12-14 16:29 - 2009-07-14 05:45 - 000009920 _____ C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
                        2017-12-14 15:31 - 2011-03-24 09:54 - 000000000 ____D C:\Users\Leo\Documents\My Digital Editions
                        2017-12-14 15:16 - 2016-11-09 14:34 - 000000000 ____D C:\ProgramData\ProductData
                        2017-12-13 15:08 - 2013-09-29 18:48 - 000000000 ____D C:\WINDOWS\system32\MRT
                        2017-12-13 15:02 - 2017-10-11 19:19 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
                        2017-12-13 15:01 - 2009-11-28 14:25 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
                        2017-12-05 13:51 - 2010-02-15 00:20 - 000000000 ____D C:\Users\Leo\AppData\Roaming\Skype
                        2017-12-03 23:38 - 2017-09-29 14:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
                        2017-12-03 23:38 - 2017-09-29 14:49 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
                        2017-11-30 13:31 - 2009-11-30 05:02 - 000000410 _____ C:\WINDOWS\Tasks\Auto Backup SE Leo.job
                        2017-11-29 19:17 - 2017-11-04 15:26 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
                        2017-11-28 11:46 - 2017-10-29 12:03 - 000000000 ____D C:\Users\Leo\Downloads\Pliek Windows 7 Ultimate SP1 Mediacenter 32bit NL Augustus 2016 v40
                        2017-11-24 19:56 - 2017-11-11 11:59 - 000000000 ____D C:\Program Files\Common Files\McAfee
                        2017-11-23 13:47 - 2017-04-17 21:38 - 000000000 ____D C:\Users\Leo\Downloads\Tomtom Go Navigation and Traffic v116 (Android)
                        2017-11-23 12:18 - 2009-11-28 16:08 - 000000000 ____D C:\ProgramData\McAfee

                        ==================== Bestanden in de root van sommige mappen =======

                        2012-12-18 12:57 - 2012-12-18 12:57 - 000033193 _____ () C:\Users\Leo\AppData\Roaming\UserTile.png
                        2009-11-28 19:24 - 2009-11-28 19:24 - 000000000 _____ () C:\Users\Leo\AppData\Roaming\wklnhst.dat
                        2009-12-04 05:57 - 2012-11-06 19:44 - 000007598 _____ () C:\Users\Leo\AppData\Local\resmon.resmoncfg

                        ==================== Bamital & volsnap ======================

                        (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

                        C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
                        C:\WINDOWS\system32\wininit.exe => Bestand is getekend
                        C:\WINDOWS\explorer.exe => Bestand is getekend
                        C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
                        C:\WINDOWS\system32\svchost.exe => Bestand is getekend
                        C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
                        C:\WINDOWS\system32\services.exe => Bestand is getekend
                        C:\WINDOWS\system32\User32.dll => Bestand is getekend
                        C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
                        C:\WINDOWS\system32\userinit.exe => Bestand is getekend
                        C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
                        C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
                        C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
                        C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
                        C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

                        LastRegBack: 2017-12-14 18:19

                        ==================== Eind van FRST.txt ============================

                        Comment


                        • #13
                          Start de Farbar Recovery Scan Tool nogmaals.
                          • Download fixlist.txt uit de bijlage naar het bureaublad, waar ook FRST.exe aanwezig is.
                          • Dubbelklik op FRST.exe om de tool te starten.
                          • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
                          • Druk op de Fix knop
                          • Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
                          • Voeg dit logbestand als bijlage toe aan het volgende bericht..
                          Bijgevoegde Bestanden

                          Windows 10 opstarten in Veilige Modus

                          Comment


                          • #14
                            Fixlog.txt

                            Comment


                            • #15
                              Ok, leeg de quarantine box van Mbam en doe daarna een nieuwe scan, verwijder alles wat het vind en herhaal de stap.

                              vertel even hoe het nu gaat aub.

                              Windows 10 opstarten in Veilige Modus

                              Comment

                              Sorry, you are not authorized to view this page
                              Working...
                              X