problemen * trage pc-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

osten
Lid geworden op: 30 jan 2005, 13:43

05 mar 2017, 16:15

Geachte
Heb die pc een tijdje niet meer online gebruikt, is zeer traag.
Ik gebruikte hem alleen nog voor offline fotobewerking.

Mag ik vragen het logje te willen nazien.

BEdankt bij voorbaat

Osten



Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 16:10:58, on 5/03/2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16635)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\epson\Creativity Suite\Event Manager\EEventManager.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D05Z7GGW\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [EEventManager] C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=av
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKCU\..\Run: [Google Update] C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
O4 - Startup: EOS Utility.lnk = C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {19D6A3D5-EA50-4C3B-88F0-79627C325570} (IlosoftMultipleImageCtrl Class) - http://iloapp.fotoclub-kiknu-wervik.be/ ... Upload.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Version Cue CS3 {nl_NL} (Adobe Version Cue CS3) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9142 bytes

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

05 mar 2017, 18:56

Hallo,

Om beter inzicht te krijgen doe het volgende:


Download Farbar Recovery Scan Tool 32 of 64 bit van één van de onderstaande links: Hier staat een beschrijving hoe u kunt kijken of u een 32 of 64 bit versie van Windows heeft.

Farbar Recovery Scan Tool uitvoeren
  • Klik met de rechtermuisknop op FRST.exe en kies voor de optie "Als administrator uitvoeren".
  • Als het programma is geopend klik Yes (Ja) bij de disclaimer.
  • Druk vervolgens op de Scan knop, er zal nu eerst een back-up van het register worden gemaakt.
  • Wanneer de scan gereed is worden er twee logbestanden aangemaakt met de naam (FRST.txt) & (Addition.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
  • Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 10:48

Geachte,

Gelieve hierbij het resultaat van de scan te willen vinden:

hartelijke groeten,

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 05-03-2017
Gestart door Georges (Beheerder) op GEORGES-PC (06-03-2017 10:42:42)
Gestart vanaf C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NCZP109U
Geladen Profielen: Georges (Beschikbare Profielen: Georges)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 10 (Standaardbrowser: IE)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Canon Inc.) C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(Canon INC.) C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\Creativity Suite\Event Manager\EEventManager.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NCZP109U\FRST64 (1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-02-01] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7981088 2009-07-20] (Realtek Semiconductor)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [609312 2010-05-06] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe [102400 2005-04-08] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2016-06-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\...\Run: [Google Update] => C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2017-03-05] (Google Inc.)
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [453152 2009-12-24] ()
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll [2010-02-01] (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll [2010-02-01] (Egis Technology Inc.)
Startup: C:\Users\Georges\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2016-11-28]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)
Startup: C:\Users\Georges\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk [2016-02-11]
ShortcutTarget: OneNote 2007 Schermopname en Snel starten.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{75FC4D32-8197-4BF2-B2C9-1F6E95CBF27E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM-x32 -> {78C7E3E9-CF73-495B-809E-D55453E403D6} URL = hxxp://descargar.traducegratis.com/nl/index.php?rvs=hompag
SearchScopes: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_nlBE430
SearchScopes: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> {78C7E3E9-CF73-495B-809E-D55453E403D6} URL = hxxp://descargar.traducegratis.com/nl/index.php?rvs=hompag
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {4A8A0B3B-EEB7-4E90-B359-3E01B2C15E82} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {CD1A63BA-A08C-431B-9A34-F240AADC728D} - Geen bestand
DPF: HKLM-x32 {19D6A3D5-EA50-4C3B-88F0-79627C325570} hxxp://iloapp.fotoclub-kiknu-wervik.be/gallery/executable/IlosoftMultipleImageUpload.dll
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default [2016-12-23]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8hffxtbr@Allin1Convert_8h.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8jffxtbr@MyImageConverter_8j.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\faststartff@gmail.com [niet gevonden]
FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3827207534-1666089839-2403375551-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-05] (Google Inc.)
FF Plugin HKU\S-1-5-21-3827207534-1666089839-2403375551-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-05] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchKeyword: Default -> sweet-page
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll => Geen bestand
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\ppGoogleNaClPluginChrome.dll => Geen bestand
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\pdf.dll => Geen bestand
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Geen bestand
CHR Plugin: (NPCIG.dll) - C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll => Geen bestand
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll => Geen bestand
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => Geen bestand
CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Profile: C:\Users\Georges\AppData\Local\Google\Chrome\User Data\Default [2016-12-23]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Georges\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-14]
StartMenuInternet: Google Chrome.WNDXXY6IPWBG53N23EM5BGMPIE - C:\Users\Georges\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2017-01-09] (AVG Technologies CZ, s.r.o.)
S4 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Bestand niet getekend]
R2 CCALib8; C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [96341 2005-09-30] (Canon Inc.) [Bestand niet getekend]
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2011-05-08] (Macrovision Europe Ltd.) [Bestand niet getekend]
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-02-01] (Egis Technology Inc.)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] () [Bestand niet getekend]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [299264 2016-07-27] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [21248 2003-09-19] (Padus, Inc.) [Bestand niet getekend]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-03-06 10:33 - 2017-03-06 10:42 - 00000000 ____D C:\FRST
2017-03-05 16:31 - 2017-03-05 16:31 - 00006688 _____ C:\Users\Georges\Documents\startup.txt
2017-03-05 13:44 - 2017-03-05 13:44 - 00000940 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2017-03-05 13:29 - 2017-03-05 13:29 - 00000000 ____D C:\Users\Georges\AppData\Local\CEF
2017-03-05 13:23 - 2017-03-05 13:23 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-03-05 13:10 - 2017-03-05 13:10 - 00003146 _____ C:\Windows\System32\Tasks\Secure PC Tuneup
2017-03-05 10:59 - 2017-03-05 11:00 - 00150202 _____ C:\Windows\ntbtlog.txt
2017-02-07 15:23 - 2017-02-07 15:23 - 00000000 ____D C:\Users\Georges\Documents\KBC

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-03-06 10:27 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-06 10:27 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-06 10:24 - 2016-08-29 12:46 - 00000000 ____D C:\ProgramData\MFAData
2017-03-06 10:19 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-05 17:54 - 2011-05-06 20:49 - 00000000 ____D C:\Users\Georges\AppData\Roaming\Adobe
2017-03-05 17:15 - 2016-08-19 08:56 - 00000294 _____ C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job
2017-03-05 17:11 - 2014-12-31 12:58 - 00000940 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-03-05 15:20 - 2016-08-19 08:56 - 00000000 ____D C:\Users\Georges\AppData\Roaming\System Monitor
2017-03-05 15:04 - 2016-08-19 08:56 - 00000000 ____D C:\Program Files (x86)\Secure PC Tuneup
2017-03-05 13:56 - 2011-05-06 20:49 - 00000000 ____D C:\Users\Georges\AppData\Local\Google
2017-03-05 13:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-03-05 13:13 - 2016-08-19 08:45 - 00000000 ____D C:\Users\Georges\AppData\Roaming\Secure PC Tuneup
2017-03-05 13:11 - 2014-12-31 12:58 - 00003878 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-05 13:11 - 2014-07-10 12:39 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-05 13:11 - 2011-12-14 16:54 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-05 13:11 - 2011-05-07 16:52 - 00003670 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3827207534-1666089839-2403375551-1000UA
2017-03-05 13:11 - 2011-05-07 16:52 - 00003398 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3827207534-1666089839-2403375551-1000Core
2017-03-05 13:11 - 2011-05-06 21:18 - 00003488 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-05 13:11 - 2011-05-06 21:18 - 00003360 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-05 13:10 - 2011-12-14 16:54 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-05 13:10 - 2010-05-12 03:41 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-27 15:54 - 2011-05-06 17:16 - 00153716 _____ C:\Windows\system32\perfc013.dat
2017-02-27 15:54 - 2011-05-06 17:16 - 00063408 _____ C:\Windows\system32\perfh013.dat
2017-02-27 15:54 - 2009-07-14 06:13 - 00985052 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-14 10:56 - 2011-05-06 08:28 - 00000000 ____D C:\Users\Public\Documents\onderhoud

==================== Bestanden in de root van sommige mappen =======

2015-12-05 16:53 - 2015-12-05 16:53 - 6420480 _____ () C:\Program Files (x86)\GUT4F48.tmp
2014-03-03 15:24 - 2014-03-03 15:24 - 0000268 ___RH () C:\Users\Georges\AppData\Roaming\AccountTypes
2014-03-03 15:26 - 2014-03-03 15:26 - 0000268 ___RH () C:\Users\Georges\AppData\Roaming\designjet
2014-03-03 15:27 - 2014-03-03 15:27 - 0000268 ___RH () C:\Users\Georges\AppData\Roaming\deskjet
2014-03-03 15:26 - 2014-03-03 15:26 - 0000268 ___RH () C:\Users\Georges\AppData\Roaming\docInfo
2014-07-10 07:13 - 2014-07-10 07:17 - 0000000 _____ () C:\Users\Georges\AppData\Local\{8DFE3348-8F59-4EDE-957F-F2ACE548E791}
2014-03-03 15:24 - 2014-03-03 15:24 - 0000268 ___RH () C:\ProgramData\Ambience
2011-05-06 08:23 - 2011-05-06 08:26 - 0015621 _____ () C:\ProgramData\ArcadeDeluxe4.log
2010-05-12 03:21 - 2010-01-27 15:40 - 0131472 _____ () C:\ProgramData\FullRemove.exe
2014-03-03 15:26 - 2014-03-03 15:26 - 0000268 ___RH () C:\ProgramData\grep
2014-03-03 15:27 - 2014-03-03 15:27 - 0000268 ___RH () C:\ProgramData\howto
2014-03-03 15:26 - 2014-03-03 15:26 - 0000268 ___RH () C:\ProgramData\images
2014-03-03 15:24 - 2014-03-03 15:24 - 0000020 ____H () C:\ProgramData\PKP_DLeo.DAT
2014-03-03 15:27 - 2014-03-03 15:27 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT
2014-03-03 15:26 - 2014-05-16 09:26 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT
2014-03-03 15:26 - 2014-03-03 15:51 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\Windows\system32\winlogon.exe => Bestand is getekend
C:\Windows\system32\wininit.exe => Bestand is getekend
C:\Windows\SysWOW64\wininit.exe => Bestand is getekend
C:\Windows\explorer.exe => Bestand is getekend
C:\Windows\SysWOW64\explorer.exe => Bestand is getekend
C:\Windows\system32\svchost.exe => Bestand is getekend
C:\Windows\SysWOW64\svchost.exe => Bestand is getekend
C:\Windows\system32\services.exe => Bestand is getekend
C:\Windows\system32\User32.dll => Bestand is getekend
C:\Windows\SysWOW64\User32.dll => Bestand is getekend
C:\Windows\system32\userinit.exe => Bestand is getekend
C:\Windows\SysWOW64\userinit.exe => Bestand is getekend
C:\Windows\system32\rpcss.dll => Bestand is getekend
C:\Windows\system32\dnsapi.dll => Bestand is getekend
C:\Windows\SysWOW64\dnsapi.dll => Bestand is getekend
C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2013-08-20 15:59

==================== Eind van FRST.txt ============================

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 10:50

Hierbij 2de bestand

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 05-03-2017
Gestart door Georges (06-03-2017 10:43:13)
Gestart vanaf C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NCZP109U
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-06 07:16:35)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3827207534-1666089839-2403375551-500 - Administrator - Disabled)
Gast (S-1-5-21-3827207534-1666089839-2403375551-501 - Limited - Disabled)
Georges (S-1-5-21-3827207534-1666089839-2403375551-1000 - Administrator - Enabled) => C:\Users\Georges

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4552 - ABBYY Software House)
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 4.1.7405 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 4.1.7405 - CyberLink Corp.) Hidden
Acer Arcade Movie (x32 Version: 9.0.6205 - CyberLink Corp.) Hidden
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3007 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1) (Version: 6.1.0.2 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3006 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0318.2010 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 3 Design Premium toevoegen of verwijderen (HKLM-x32\...\Adobe_4f447996d55a2562c006714721fae31) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 24 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Flash Player 9 Plugin (HKLM-x32\...\{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.17) - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AB0000000001}) (Version: 11.0.17 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
AHV content for Acrobat and Flash (x32 Version: 1 - Adobe Systems Incorporated) Hidden
ArcSoft Panorama Maker 6 (HKLM-x32\...\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}) (Version: 6.0.8.85 - ArcSoft)
AVG (Version: 16.141.7998 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4756 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.141.7998 - AVG Technologies)
Canon Camera Access Library (HKLM-x32\...\CAL) (Version: 8.1.1.17 - )
Canon Camera Support Core Library (HKLM-x32\...\CSCLIB) (Version: 7.3.1.6 - )
CANON iMAGE GATEWAY MyCamera Download Plugin (HKLM-x32\...\MyCamera Download Plugin) (Version: 3.1.1.2 - Canon Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.9.0.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.8.0.7 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.6.0.1 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.7.0.4 - Canon Inc.)
Canon PhotoRecord (HKLM-x32\...\{BEF56F2D-56ED-4176-BF72-7B68D4A3B98D}) (Version: 02.00.00029 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 2.4.0.7 - )
Canon RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\InstallShield_{CF2C1A86-5A98-4862-A3AE-9992E3A6427D}) (Version: 1.0.3 - Canon)
Canon RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.5.0.5 - )
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.13.45.0 - Canon Inc.)
Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.2.10.0 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.2.10.0 - Canon Inc.)
Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 0.9.0.1 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.2.10.0 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (HKLM-x32\...\EOS Video Snapshot Task) (Version: 1.0.0.10 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.2.10.0 - Canon Inc.)
Canon Utilities Movie Uploader for YouTube (HKLM-x32\...\MovieUploaderForYouTube) (Version: 1.2.0.7 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.15.10.0 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.7.0.24 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.5.0.9 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
DxO FilmPack 3 (HKLM\...\{6E98BFB0-55E3-4D3C-8C10-B44F6063535E}) (Version: 3.4.94.0 - DxO Labs)
EPSON Attach To Email (HKLM-x32\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON)
EPSON Attach To Email (x32 Version: 1.01.0000 - SEIKO EPSON) Hidden
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.1.5.0 - )
EPSON Event Manager (HKLM-x32\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 1.71.00 - )
EPSON File Manager (HKLM-x32\...\{E86BC406-944E-41F6-ADE6-2C136734C96B}) (Version: 1.1.0.0 - )
EPSON Image Clip Palette (HKLM-x32\...\{314F6D08-A8B7-11D8-8446-0050BA1D384D}) (Version: 1.02.00 - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EPSON Scan Assistant (HKLM-x32\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - )
EPSON-printersoftware (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Fabulous discounts (HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\...\fabulous_07101126) (Version: - ) <==== AANDACHT
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
Google Photos Backup (HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3005 - Acer Incorporated)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
MediaShow Espresso (x32 Version: 5.5.1403_23691 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.206.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden
Nero 9 Essentials (HKLM-x32\...\{7f066cc1-1f9b-4e4d-af76-b467b28e2f1c}) (Version: - Nero AG)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.0 - Nikon)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Perf3490P_3590P Gebruik.handl. (HKLM-x32\...\Perf3490P_3590P Gebruik.handl.) (Version: - )
Perf3490P_3590P Guide util. (HKLM-x32\...\Perf3490P_3590P Guide util.) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.0 - Nikon)
Presto! BizCard 4.1 Eng (HKLM-x32\...\Uninstall Presto! BizCard 4.1 Eng) (Version: - )
Presto! BizCard 4.1 Fre (HKLM-x32\...\Uninstall Presto! BizCard 4.1 Fre) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5898 - Realtek Semiconductor Corp.)
RemoteCapture Task 1.0.3 (x32 Version: 1.0.3 - Canon) Hidden
Shredder (Version: 2.0.5.0 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.5.0 - Egis Technology Inc.) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISE_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version: - Microsoft)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0413-0000-0000000FF1CE}_ENTERPRISE_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version: - Microsoft)
Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0413-0000-0000000FF1CE}_ENTERPRISE_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version: - Microsoft)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.9.0 - Nikon)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3013 - Acer Incorporated)
Windows Live - Hulpprogramma voor uploaden (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live aanmeldhulp (HKLM-x32\...\{1BD6AE96-4742-4498-9D03-9451C7E5A214}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{CD19EDD9-1632-4002-9212-7478E4BA0423}) (Version: 14.0.8089.726 - Microsoft Corporation)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE}\InprocServer32 -> C:\Users\Georges\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\JordanApplet64.dll (IPLabs GmbH)
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => Geen bestand

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {0B8AEDC4-A937-4CAF-A274-151EE5359884} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {0FE21DA3-74BF-4AD5-8713-BC8AEE516E2F} - System32\Tasks\Secure PC Tuneup => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {21B0EA27-C337-42E1-9D48-AD319140A59C} - System32\Tasks\Secure PC Tuneup_DEFAULT => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {2CE153C1-C998-4E67-9FEA-AB9874F223A8} - System32\Tasks\Secure PC Tuneup_UPDATES => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {45059FF7-DB5E-4422-AFC0-27D4FC8AF382} - \Advanced System Protector_startup -> Geen bestand <==== AANDACHT
Task: {54801AC7-4189-43B2-9CB3-E5FDA2A5ABA6} - System32\Tasks\{F7A0748F-BA39-437D-82C6-FFEF27063202} => pcalua.exe -a "C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0LP5FVM\epson325299eu.exe" -d C:\Users\Georges\Desktop
Task: {5CD887EE-FD56-4D70-9676-2A645A7DF2D1} - \Optimizer Pro Schedule -> Geen bestand <==== AANDACHT
Task: {5F038FB6-E2B9-4718-B4FB-F48F27D71C63} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {5F4E4F50-CAA3-4663-AA27-29CE5E216E3D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {7C1723BC-1A97-4EFC-A46B-13FF013F01C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {8B5B734A-AD38-4BE5-9592-50AAD10813F1} - System32\Tasks\{82182B10-6EDC-4E0A-81E6-BCD8EA928B20} => pcalua.exe -a "C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNT79TAY\epson325301eu.exe" -d C:\Users\Georges\Desktop
Task: {9ECCB666-1B46-4E7A-A828-E0C5F0074BAE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3827207534-1666089839-2403375551-1000UA => C:\Users\Georges\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {B07C1A8D-DEE7-4BC9-B0A0-16A8B2CFB7C4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-05] (Adobe Systems Incorporated)
Task: {EBA8F388-F175-4E30-8469-BE5A06860E93} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3827207534-1666089839-2403375551-1000Core => C:\Users\Georges\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\Windows\Tasks\0216pizUpdateInfo.job => C:\ProgramData\Avg_Update_0216piz\0216piz_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2011-05-06 08:24 - 2010-02-03 09:37 - 00244904 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2010-05-06 03:24 - 2010-05-06 03:24 - 00609312 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
2015-02-10 10:03 - 2015-02-10 10:03 - 00507904 _____ () C:\Program Files (x86)\Canon\EOS Utility\EDSDK.dll
2010-05-06 03:24 - 2010-05-06 03:24 - 00151584 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
2017-03-05 13:23 - 2017-03-05 13:22 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)

AlternateDataStreams: C:\ProgramData\Temp:798A3728 [130]
AlternateDataStreams: C:\ProgramData\Temp:93EB7685 [135]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)


==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


==================== Hosts inhoud: ===============================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2009-07-14 03:34 - 2016-03-09 13:46 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Georges\AppData\Roaming\FastStone\FSIV\FSViewerWallPaper.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Acrobat Snelle start.lnk => C:\Windows\pss\Adobe Acrobat Snelle start.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk => C:\Windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Adobe_ID0EYTHM => C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
MSCONFIG\startupreg: ArcadeMovieService => "C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"
MSCONFIG\startupreg: AvgUi => "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Device Detection => C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
MSCONFIG\startupreg: DriverFinder => C:\Program Files (x86)\DriverFinder\DriverFinder.exe
MSCONFIG\startupreg: Google Photos Backup => "C:\Users\Georges\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
MSCONFIG\startupreg: Google Update => "C:\Users\Georges\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: MDS_Menu => "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{2A3AC0FB-A604-4DAA-868A-502377D164B0}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\PowerCinema.exe
FirewallRules: [{81712A64-945F-46DF-9D03-00CDFE8BC94B}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\PCMService.exe
FirewallRules: [{24CC4F65-7BA6-4A22-8024-31C7735123F8}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\DMP\CLBrowserEngine.exe
FirewallRules: [{8EB4CE19-9ADB-422B-B4CA-3AF19B9BF8B6}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\DMS\CLMSService.exe
FirewallRules: [{09DE5234-A2C8-4C31-BD2E-F735E6DD864C}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe
FirewallRules: [{26CF7918-C335-424E-A78C-4844B48F1416}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovie.exe
FirewallRules: [{8BE4A740-20F0-4FCE-9E81-05006D715548}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovieService.exe
FirewallRules: [{1EE866AB-2163-40E1-972D-1736AE2EDEA4}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{58731D25-B524-4420-9642-291935BAB892}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A2E3E065-1DA4-42A9-A615-445D22163BF1}] => (Allow) svchost.exe
FirewallRules: [{DCA9D500-080F-4022-8464-F8A50F92BF7B}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{2C2B1F8B-B566-4029-8AD9-88DE1363192F}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
FirewallRules: [{B440BDB5-2ED4-494C-8777-3361F2FF2AB0}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
FirewallRules: [{07C03226-BD62-40E6-A0B5-26391FF0FE64}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgmfapx.exe
FirewallRules: [{1E2E1A7B-39E3-4EFB-B98E-2A634C7B8807}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgmfapx.exe
FirewallRules: [{C119D140-79FD-47B6-9891-18B42251864C}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgemca.exe
FirewallRules: [{D0BF4A05-296B-4FE5-8259-75F7C9B87A07}] => (Allow) C:\Program Files (x86)\AVG\AVG10\avgemca.exe
FirewallRules: [{B259DFAD-71C8-490A-8EB5-E775EABD0B97}] => (Allow) LPort=3703
FirewallRules: [{3733685A-D1C3-453F-8A35-75E2A0374B08}] => (Allow) LPort=3704
FirewallRules: [{D8DDE8C2-2E75-44AB-9EBB-9D341506FCE8}] => (Allow) LPort=50900
FirewallRules: [{D4F29CE7-2879-4FF8-933B-07E0EA2BD326}] => (Allow) LPort=50901
FirewallRules: [{7E5577A9-4116-4C12-BCE0-D781691BB7C4}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
FirewallRules: [{21CC40CD-A6FC-4DA3-97DC-7C73A28D3074}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
FirewallRules: [{D6581969-6AB1-45DE-BBD1-A26EE68C2789}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{FE5EAEE3-03D8-41F4-8612-9A378C63C3C5}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{87B0FB21-369B-4AFD-AD79-32F167DF9F7E}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{59032598-AF6C-4E38-9D37-82934F078E49}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{B8F85826-EEB2-40AC-84B0-22B1D9728E72}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
FirewallRules: [{1E3A0F2F-7EAB-4E9B-BCF0-9AC33A275922}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
FirewallRules: [{7C23C55C-F6E3-495A-B176-86D8CEA160EF}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{B02FDF33-DBE9-4533-8C20-988AEABF6BF3}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{2AF830D1-5C3C-4AAB-8DE5-7B6A4E41C147}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{78D1FA0D-6321-4952-BB2E-EBF9C3D27D98}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{D4E47F3F-1662-4EA2-AB86-BDB567A98D3B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D4E41DFC-D8E3-4C5F-A6C5-28FB9F66CB05}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{26E09438-8523-49FA-96AB-DF39D33F9C09}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{D5379AA4-6830-4155-B136-5E70F38A83FB}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{F1E4A9E0-2B3D-4F4C-9673-5204254878A7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{5593D8E3-788C-451C-8CD1-552D230FB1B8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{138CB305-63F1-4E2A-B5D1-887E734A494B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{71ADA472-DA01-425B-8ED4-CA308B4C24A1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe

==================== Herstelpunten =========================

19-01-2017 16:00:15 Windows Update
23-01-2017 11:52:52 Windows Update
25-01-2017 11:32:32 Windows Update
27-01-2017 16:27:50 Windows Update
29-01-2017 10:19:44 Windows Update
30-01-2017 11:45:37 Windows Update
31-01-2017 17:39:23 Windows Update
01-02-2017 17:51:31 Windows Update
06-02-2017 17:19:18 Windows Update
07-02-2017 16:17:27 Windows Update
10-02-2017 17:35:50 Windows Update
11-02-2017 16:31:01 Windows Update
12-02-2017 11:09:38 Windows Update
13-02-2017 17:56:15 Windows Update
14-02-2017 11:50:43 Windows Update
14-02-2017 18:04:10 Windows Update
20-02-2017 14:46:19 Windows Update
20-02-2017 17:52:58 Windows Update
23-02-2017 17:11:22 Windows Update
26-02-2017 12:56:17 Windows Update
26-02-2017 13:55:46 Windows Update
27-02-2017 15:58:24 Windows Update
27-02-2017 16:19:48 Windows Update
28-02-2017 10:53:49 Windows Update
05-03-2017 13:16:01 Windows Update
05-03-2017 16:33:47 Windows Update

==================== Defecte Apparaatbeheer Apparaten =============

Name: Microsoft PS/2-muis
Description: Microsoft PS/2-muis
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (03/05/2017 05:56:53 PM) (Source: Adobe Version Cue CS3) (EventID: 3) (User: )
Description: AssetServicesCS3: class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)


Systeemfouten:
=============
Error: (03/06/2017 10:19:43 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/06/2017 10:19:20 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/05/2017 06:04:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/05/2017 04:55:30 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/05/2017 04:54:39 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/05/2017 04:39:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout:
Toegang geweigerd.
.

Error: (03/05/2017 04:38:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073712: KB3006137: Update voor Windows 7 voor x64-systemen.

Error: (03/05/2017 04:38:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: Internet Explorer 11 voor Windows 7 voor x64-systemen.

Error: (03/05/2017 04:09:57 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 40.

Error: (03/05/2017 04:09:57 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 40.


==================== Geheugen info ===========================

Processor: Pentium(R) Dual-Core CPU E5500 @ 2.80GHz
Percentage geheugen in gebruik: 73%
Totaal fysiek RAM-geheugen: 4061.18 MB
Beschikbaar fysiek RAM-geheugen: 1094.07 MB
Totaal Virtueel geheugen: 8120.54 MB
Beschikbaar Virtual geheugen: 5031.7 MB

==================== Schijven ================================

Drive c: (Acer) (Fixed) (Total:143.07 GB) (Free:67.71 GB) NTFS
Drive d: (georgs3) (Fixed) (Total:76.05 GB) (Free:75.92 GB) NTFS
Drive e: (SONY_DVD_RECORDER_VOLUME) (CDROM) (Total:4.37 GB) (Free:0.07 GB) UDF

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 2BD2C32A)
Partition 1: (Not Active) - (Size=13.7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=143.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=76 GB) - (Type=07 NTFS)

==================== Eind van Addition.txt ============================

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

06 mar 2017, 12:51

Hallo,

Lees het volgende eerst goed door en voer het dan uit.

De tool FRST.exe staat in de dik gedrukte map:
Gestart vanaf C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NCZP109U <== Sleep de FRST.exe vanuit deze map naar je bureaublad.


Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
Open Kladblok. Klik op Start > Alle Programma's > Bureau-Accessoires > Kladblok <== Klik hierop.
Kopieer onderstaande dik gedrukte code en plak dat in "Kladblok"


start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {4A8A0B3B-EEB7-4E90-B359-3E01B2C15E82} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {CD1A63BA-A08C-431B-9A34-F240AADC728D} - Geen bestand
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8hffxtbr@Allin1Convert_8h.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8jffxtbr@MyImageConverter_8j.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\faststartff@gmail.com [niet gevonden]
CHR DefaultSearchKeyword: Default -> sweet-page
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
C:\Windows\System32\Tasks\Secure PC Tuneup
C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job
C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job
C:\Program Files (x86)\Secure PC Tuneup
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => Geen bestand
Task: {0FE21DA3-74BF-4AD5-8713-BC8AEE516E2F} - System32\Tasks\Secure PC Tuneup => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {21B0EA27-C337-42E1-9D48-AD319140A59C} - System32\Tasks\Secure PC Tuneup_DEFAULT => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {2CE153C1-C998-4E67-9FEA-AB9874F223A8} - System32\Tasks\Secure PC Tuneup_UPDATES => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {45059FF7-DB5E-4422-AFC0-27D4FC8AF382} - \Advanced System Protector_startup -> Geen bestand <==== AANDACHT
Task: {5CD887EE-FD56-4D70-9676-2A645A7DF2D1} - \Optimizer Pro Schedule -> Geen bestand <==== AANDACHT
Task: C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
AlternateDataStreams: C:\ProgramData\Temp:798A3728 [130]
AlternateDataStreams: C:\ProgramData\Temp:93EB7685 [135]
EmptyTemp:
end

Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt.
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 13:53

Ik geloof dat ik niet de goede start heb: op de C schijf vind ik FRST, maar geen FRST.exe

In die FRST map vind ik Hives, logs en quarantine.

Heb overigens de gecopieerde tekst op het bureaublad maar FARBAR recovery zegt geen fixlist gevonden.

grten

Osten

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

06 mar 2017, 14:19

osten schreef:Ik geloof dat ik niet de goede start heb: op de C schijf vind ik FRST, maar geen FRST.exe
Dat klopt.

De tool FRST.exe staat in de dik gedrukte map navigeer naar die map:
Gestart vanaf C:\Users\Georges\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NCZP109U <== Sleep de FRST.exe vanuit deze map naar je bureaublad.

Vind hem anders via je zoek functie Klik start > vul daar in FRST of FRST.exe
Zo ziet het icoon eruit Afbeelding

Afbeelding
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 15:37

abbs
Hierbij de fixlog.

hartelijke groeten

Osten


Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 05-03-2017
Gestart door Georges (06-03-2017 15:21:47) Run:1
Gestart vanaf C:\Users\Georges\Desktop
Geladen Profielen: Georges (Beschikbare Profielen: Georges)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {4A8A0B3B-EEB7-4E90-B359-3E01B2C15E82} - Geen bestand
Toolbar: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000 -> Geen Naam - {CD1A63BA-A08C-431B-9A34-F240AADC728D} - Geen bestand
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8hffxtbr@Allin1Convert_8h.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8jffxtbr@MyImageConverter_8j.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\faststartff@gmail.com [niet gevonden]
CHR DefaultSearchKeyword: Default -> sweet-page
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
C:\Windows\System32\Tasks\Secure PC Tuneup
C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job
C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job
C:\Program Files (x86)\Secure PC Tuneup
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Georges\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => Geen bestand
Task: {0FE21DA3-74BF-4AD5-8713-BC8AEE516E2F} - System32\Tasks\Secure PC Tuneup => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {21B0EA27-C337-42E1-9D48-AD319140A59C} - System32\Tasks\Secure PC Tuneup_DEFAULT => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {2CE153C1-C998-4E67-9FEA-AB9874F223A8} - System32\Tasks\Secure PC Tuneup_UPDATES => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: {45059FF7-DB5E-4422-AFC0-27D4FC8AF382} - \Advanced System Protector_startup -> Geen bestand <==== AANDACHT
Task: {5CD887EE-FD56-4D70-9676-2A645A7DF2D1} - \Optimizer Pro Schedule -> Geen bestand <==== AANDACHT
Task: C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
Task: C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job => C:\Program Files (x86)\Secure PC Tuneup\SecurePCTuneup.exe
AlternateDataStreams: C:\ProgramData\Temp:798A3728 [130]
AlternateDataStreams: C:\ProgramData\Temp:93EB7685 [135]
EmptyTemp:
end


*****************

Herstelpunt is succesvol gemaakt.
Proces succesvol afgesloten.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => waarde is succesvol verwijderd.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => waarde is succesvol verwijderd.
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => sleutel niet gevonden.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4A8A0B3B-EEB7-4E90-B359-3E01B2C15E82} => waarde is succesvol verwijderd.
HKCR\CLSID\{4A8A0B3B-EEB7-4E90-B359-3E01B2C15E82} => sleutel niet gevonden.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CD1A63BA-A08C-431B-9A34-F240AADC728D} => waarde is succesvol verwijderd.
HKCR\CLSID\{CD1A63BA-A08C-431B-9A34-F240AADC728D} => sleutel niet gevonden.
C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8hffxtbr@Allin1Convert_8h.com => pad is succesvol verwijderd.
C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\8jffxtbr@MyImageConverter_8j.com => pad is succesvol verwijderd.
C:\Users\Georges\AppData\Roaming\Mozilla\Firefox\Profiles\e92g2f71.default\extensions\faststartff@gmail.com => pad is succesvol verwijderd.
Chrome DefaultSearchKeyword => is succesvol verwijderd.
HKLM\System\CurrentControlSet\Services\MBAMSwissArmy => sleutel is succesvol verwijderd.
MBAMSwissArmy => dienst is succesvol verwijderd.
C:\Windows\System32\Tasks\Secure PC Tuneup => is succesvol verplaatst.
C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job => is succesvol verplaatst.
C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job => is succesvol verplaatst.
C:\Program Files (x86)\Secure PC Tuneup => is succesvol verplaatst.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF} => sleutel is succesvol verwijderd.
HKU\S-1-5-21-3827207534-1666089839-2403375551-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0FE21DA3-74BF-4AD5-8713-BC8AEE516E2F} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FE21DA3-74BF-4AD5-8713-BC8AEE516E2F} => sleutel is succesvol verwijderd.
C:\Windows\System32\Tasks\Secure PC Tuneup => niet gevonden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Secure PC Tuneup => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21B0EA27-C337-42E1-9D48-AD319140A59C} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21B0EA27-C337-42E1-9D48-AD319140A59C} => sleutel is succesvol verwijderd.
C:\Windows\System32\Tasks\Secure PC Tuneup_DEFAULT => is succesvol verplaatst.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Secure PC Tuneup_DEFAULT => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CE153C1-C998-4E67-9FEA-AB9874F223A8} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CE153C1-C998-4E67-9FEA-AB9874F223A8} => sleutel is succesvol verwijderd.
C:\Windows\System32\Tasks\Secure PC Tuneup_UPDATES => is succesvol verplaatst.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Secure PC Tuneup_UPDATES => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{45059FF7-DB5E-4422-AFC0-27D4FC8AF382} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45059FF7-DB5E-4422-AFC0-27D4FC8AF382} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System Protector_startup => sleutel niet gevonden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5CD887EE-FD56-4D70-9676-2A645A7DF2D1} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CD887EE-FD56-4D70-9676-2A645A7DF2D1} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimizer Pro Schedule => sleutel niet gevonden.
C:\Windows\Tasks\Secure PC Tuneup_DEFAULT.job => niet gevonden.
C:\Windows\Tasks\Secure PC Tuneup_UPDATES.job => niet gevonden.
C:\ProgramData\Temp => ":798A3728" ADS is succesvol verwijderd..
C:\ProgramData\Temp => ":93EB7685" ADS is succesvol verwijderd..

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 60039079 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 9716065 B
Edge => 0 B
Chrome => 408576 B
Firefox => 7637945 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 2007181420 B
systemprofile32 => 33186 B
LocalService => 66228 B
NetworkService => 66228 B
Georges => 648659856 B

RecycleBin => 13414 B
EmptyTemp: => 2.6 GB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 15:24:02 ====

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

06 mar 2017, 15:46

Hallo,

Hoe draait de pc nu?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 16:19

abbs,

Ik heb niet de indruk dat het opstarten veel sneller is geworden, maar ik kan gemakkelijker met sommige programma's werken. Hij blokkeert niet meer om de haverklap.

Ik stuur je hierna nog een mijn opstart (via c-cleaner). Mag er misschien nog een en ander worden uitgeschakeld?

hartelijke groeten,

Osten

Nee HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Nee HKCU:Run Device Detection C:\Program Files (x86)\Fuji Fotoservice\Fuji Fotoservice\dd.exe
Nee HKCU:Run DriverFinder C:\Program Files (x86)\DriverFinder\DriverFinder.exe
Nee HKCU:Run Google Photos Backup Google, Inc "C:\Users\Georges\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
Ja HKCU:Run Google Update Google Inc. C:\Users\Georges\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
Nee HKCU:Run msnmsgr Microsoft Corporation "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
Nee HKCU:Run swg Google Inc. "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
Nee HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
Ja HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Nee HKLM:Run Adobe Reader Speed Launcher "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Nee HKLM:Run Adobe_ID0EYTHM Adobe Systems Incorporated C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
Nee HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
Nee HKLM:Run ArcadeMovieService CyberLink Corp. "C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"
Ja HKLM:Run AVG_UI AVG Technologies CZ, s.r.o. "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=av
Ja HKLM:Run AvgUi AVG Technologies CZ, s.r.o. "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
Ja HKLM:Run EEventManager SEIKO EPSON CORPORATION C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe
Ja HKLM:Run GrooveMonitor Microsoft Corporation "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Ja HKLM:Run Hotkey Utility Acer Incorporated C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
Ja HKLM:Run HotKeysCmds Intel Corporation C:\Windows\system32\hkcmd.exe
Ja HKLM:Run IAAnotif Intel Corporation C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
Ja HKLM:Run IgfxTray Intel Corporation C:\Windows\system32\igfxtray.exe
Nee HKLM:Run MDS_Menu CyberLink Corp. "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
Ja HKLM:Run mwlDaemon Egis Technology Inc. C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
Ja HKLM:Run Persistence Intel Corporation C:\Windows\system32\igfxpers.exe
Ja HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Nee Startup Common Adobe Acrobat Snelle start.lnk C:\Windows\INSTAL~1\{AC76B~2\_SC_AC~1.EXE
Nee Startup Common Adobe Reader Synchronizer.lnk Adobe Systems, Incorporated C:\PROGRA~2\Adobe\ACROBA~1.0\Acrobat\ADOBEC~1.EXE
Ja Startup User EOS Utility.lnk Canon INC. C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
Ja Startup User OneNote 2007 Schermopname en Snel starten.lnk Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

06 mar 2017, 16:39

Hallo,

Ja HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Ja HKLM:Run EEventManager SEIKO EPSON CORPORATION C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe
Ja HKLM:Run GrooveMonitor Microsoft Corporation "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Ja Startup User EOS Utility.lnk Canon INC. C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
Ja Startup User OneNote 2007 Schermopname en Snel starten.lnk Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE


Deze zou je nog uit kunnen schakelen en verder kunnen we hem niet sneller krijgen. Het is ook niet één van de snelste pc's meer.
Doe nog de laatste stap en dan zijn we klaar :)


Met het onderstaande tooltje ruim je o.a. alle gebruikte tools op:

Download Delfix - Alternatieve downloadlink by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.
Zet nu vinkjes voor de volgende items:
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
Klik nu op "Run" en wacht geduldig tot de tool gereed is.
Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft je echter niet te plaatsen.
Start je pc hierna opnieuw op, mochten er nog programma's of log bestanden aanwezig zijn mag je die handmatig verwijderen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

osten
Lid geworden op: 30 jan 2005, 13:43

06 mar 2017, 18:14

Abbs,

Laatste procedures zijn uitgevoerd.

Hartelijk bedankt voor je deskundige hulp en beste groeten,

Osten

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

06 mar 2017, 18:59

Hallo Osten,


Bedankt en graag gedaan :)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)