FRST tav abbs-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

marieke72
Lid geworden op: 25 jan 2014, 22:00

19 apr 2017, 21:41

Beste abbs ,
op aanraden van Sony heb ik 'n scan gedaan met FRST .
Ziehier de logjes voor nazicht aub.
Na deze volgt nog eentje.


Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 17-04-2017 01
Gestart door PC (Beheerder) op PC-PC (19-04-2017 16:50:16)
Gestart vanaf C:\Users\PC\Downloads
Geladen Profielen: PC (Beschikbare Profielen: PC & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser niet gedetecteerd!)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(NewTech InfoSystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES/MALWAREBYTES/ANTI-MALWARE\mbamtray.exe [2786768 2016-11-29] (Malwarebytes)
HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-07] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [487424 2010-10-14] (Gadwin Systems, Inc)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => -> Geen bestand
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-07] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-07] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-12-21]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\hpqtra08.exe [2009-05-21] (Hewlett-Packard Co.)
GroupPolicy: Restrictie - Windows Defender <======= AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <======= AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 195.130.131.1 195.130.130.1
Tcpip\..\Interfaces\{B9B11BD9-89E3-433A-853B-396284EE1A1D}: [DhcpNameServer] 192.168.6.1
Tcpip\..\Interfaces\{E0833AA8-3CFC-4675-A827-B711F858844B}: [DhcpNameServer] 195.130.131.1 195.130.130.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3226599607-3834390706-307609194-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.be/
SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3226599607-3834390706-307609194-1000 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxps://www.amazon.com/gp/bit/amazonserp/ref=bi ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-07] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-07] (AVAST Software)
BHO-x32: Aanmeldhulp voor Microsoft-account -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
Handler: WSKVAllmytubechrome - Geen CLSID Waarde

FireFox:
========
FF DefaultProfile: g6nb6697.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\g6nb6697.default [2017-04-18]
FF Homepage: Mozilla\Firefox\Profiles\g6nb6697.default -> hxxp://www.google.be/
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-04-02]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-04-02]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => niet gevonden
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Geen bestand]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Geen bestand]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Geen bestand]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3226599607-3834390706-307609194-1000: torrents-time.com/TTPlugin -> C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll [Geen bestand]

Chrome:
=======
CHR dev: Chrome dev build gedetecteerd! <======= AANDACHT

Opera:
=======
OPR Extension: (Video Downloader Pro) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibehiiilehaakkhkigckfjfknboalpbe [2017-02-02]
OPR Extension: (Adblock Plus) - C:\Users\PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-03-22]

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [Bestand niet getekend]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-07] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-07] (AVAST Software)
R2 BUNAgentSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [24832 2010-03-02] (NewTech Infosystems, Inc.)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Bestand niet getekend]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Bestand niet getekend]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [Bestand niet getekend]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4317648 2016-11-29] (Malwarebytes)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [Bestand niet getekend]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 InnovativeSolutions_monitor; C:\Program Files (x86)\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [X]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
S4 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [X]

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [307736 2017-04-05] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-04-05] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334088 2017-04-05] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-04-05] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-04-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-04-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [127112 2017-04-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-04-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-04-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1005048 2017-04-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [556784 2017-04-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [164064 2017-04-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-04-05] (AVAST Software)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-08-05] (AVG Technologies)
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [250816 2017-04-19] (Malwarebytes)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security, S.L.)
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-19 16:50 - 2017-04-19 16:51 - 00019832 _____ C:\Users\PC\Downloads\FRST.txt
2017-04-19 16:49 - 2017-04-19 16:50 - 00000000 ____D C:\FRST
2017-04-19 16:48 - 2017-04-19 16:48 - 02424832 _____ (Farbar) C:\Users\PC\Downloads\FRST64.exe
2017-04-19 16:48 - 2017-04-19 16:48 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-04-14 23:35 - 2017-04-17 00:20 - 00000000 ____D C:\Users\PC\AppData\Local\Firestorm
2017-04-14 23:35 - 2017-04-14 23:36 - 00000000 ____D C:\Users\PC\AppData\Roaming\Firestorm
2017-04-14 23:34 - 2017-04-14 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firestorm-Release
2017-04-14 23:33 - 2017-04-15 00:14 - 00000000 ____D C:\Program Files (x86)\Firestorm-Release
2017-04-14 23:31 - 2017-04-14 23:31 - 94370984 _____ C:\Users\PC\Downloads\Phoenix-Firestorm-Release-5-0-1-52150_Setup.exe
2017-04-12 12:42 - 2017-03-25 21:39 - 20284416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-04-12 12:42 - 2017-03-25 19:52 - 25746944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-04-12 12:42 - 2016-03-24 00:40 - 03181568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-04-12 12:42 - 2016-03-24 00:40 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-04-12 12:41 - 2017-03-27 20:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-04-12 12:41 - 2017-03-27 19:28 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-04-12 12:41 - 2017-03-25 21:07 - 04604416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-04-12 12:41 - 2017-03-25 21:06 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-04-12 12:41 - 2017-03-25 20:55 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-04-12 12:41 - 2017-03-25 20:52 - 02289152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-04-12 12:41 - 2017-03-25 20:51 - 01313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-04-12 12:41 - 2017-03-25 20:48 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-04-12 12:41 - 2017-03-25 20:47 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-04-12 12:41 - 2017-03-25 20:47 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-04-12 12:41 - 2017-03-25 20:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-04-12 12:41 - 2017-03-25 20:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-04-12 12:41 - 2017-03-25 20:45 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-04-12 12:41 - 2017-03-25 20:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-04-12 12:41 - 2017-03-25 20:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-04-12 12:41 - 2017-03-25 20:44 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-04-12 12:41 - 2017-03-25 20:35 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-04-12 12:41 - 2017-03-25 20:35 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-04-12 12:41 - 2017-03-25 20:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-04-12 12:41 - 2017-03-25 20:14 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-04-12 12:41 - 2017-03-25 20:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-04-12 12:41 - 2017-03-25 20:13 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-04-12 12:41 - 2017-03-25 20:13 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-04-12 12:41 - 2017-03-25 20:10 - 02898432 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-04-12 12:41 - 2017-03-25 20:04 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-04-12 12:41 - 2017-03-25 20:02 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-04-12 12:41 - 2017-03-25 19:57 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-04-12 12:41 - 2017-03-25 19:56 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-04-12 12:41 - 2017-03-25 19:56 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-04-12 12:41 - 2017-03-25 19:56 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-04-12 12:41 - 2017-03-25 19:56 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-04-12 12:41 - 2017-03-25 19:45 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 12:41 - 2017-03-25 19:41 - 06045696 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-04-12 12:41 - 2017-03-25 19:41 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-04-12 12:41 - 2017-03-25 19:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 12:41 - 2017-03-25 19:29 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-04-12 12:41 - 2017-03-25 19:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-04-12 12:41 - 2017-03-25 19:23 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-04-12 12:41 - 2017-03-25 19:20 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-04-12 12:41 - 2017-03-25 19:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-04-12 12:41 - 2017-03-25 19:17 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-04-12 12:41 - 2017-03-25 19:06 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-04-12 12:41 - 2017-03-25 19:04 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-04-12 12:41 - 2017-03-25 19:00 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-04-12 12:41 - 2017-03-25 18:59 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-04-12 12:41 - 2017-03-25 18:57 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-04-12 12:41 - 2017-03-25 18:57 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-04-12 12:41 - 2017-03-25 18:28 - 15259136 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-04-12 12:41 - 2017-03-25 18:27 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-04-12 12:41 - 2017-03-25 18:24 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-04-12 12:41 - 2017-03-25 18:10 - 01546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-04-12 12:41 - 2017-03-25 18:01 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-04-12 12:41 - 2017-03-25 00:50 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-04-12 12:41 - 2017-03-25 00:42 - 00313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-04-12 12:41 - 2017-03-22 17:32 - 03165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-04-12 12:41 - 2017-03-22 17:32 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-04-12 12:41 - 2017-03-22 17:32 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-04-12 12:41 - 2017-03-22 17:30 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-04-12 12:41 - 2017-03-22 17:24 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-04-12 12:41 - 2017-03-22 17:17 - 02651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-12 12:41 - 2017-03-22 17:15 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-04-12 12:41 - 2017-03-22 17:15 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-04-12 12:41 - 2017-03-22 17:15 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-04-12 12:41 - 2017-03-22 17:15 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-04-12 12:41 - 2017-03-22 17:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-04-12 12:41 - 2017-03-22 17:15 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 12:41 - 2017-03-22 17:05 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-04-12 12:41 - 2017-03-22 17:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-04-12 12:41 - 2017-03-22 17:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-04-12 12:41 - 2017-03-22 17:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-04-12 12:41 - 2017-03-14 17:34 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-04-12 12:41 - 2017-03-14 17:34 - 00265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-04-12 12:41 - 2017-03-14 17:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-04-12 12:41 - 2017-03-10 18:35 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-04-12 12:41 - 2017-03-10 18:31 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-04-12 12:41 - 2017-03-10 18:31 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-04-12 12:41 - 2017-03-10 18:31 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-04-12 12:41 - 2017-03-10 18:31 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-04-12 12:41 - 2017-03-10 18:27 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-04-12 12:41 - 2017-03-10 18:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-04-12 12:41 - 2017-03-10 18:19 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-04-12 12:41 - 2017-03-10 18:19 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-04-12 12:41 - 2017-03-10 18:00 - 03219968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-04-12 12:41 - 2017-03-10 17:53 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-04-12 12:41 - 2017-03-08 22:20 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-04-12 12:41 - 2017-03-08 22:10 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-04-12 12:41 - 2017-03-08 06:37 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-04-12 12:41 - 2017-03-08 06:36 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-04-12 12:41 - 2017-03-08 06:36 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-04-12 12:41 - 2017-03-08 06:36 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-04-12 12:41 - 2017-03-08 06:36 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-04-12 12:41 - 2017-03-08 06:34 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 02064384 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:26 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-04-12 12:41 - 2017-03-08 06:26 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-04-12 12:41 - 2017-03-08 06:24 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 01416192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-04-12 12:41 - 2017-03-08 06:22 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 06:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 12:41 - 2017-03-08 06:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-04-12 12:41 - 2017-03-08 06:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-04-12 12:41 - 2017-03-08 06:03 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 12:41 - 2017-03-08 06:00 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-04-12 12:41 - 2017-03-08 05:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-04-12 12:41 - 2017-03-08 05:57 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-04-12 12:41 - 2017-03-08 05:56 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-04-12 12:41 - 2017-03-08 05:56 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-04-12 12:41 - 2017-03-08 05:56 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-04-12 12:41 - 2017-03-08 05:55 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-04-12 12:41 - 2017-03-08 05:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-04-12 12:41 - 2017-03-08 05:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-04-12 12:41 - 2017-03-08 05:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-04-12 12:41 - 2017-03-08 05:54 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-04-12 12:41 - 2017-03-08 05:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-04-12 12:41 - 2017-03-08 05:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-04-12 12:41 - 2017-03-08 05:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 05:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 05:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 12:41 - 2017-03-08 05:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 12:41 - 2017-03-07 18:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-04-12 12:41 - 2017-03-07 18:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2017-04-12 12:41 - 2017-03-07 16:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-04-12 12:41 - 2017-03-04 03:27 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-04-12 12:41 - 2017-03-04 03:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2017-04-12 12:41 - 2017-03-04 03:14 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-04-12 12:41 - 2017-03-04 03:14 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2017-04-12 12:41 - 2017-02-14 18:33 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-04-12 12:41 - 2017-02-14 18:19 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2017-04-12 12:41 - 2017-02-11 18:33 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-04-12 12:41 - 2017-02-11 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-04-12 12:41 - 2017-02-09 18:32 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2017-04-12 12:41 - 2017-02-09 18:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2017-04-12 12:41 - 2017-02-09 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:36 - 00011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 12:41 - 2017-01-18 17:35 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-10 13:42 - 2017-04-10 13:42 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-04-08 16:44 - 2017-04-08 16:44 - 00000000 ____D C:\Windows\PCHEALTH
2017-04-08 16:44 - 2017-04-08 16:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-04-08 16:42 - 2017-04-08 16:42 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2017-04-08 16:34 - 2017-04-08 16:35 - 654165664 _____ (Microsoft Corporation) C:\Users\PC\Downloads\Office_HS_2010_TechG_Dutch_x64.exe
2017-04-07 22:33 - 2017-04-13 16:49 - 00000000 ____D C:\Users\PC\AppData\Roaming\VideoStripPokerSupreme
2017-04-07 11:48 - 2017-04-07 11:48 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2017-04-07 11:47 - 2017-04-05 11:54 - 00399944 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-04-06 12:01 - 2017-04-06 12:01 - 00000000 ____D C:\Program Files (x86)\GUMB125.tmp
2017-04-05 16:16 - 2017-04-07 22:33 - 00000000 ____D C:\Program Files (x86)\Video Strip Poker Supreme
2017-04-05 16:16 - 2017-04-07 21:37 - 00000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Strip Poker Supreme
2017-04-01 22:10 - 2017-04-01 22:10 - 00000000 ____D C:\Users\PC\AppData\Local\Macromedia
2017-03-31 20:58 - 2017-04-09 12:38 - 01617486 _____ C:\Users\PC\Documents\Presentatie1.ppsx
2017-03-24 14:31 - 2017-03-31 20:58 - 01617429 _____ C:\Users\PC\Documents\Presentatie1.pptx
2017-03-24 14:28 - 2014-03-25 17:01 - 14146949 _____ C:\Users\PC\Documents\Tof om nog is te horen - kopie.ppsx
2017-03-21 17:52 - 2017-03-21 17:52 - 01254524 _____ C:\Users\PC\Downloads\LES27.ppsx
2017-03-20 00:48 - 2017-03-20 00:48 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2017-03-20 00:48 - 2017-03-20 00:48 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110_clr0400.dll
2017-03-20 00:48 - 2017-03-20 00:48 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2017-03-20 00:48 - 2017-03-20 00:48 - 00019112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110_clr0400.dll
2017-03-20 00:41 - 2017-03-20 00:41 - 00030400 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2017-03-20 00:41 - 2017-03-20 00:41 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll
2017-03-20 00:41 - 2017-03-20 00:41 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2017-03-20 00:41 - 2017-03-20 00:41 - 00019112 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-19 16:38 - 2016-12-07 14:18 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Mozilla
2017-04-19 14:41 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-04-19 14:41 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-04-19 14:34 - 2016-12-10 22:31 - 00250816 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-04-19 14:32 - 2016-08-24 00:39 - 00000336 _____ C:\Windows\Tasks\Health-Check-auto.job
2017-04-19 14:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-04-19 00:35 - 2016-08-24 00:39 - 00000330 _____ C:\Windows\Tasks\Health-Check.job
2017-04-18 23:35 - 2016-08-24 00:39 - 00000338 _____ C:\Windows\Tasks\Health-Check-deep.job
2017-04-18 20:38 - 2014-07-14 18:05 - 00000000 ____D C:\Users\PC\AppData\LocalLow\Adblock Plus for IE
2017-04-18 15:04 - 2014-05-03 18:16 - 00000000 ____D C:\Users\PC
2017-04-18 13:03 - 2015-06-07 22:03 - 00000000 ____D C:\Users\PC\AppData\Roaming\MPC-HC
2017-04-18 00:48 - 2016-10-26 17:59 - 00003824 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1477497594
2017-04-18 00:48 - 2016-10-26 17:59 - 00000000 ____D C:\Program Files (x86)\Opera
2017-04-18 00:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-04-18 00:33 - 2017-01-03 23:01 - 00000000 ____D C:\Program Files (x86)\System Ninja
2017-04-18 00:32 - 2014-10-04 18:18 - 00000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2017-04-17 22:10 - 2014-05-08 12:19 - 00000000 ____D C:\Users\PC\Documents\PrintScreen Files
2017-04-17 15:53 - 2014-09-13 18:46 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2017-04-16 12:19 - 2017-01-16 22:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-04-15 23:41 - 2016-05-21 18:17 - 00000000 ____D C:\Users\PC\Documents\Tenerife - Los Cristianos Mei 2016
2017-04-15 15:00 - 2017-02-05 15:46 - 00000000 ____D C:\Users\PC\Documents\NeroVision
2017-04-14 23:29 - 2014-08-23 23:26 - 00000000 ____D C:\Users\PC\AppData\Local\FirestormOS_x64
2017-04-14 22:13 - 2014-05-04 03:41 - 00748418 _____ C:\Windows\system32\perfh013.dat
2017-04-14 22:13 - 2014-05-04 03:41 - 00154460 _____ C:\Windows\system32\perfc013.dat
2017-04-14 22:13 - 2009-07-14 07:13 - 01677866 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-13 18:12 - 2015-11-08 16:48 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-13 18:12 - 2014-12-26 14:25 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-04-13 16:49 - 2014-06-08 23:20 - 00000000 ____D C:\ProgramData\TEMP
2017-04-12 21:06 - 2016-12-01 00:33 - 00004548 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-04-12 21:06 - 2015-10-14 21:32 - 00004422 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-04-12 21:06 - 2014-09-28 12:33 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-04-12 21:06 - 2014-09-28 12:33 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-12 21:06 - 2014-05-07 00:10 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-04-12 21:06 - 2014-05-07 00:10 - 00000000 ____D C:\Windows\system32\Macromed
2017-04-12 14:32 - 2016-03-21 17:13 - 00700352 _____ C:\Windows\system32\FNTCACHE.DAT
2017-04-12 13:43 - 2014-05-17 01:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-04-12 13:43 - 2014-05-17 01:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-12 13:43 - 2014-05-17 01:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-04-12 13:42 - 2014-05-06 21:07 - 00000000 ____D C:\Windows\system32\MRT
2017-04-12 13:39 - 2016-03-31 00:31 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-12 13:37 - 2014-05-06 15:51 - 01651598 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-04-08 17:16 - 2014-08-21 22:00 - 00198024 _____ C:\Users\PC\AppData\Local\GDIPFONTCACHEV1.DAT
2017-04-08 16:44 - 2016-08-13 16:12 - 00000000 ____D C:\Program Files\Microsoft Office
2017-04-08 16:44 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-04-08 16:42 - 2010-11-21 09:16 - 00000000 ____D C:\Windows\ShellNew
2017-04-07 21:37 - 2015-12-03 16:19 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2017-04-07 21:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2017-04-07 12:18 - 2016-10-22 17:15 - 00003886 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1477149299
2017-04-07 11:48 - 2017-03-15 12:51 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-04-07 11:40 - 2014-08-10 15:02 - 00000000 ____D C:\Users\Gast
2017-04-05 12:01 - 2014-09-02 13:06 - 00000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics
2017-04-05 11:54 - 2016-10-22 17:14 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 01005048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 00556784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 00164064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 00127112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-04-05 11:54 - 2016-10-22 17:13 - 00101152 _____ (AVAST Softwar
Laatst gewijzigd door marieke72 op 19 apr 2017, 21:50, 1 keer totaal gewijzigd.
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

marieke72
Lid geworden op: 25 jan 2014, 22:00

19 apr 2017, 21:49

2de log

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 17-04-2017 01
Gestart door PC (19-04-2017 16:51:46)
Gestart vanaf C:\Users\PC\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-03 16:16:27)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3226599607-3834390706-307609194-500 - Administrator - Disabled)
Gast (S-1-5-21-3226599607-3834390706-307609194-501 - Limited - Enabled) => C:\Users\Gast
PC (S-1-5-21-3226599607-3834390706-307609194-1000 - Administrator - Enabled) => C:\Users\PC

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adblock Plus voor IE (32-bit en 64-bit) (HKLM\...\{EAB6B77C-0E46-48EF-8660-7ABA400F7FB4}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.3.2291 - AVAST Software)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Copy (x32 Version: 130.0.366.000 - Hewlett-Packard) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F4500_SW_MIN (x32 Version: 130.0.406.000 - Hewlett-Packard) Hidden
F4500 (x32 Version: 130.0.406.000 - Hewlett-Packard) Hidden
Firestorm SecondLife and OpenSim viewer (Version: 4.7.47975 - The Phoenix Firestorm Project, Inc.) Hidden
FirestormOS-Releasex64 (HKLM\...\FirestormOS-Releasex64) (Version: 5.0.1.52150 - The Phoenix Firestorm Project, Inc.)
Firestorm-Release (HKLM-x32\...\Firestorm-Release) (Version: 5.0.1.52150 - The Phoenix Firestorm Project, Inc.)
Firestorm-Releasex64 x64 (HKLM-x32\...\{63667a72-ee55-4dac-b231-18e6773104d8}) (Version: 4.7.47975 - The Phoenix Firestorm Project, Inc.)
FormatFactory 4.0.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.0.0.0 - Free Time)
Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.5 - Gadwin Systems, Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hamster Free Video Converter (HKLM\...\{7E350663-86D3-466A-AB79-28156A9ABF6E}_is1) (Version: 2.5.8.11 - Hamster Soft)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet F4500 Printer Driver Software 13.0 Rel .6 (HKLM\...\{7F08A772-2816-4F46-84F1-49578502AD28}) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{48EC231C-438C-48EC-B9AC-482C32A4232D}) (Version: 12.6.14.19 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (x32 Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (x32 Version: 130.0.303.000 - Hewlett-Packard) Hidden
Iomega Encryption (HKLM\...\{578831A8-CB47-471F-A552-907EC3E9E040}) (Version: 1.03.0001 - Iomega an EMC Company)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 10.9.8 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.8 - )
Malwarebytes versie 3.0.4.1269 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.4.1269 - Malwarebytes)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1 - Mozilla)
Mozilla Thunderbird 52.0.1 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 52.0.1 (x86 nl)) (Version: 52.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM-x32\...\{235BBFC6-D863-4066-A01A-3BD504C31043}) (Version: 7.02.2620 - Nero AG)
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
NTI Backup Now 5 (x32 Version: 5.5.0.63 - NewTech Infosystems, Inc.) Hidden
Opera Stable 41.0.2353.56 (HKLM-x32\...\Opera 41.0.2353.56) (Version: 41.0.2353.56 - Opera Software)
Opera Stable 42.0.2393.85 (HKLM-x32\...\Opera 42.0.2393.85) (Version: 42.0.2393.85 - Opera Software)
Opera Stable 44.0.2510.1218 (HKLM-x32\...\Opera 44.0.2510.1218) (Version: 44.0.2510.1218 - Opera Software)
Opera Stable 44.0.2510.857 (HKLM-x32\...\Opera 44.0.2510.857) (Version: 44.0.2510.857 - Opera Software)
PCKLang.nl (Version: 1.0.0 - Essentware) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PIXresizer (HKLM-x32\...\PIXresizer_is1) (Version: 2.0.4 - Bluefive software)
PowerpointImageExtractor (HKLM-x32\...\PowerpointImageExtractor_is1) (Version: V 1.2b (http://alainlecomte.free.fr/Download.htm) - )
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SafeZone Stable 3.55.2393.590 (x32 Version: 3.55.2393.590 - Avast Software) Hidden
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Ninja version 3.1.6 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.1.6 - SingularLabs)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Video Strip Poker Supreme (HKLM-x32\...\Video Strip Poker Supreme) (Version: - Torquemada Games)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Deployment Tools (HKLM-x32\...\{BFC9778E-9765-C94C-C082-C2514F8DEB9B}) (Version: 8.59.25584 - Microsoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows PE x86 x64 (HKLM-x32\...\{F89D69CA-6EE1-E037-DD3B-08CDDE1BED1C}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{85F4ACB1-E7DC-C3C6-F4FD-BB936DF2695E}) (Version: 8.59.25584 - Microsoft)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {05FBE3E3-FFC5-4E7F-943A-F11782887A9A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {0EC787B8-93C6-4240-9AF5-878E95125935} - System32\Tasks\{1FE16C78-98D6-4CCC-9B06-CB55AEE2B7C9} => C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe [2006-09-29] (Nero AG)
Task: {1029E294-1E52-4325-8A96-4EF5D42C78A2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {111A7B58-DB9B-447C-B886-7F90823A4CC0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-04-05] (AVAST Software)
Task: {1601CA36-FAC4-4BAC-AF8A-50B9138D4202} - \{F70846EA-42C0-4004-817C-2E929AF9CDE1} -> Geen bestand <==== AANDACHT
Task: {2CFFFFA9-C05A-496D-9C23-1BB77BE53DD8} - \{556E5FB0-9BBE-4BC2-8473-02287ABB6E04} -> Geen bestand <==== AANDACHT
Task: {30B0BBEF-2131-436B-BA52-CA4822EFC817} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3226599607-3834390706-307609194-1000
Task: {3C19E4DC-E3E0-469B-83B3-E332BC4735DB} - \Opera scheduled Autoupdate 1435662536 -> Geen bestand <==== AANDACHT
Task: {497289C8-D9D3-4F53-BB00-4E235FB33AB3} - \Opera scheduled Autoupdate 1413473089 -> Geen bestand <==== AANDACHT
Task: {5C1A6321-5D2B-479C-9D91-03AB76E5A014} - \{4B7E4EFB-F7CF-45C9-820E-3E25D9C7C34D} -> Geen bestand <==== AANDACHT
Task: {62E697BE-DDB4-4C4E-B725-BB36004403ED} - \Opera scheduled Autoupdate 1408105867 -> Geen bestand <==== AANDACHT
Task: {6C6E299F-1381-422B-98E3-C8C1F67A7178} - System32\Tasks\Health-Check-deep => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: {86802B3C-749F-4D17-84DC-9FD0F83FAA55} - System32\Tasks\Health-Check-auto => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: {878E0A50-C670-43BA-9198-E96B9D76A3EB} - System32\Tasks\Health-Check => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: {8808AFEC-42BE-4FE0-A1C9-B32384898CC2} - System32\Tasks\SafeZone scheduled Autoupdate 1463861584 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {89CEF4D6-D05A-4AE6-B9AB-8111383995F8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software)
Task: {8A095109-EBFC-4950-B5F4-21C8F48CB4CF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-12] (Adobe Systems Incorporated)
Task: {977E9780-B16A-4B60-A5AA-065202929E14} - System32\Tasks\{19B7C605-CDD3-4DA3-91D0-98F81EDEB1CE} => pcalua.exe -a "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe" -d "C:\Program Files (x86)\Common Files\DVDVideoSoft"
Task: {9F70C58D-9A1F-4C07-B924-F44EFCBE7D76} - \{1DE284B0-2C96-4A2A-AA63-F7B789D1903D} -> Geen bestand <==== AANDACHT
Task: {A6394258-1BD5-4D56-8A7C-06AF659708AE} - \{6B022555-AE29-420D-9032-78FEA8954F18} -> Geen bestand <==== AANDACHT
Task: {B7CF552B-AB50-40D1-BFF4-8543866D84F5} - System32\Tasks\UninstallMonitor => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
Task: {BCE068EA-F783-4F78-B7E7-9BEA3A5D972B} - System32\Tasks\SafeZone scheduled Autoupdate 1477149299 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {CAC0095A-0918-4D2E-9A1B-0054235FB9C6} - System32\Tasks\{D0F1C9CC-C75B-40A9-8835-5CDA02AC2EAF} => C:\Program Files (x86)\Opera\launcher.exe [2017-04-12] (Opera Software)
Task: {CBC20AEB-FEBF-4197-A9B6-F5CC5886853B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [2017-04-12] (Adobe Systems Incorporated)
Task: {D9E344DB-B682-49E3-A0C8-4B79687771D5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {E097256F-D284-4D89-9E18-331FD0DE7BF0} - \Opera scheduled Autoupdate 1449697884 -> Geen bestand <==== AANDACHT
Task: {E21A1F0A-5272-4CB2-83B1-9BCF915051FA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated)
Task: {E54E0967-CA62-47AF-9E6F-E241D0D4122B} - System32\Tasks\Opera scheduled Autoupdate 1477497594 => C:\Program Files (x86)\Opera\launcher.exe [2017-04-12] (Opera Software)
Task: {E5B29E9B-3ED8-4D96-AEC8-A4CA5518818E} - System32\Tasks\SafeZone scheduled Autoupdate 1465591742 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {EDECF158-02F5-4CF2-8A67-B60648834B6D} - \{C3295539-5F1C-42DD-8848-AD37BCD0F0ED} -> Geen bestand <==== AANDACHT
Task: {F143CFDE-5906-4724-8E89-BE03B06D09B8} - \Opera scheduled Autoupdate 1414678713 -> Geen bestand <==== AANDACHT
Task: {F4B50F5A-3D5C-496D-B074-B158C149CECD} - \Opera scheduled Autoupdate 1424171179 -> Geen bestand <==== AANDACHT
Task: {F8CBA7F4-8ECE-4E1B-A1E3-406F3132E2AC} - \{A5BEE134-697F-478C-B7C0-E6C6F42A86BC} -> Geen bestand <==== AANDACHT

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\Windows\Tasks\Health-Check-auto.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: C:\Windows\Tasks\Health-Check-deep.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: C:\Windows\Tasks\Health-Check.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2014-11-20 22:23 - 2014-11-20 22:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2016-12-10 22:31 - 2016-11-29 07:27 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00162024 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-04-07 11:46 - 2017-04-07 11:46 - 00790544 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00275776 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2014-11-20 22:23 - 2014-11-20 22:23 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2017-04-18 00:48 - 2017-04-12 06:37 - 87057496 _____ () C:\Program Files (x86)\Opera\44.0.2510.1218\opera_browser.dll
2017-04-18 00:48 - 2017-04-12 06:37 - 02827352 _____ () C:\Program Files (x86)\Opera\44.0.2510.1218\libglesv2.dll
2017-04-18 00:48 - 2017-04-12 06:37 - 00100440 _____ () C:\Program Files (x86)\Opera\44.0.2510.1218\libegl.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00176480 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-04-19 12:40 - 2017-04-19 12:40 - 06021752 _____ () C:\Program Files\AVAST Software\Avast\defs\17041900\algo.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00653520 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00230632 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2010-03-02 11:30 - 2010-03-02 11:30 - 01066240 _____ () C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\ACE.dll
2010-03-02 11:30 - 2010-03-02 11:30 - 00103680 _____ () C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\ACEXML.dll
2010-03-02 11:30 - 2010-03-02 11:30 - 00066816 _____ () C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\ACEXML_Parser.dll
2016-10-22 17:13 - 2016-10-22 17:13 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-04-07 11:45 - 2017-04-07 11:45 - 00293936 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)

AlternateDataStreams: C:\ProgramData\TEMP:364682BC [116]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\Users\PC\AppData\Local\desktop.ini:722b2b1c349a06abf0e866180e5a7e63 [738]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE trusted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\amazon.com -> hxxps://amazon.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3226599607-3834390706-307609194-1000\...\100sexlinks.com -> 100sexlinks.com

Er zijn 5317 Meer websites.


==================== Hosts inhoud: ==========================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2009-07-14 04:34 - 2016-03-21 16:08 - 00001003 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-3226599607-3834390706-307609194-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 195.130.131.1 - 195.130.130.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==


==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{49DC6F4F-8603-4CE1-A64C-B08932EFC27E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{44A0BF08-0D59-42E0-9B49-C59EF82013C7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{ED32E1EE-B986-4214-A5BE-22E6EF983803}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{FDE8637C-5DC0-465B-BCD7-4193BC3FFFA6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C65A7CA8-FBF9-4A5A-9C7E-8AE89C929526}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{CC99859E-A101-4808-8BCC-A8D69420F90A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{6AC57DA4-2CC5-4264-A315-653B73BD00D4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{30735F43-DDA7-43DE-AECB-6689EDB33873}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{4C423299-519A-434C-9033-FBF0F6ED6FF0}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{6F14A941-9967-4E69-9F62-4433C7580B29}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{8589A834-0FBB-4A5F-8A95-8B5694F15E78}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{5AF21329-9266-417E-AAD9-2CDED03136FD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{6617CCE9-FD70-4C0A-9289-D43FCE932E8D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{F1353595-3411-4FAD-A7AC-8C0ACD8C644D}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{ED9050A6-4526-4404-8847-8EDB8C5F3FD8}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{5C88B52E-AB95-4403-A5EA-1F7B2E49E600}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{E0BE7206-E1E5-4B18-9F49-C80ED12CCE51}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DB9EB715-AB09-45DF-BCD7-5653765584EA}] => (Allow) LPort=2869
FirewallRules: [{C19BA6F3-AF00-4FEE-93B4-92BDD56E01B1}] => (Allow) LPort=1900
FirewallRules: [{D8E6A4E4-A734-4B7F-9807-D5EBB9053BDC}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{82D0A74B-F353-4EAE-B4A7-2EA2EBBBD53E}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{015A7D35-BD4F-4D4A-A098-971A47D91973}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
FirewallRules: [{7F028ABA-BAE7-4430-A174-9B57A3E1D497}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\ShadowSvc.exe
FirewallRules: [{B0DF4864-85B9-41CE-ADC1-1C60CC704DE5}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{1F12229E-109F-46BA-B556-8D9C7EB016A6}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
FirewallRules: [{B66948AC-73E9-444E-B2DB-9D09BB3A8D7D}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{AF23FBC1-EAB2-4335-AD84-4C71EC45A2DD}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\ShadowSvc.exe
FirewallRules: [TCP Query User{11E8FB51-28FA-409F-9301-AE7A71C1A7E9}C:\program files\firestorm-releasex64\slvoice.exe] => (Allow) C:\program files\firestorm-releasex64\slvoice.exe
FirewallRules: [UDP Query User{0F20968A-9D6A-4F2B-AB43-83FBFF971EA9}C:\program files\firestorm-releasex64\slvoice.exe] => (Allow) C:\program files\firestorm-releasex64\slvoice.exe
FirewallRules: [{464D7F9E-6867-4ED9-930A-1E5D613080BD}] => (Block) C:\program files\firestorm-releasex64\slvoice.exe
FirewallRules: [{A6E5A675-CD7C-4EA4-9D1D-F0BA6E366380}] => (Block) C:\program files\firestorm-releasex64\slvoice.exe
FirewallRules: [{ADB2903B-2200-4ADB-896C-1D437F352C29}] => (Allow) C:\Users\PC\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
FirewallRules: [{9A8CD83E-CACF-4EB5-B4C5-6B6FD5792E9E}] => (Allow) C:\Users\PC\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
FirewallRules: [{475594B2-7BFD-49D4-9F72-3667DB1CA71C}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS70EC\HPDiagnosticCoreUI.exe
FirewallRules: [{D10E7ECB-3828-45E9-951C-01DCD36B095B}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS70EC\HPDiagnosticCoreUI.exe
FirewallRules: [{2CA8787E-9467-4953-BFAC-B6343DDA49D8}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS00E2\HPDiagnosticCoreUI.exe
FirewallRules: [{0A2DA190-0E64-47A8-841E-F5778F9D9DA8}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS00E2\HPDiagnosticCoreUI.exe
FirewallRules: [{BD4362CE-71CC-4B53-9B25-8E73E6737AB0}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS53B3\HPDiagnosticCoreUI.exe
FirewallRules: [{AD7BE939-4A5C-44CF-BCAE-23ED6DEC05E4}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS53B3\HPDiagnosticCoreUI.exe
FirewallRules: [TCP Query User{5275F6CF-EE7D-4686-948F-68DDD24F08A6}C:\users\pc\downloads\ffinstonline.exe] => (Allow) C:\users\pc\downloads\ffinstonline.exe
FirewallRules: [UDP Query User{4FA66C05-9E73-4616-924A-C79B97D8CA8C}C:\users\pc\downloads\ffinstonline.exe] => (Allow) C:\users\pc\downloads\ffinstonline.exe
FirewallRules: [{1BFF4E20-8945-4B39-AB06-BFCC65289423}] => (Block) C:\users\pc\downloads\ffinstonline.exe
FirewallRules: [{F5319192-C9B8-4993-AA95-A8F3FEB6E84C}] => (Block) C:\users\pc\downloads\ffinstonline.exe
FirewallRules: [{13C62208-64E8-4B1A-8435-BC4F4FD7072A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{D259FBFC-1416-434B-91C0-861066B0404D}] => (Allow) C:\Program Files (x86)\SpringFiles\SpringFiles.exe
FirewallRules: [{BF62B974-2CFA-4FA3-83AB-B3AEC3FD9485}] => (Allow) C:\Program Files (x86)\SpringFiles\SpringFiles.exe
FirewallRules: [{8F94125D-7E06-4465-A00D-9CB211A3BB9C}] => (Allow) C:\Torrentex\Torrentex.exe
FirewallRules: [{D83DB37B-A367-490F-A859-DE210AD2D110}] => (Allow) C:\Torrentex\Torrentex.exe
FirewallRules: [{129511FA-5409-4196-8396-1696F65A55B8}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS35AB\HPDiagnosticCoreUI.exe
FirewallRules: [{19A1696A-CD6B-4482-988F-15C46469C6A3}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS35AB\HPDiagnosticCoreUI.exe
FirewallRules: [{F9A65CA2-3D5F-4BAE-B806-FCB6848089AF}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS35EF\HPDiagnosticCoreUI.exe
FirewallRules: [{9EF8C805-65B5-445B-85BA-C1C208C34E90}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS35EF\HPDiagnosticCoreUI.exe
FirewallRules: [{DBE3E0E0-805F-48CC-BA06-58504149C3BB}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{8A2B35E8-10BB-4DBB-A0F9-9438E357A0F1}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{659D0709-14C6-4788-85B5-476DAEE28B88}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{9AC0788A-C234-4C65-9EF4-9C1DE4F7CCA0}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [TCP Query User{28A6FD4D-1095-40C4-A673-9F88BE45E335}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [UDP Query User{070B7BC2-C7E0-4E48-973E-9A383DD118E6}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe
FirewallRules: [{671E17D0-E578-44A7-BB9B-6AF1045DCF5C}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS5BE4\HPDiagnosticCoreUI.exe
FirewallRules: [{10B5A1F2-8A90-4F93-84BB-91DBC24B5325}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS5BE4\HPDiagnosticCoreUI.exe
FirewallRules: [{9245FC89-89D2-4218-BBFD-701020547047}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS5C8B\HPDiagnosticCoreUI.exe
FirewallRules: [{852FA77E-8AF2-404D-9BC8-7459DA4BB4FF}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS5C8B\HPDiagnosticCoreUI.exe
FirewallRules: [{05ABF148-138C-49BC-AB2B-D7C5D165BA71}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS60A3\HPDiagnosticCoreUI.exe
FirewallRules: [{A1017853-4F93-4F48-8E5D-F5B3C4B86484}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS60A3\HPDiagnosticCoreUI.exe
FirewallRules: [{238EEA37-2AC5-4547-8B29-17D866E28C85}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS6112\HPDiagnosticCoreUI.exe
FirewallRules: [{1CAB0D41-571B-4478-8ABD-36288F00578F}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS6112\HPDiagnosticCoreUI.exe
FirewallRules: [{485CC6E8-B041-42D8-9C32-5B6833F76521}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7FC1D3BF-FD44-400D-9437-71DC44623F69}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\PowerSuite.exe
FirewallRules: [{7C06EEF5-32CE-4D80-8F55-B5EABDAEE19B}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\PowerSuite.exe
FirewallRules: [{54C51946-30A8-4F70-991A-64B01F55E58A}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\ServiceProvider.exe
FirewallRules: [{0EA6081E-6C37-461A-A5A0-B342BD22EF59}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\ServiceProvider.exe
FirewallRules: [{C954916F-C129-4D02-9E09-15E8509C8CD7}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\ServiceProvider.exe
FirewallRules: [{5EC9C913-5BC4-4077-93A1-06B705843103}] => (Allow) C:\Program Files (x86)\simplitec\simplitec\simpliclean\ServiceProvider.exe
FirewallRules: [{18DF29F8-5A21-4AC7-B4FB-E33B99551341}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [{8574FCD3-A83F-4A55-AFB1-B542542C9C7C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{4D6EB9D1-E80D-4905-9B1A-824132E89B34}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{CA5EF528-7D5B-4166-9B67-4C332AC206EF}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{096864E4-369B-49AE-94E3-8F646A15A4C2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{83D3782C-3932-456C-951C-62D411AB9523}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{AA140217-165E-47EF-BA15-B8FDEB0CD8F5}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{32C84EB0-5132-43CD-970A-6C4E544A2C31}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{F20C36AC-1920-4C1A-B611-6C35FB575E27}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{8CA15AEE-92D6-40B2-A1B4-58DFE518DD49}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.561\SZBrowser.exe
FirewallRules: [{BDBD8334-3F5A-4475-9094-E3A4A116ED00}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.590\SZBrowser.exe
FirewallRules: [{DC66941D-9229-40A9-B65C-C070325A28E6}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS79DE\HPDiagnosticCoreUI.exe
FirewallRules: [{23FCE161-F971-4EC8-8EDC-2147F38C72B6}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS79DE\HPDiagnosticCoreUI.exe
FirewallRules: [{695F1842-B5CE-4FBA-847C-5C78085200FE}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS7A53\HPDiagnosticCoreUI.exe
FirewallRules: [{B287250E-78AF-4B4E-B8A1-7D4A20E9B16A}] => (Allow) C:\Users\PC\AppData\Local\Temp\7zS7A53\HPDiagnosticCoreUI.exe
FirewallRules: [{3823FA32-97C6-458A-A632-419D92AEDF8C}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
FirewallRules: [TCP Query User{D1169E15-4EE7-433C-AD28-4DD857396E05}C:\program files (x86)\firestorm-release\slvoice.exe] => (Allow) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [UDP Query User{43D8BAE4-1652-4D16-8836-A9122DBB2C98}C:\program files (x86)\firestorm-release\slvoice.exe] => (Allow) C:\program files (x86)\firestorm-release\slvoice.exe
FirewallRules: [{7C144477-BE3F-45F6-B048-37112530717C}] => (Allow) C:\Program Files (x86)\Opera\44.0.2510.1218\opera.exe

==================== Herstelpunten =========================

20-02-2017 16:43:24 Revo Uninstaller's restore point - Video Strip Poker Supreme
23-02-2017 14:40:50 Windows Update
01-03-2017 13:44:51 Installed IncrediMail.
01-03-2017 16:14:27 JRT Pre-Junkware Removal
11-03-2017 15:52:32 Revo Uninstaller's restore point - Switch Sound File Converter
11-03-2017 15:53:58 Revo Uninstaller's restore point - Switch Sound File Converter
11-03-2017 22:31:30 Revo Uninstaller's restore point - Streaming Audio Recorder V4.1.6
16-03-2017 02:40:01 Windows Update
25-03-2017 00:01:25 Revo Uninstaller's restore point - Free MP3 Converter 7.6.0.a
29-03-2017 10:38:32 Windows Update
01-04-2017 13:15:19 Windows Update
02-04-2017 15:14:14 Revo Uninstaller's restore point - Microsoft Office Home and Student 2010
02-04-2017 15:14:47 Removed Microsoft Office Home and Student 2010
02-04-2017 15:42:28 Herstelbewerking
02-04-2017 16:06:01 Windows Update
02-04-2017 16:24:47 Herstelbewerking
02-04-2017 16:40:42 Microsoft PowerPoint Viewer is geïnstalleerd
02-04-2017 16:44:04 Revo Uninstaller's restore point - Microsoft PowerPoint Viewer
02-04-2017 16:44:22 Microsoft PowerPoint Viewer is verwijderd
02-04-2017 16:53:02 Installed Microsoft PowerPoint Viewer
02-04-2017 16:56:51 Revo Uninstaller's restore point - Microsoft PowerPoint Viewer
02-04-2017 16:57:02 Removed Microsoft PowerPoint Viewer
03-04-2017 12:25:42 Microsoft PowerPoint Viewer is geïnstalleerd
03-04-2017 12:28:34 Revo Uninstaller's restore point - Microsoft PowerPoint Viewer
03-04-2017 12:28:54 Microsoft PowerPoint Viewer is verwijderd
03-04-2017 15:51:39 Microsoft PowerPoint Viewer is geïnstalleerd
03-04-2017 16:00:13 Revo Uninstaller's restore point - Microsoft PowerPoint Viewer
03-04-2017 16:00:30 Microsoft PowerPoint Viewer is verwijderd
05-04-2017 16:27:58 Revo Uninstaller's restore point - Video Strip Poker Supreme
07-04-2017 16:55:47 Windows Update
07-04-2017 16:56:26 Windows Update
08-04-2017 00:11:47 Windows Update
08-04-2017 00:23:51 Windows Update
08-04-2017 16:41:02 Installed Microsoft Office Home and Student 2010
09-04-2017 13:01:55 Windows Update
10-04-2017 00:46:28 Windows Update
10-04-2017 13:34:12 Windows Update
10-04-2017 17:05:38 JRT Pre-Junkware Removal
12-04-2017 13:34:30 Windows Update
13-04-2017 00:38:17 Windows Update
13-04-2017 23:37:18 Windows Update
14-04-2017 22:03:23 backup 1404
15-04-2017 15:39:23 Windows Back-up
15-04-2017 21:44:31 Windows Back-up
15-04-2017 22:24:06 Windows Back-up
15-04-2017 22:28:35 Windows Back-up
18-04-2017 15:00:26 Windows Back-up

==================== Defecte Apparaatbeheer Apparaten =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (04/19/2017 02:33:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

Error: (04/19/2017 12:36:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

Error: (04/18/2017 03:13:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

Error: (04/18/2017 03:05:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen.

Error: (04/18/2017 12:55:31 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: De index kan niet worden geïnitialiseerd.

Details:
De catalogus met de inhoudsindex is beschadigd. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/18/2017 12:55:31 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: De toepassing kan niet worden geïnitialiseerd.

Context: toepassing Windows

Details:
De catalogus met de inhoudsindex is beschadigd. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/18/2017 12:55:31 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Het object van de gegevensverzamelaar kan niet worden geïnitialiseerd.

Context: toepassing Windows, catalogus SystemIndex

Details:
De catalogus met de inhoudsindex is beschadigd. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/18/2017 12:55:31 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: De invoegtoepassing in <Search.TripoliIndexer> kan niet worden geïnitialiseerd.

Context: toepassing Windows, catalogus SystemIndex

Details:
Kan element niet vinden. (HRESULT : 0x80070490) (0x80070490)

Error: (04/18/2017 12:55:19 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: De invoegtoepassing in <Search.JetPropStore> kan niet worden geïnitialiseerd.

Context: toepassing Windows, catalogus SystemIndex

Details:
De catalogus met de inhoudsindex is beschadigd. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/18/2017 12:55:19 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: De Windows Search-service kan de gegevens van het eigenschappenarchief niet laden.

Context: toepassing Windows, catalogus SystemIndex

Details:
De database met de inhoudsindex is beschadigd. (HRESULT : 0xc0041800) (0xc0041800)


Systeemfouten:
=============
Error: (04/19/2017 02:32:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De sbapifs-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (04/19/2017 12:34:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De sbapifs-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (04/18/2017 03:12:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De sbapifs-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (04/18/2017 03:03:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De sbapifs-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (04/18/2017 12:56:01 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Servicebesturingsbeheer heeft na het onverwachte afsluiten van de Windows Search-service geprobeerd een herstelactie (Service opnieuw starten) uit te voeren, maar deze actie is met de volgende fout mislukt:
De service is al gestart.

Error: (04/18/2017 12:55:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De Windows Search-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 30000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (04/18/2017 12:55:31 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: De Windows Search-service is gestopt met de specifieke servicefout %%-1073473535.

Error: (04/18/2017 12:51:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De sbapifs-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (04/18/2017 12:48:02 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 20.

Error: (04/17/2017 10:01:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De HP Support Solutions Framework Service-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.


CodeIntegrity:
===================================
Date: 2017-01-02 18:35:31.373
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23418_none_c0542ca41641d65c\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:31.264
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23418_none_c0542ca41641d65c\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:31.155
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23349_none_c034bb441659465f\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:31.061
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23349_none_c034bb441659465f\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.921
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23334_none_c03a89be1655abbb\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.827
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23334_none_c03a89be1655abbb\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.718
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23313_none_c04f294c16465a82\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.640
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23313_none_c04f294c16465a82\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.531
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23250_none_c020e6d81669811a\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

Date: 2017-01-02 18:35:30.453
Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23250_none_c020e6d81669811a\appidapi.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.


==================== Geheugen info ===========================

Processor: AMD Phenom(tm) II X6 1100T Processor
Percentage geheugen in gebruik: 32%
Totaal fysiek RAM-geheugen: 8190.18 MB
Beschikbaar fysiek RAM-geheugen: 5516.91 MB
Totaal Virtueel geheugen: 16678.54 MB
Beschikbaar Virtual geheugen: 13843.88 MB

==================== Schijven ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:697.74 GB) NTFS
Drive d: (DVD) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 054BE54D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Eind van Addition.txt ============================
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

20 apr 2017, 12:00

Hallo,

Reset IE Handleiding


De tool FRST.exe staat in de dik gedrukte map: C:\Users\PC\Downloads <== Sleep de FRST.exe vanuit deze map naar je bureaublad.



Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

Klik Windows knop pus R tegelijk in. Afbeelding
"Uitvoeren" opent vul daarNotepad in en daarna op "OK", Kladblok opent.
Kopieer onderstaande dik gedrukte code en plak dat in "Kladblok".


start
CreateRestorePoint:
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => -> Geen bestand
GroupPolicy: Restrictie - Windows Defender <======= AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <======= AANDACHT
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
CHR dev: Chrome dev build gedetecteerd! <======= AANDACHT
S3 InnovativeSolutions_monitor; C:\Program Files (x86)\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [X]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
S4 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
Task: {1601CA36-FAC4-4BAC-AF8A-50B9138D4202} - \{F70846EA-42C0-4004-817C-2E929AF9CDE1} -> Geen bestand <==== AANDACHT
Task: {2CFFFFA9-C05A-496D-9C23-1BB77BE53DD8} - \{556E5FB0-9BBE-4BC2-8473-02287ABB6E04} -> Geen bestand <==== AANDACHT
Task: {3C19E4DC-E3E0-469B-83B3-E332BC4735DB} - \Opera scheduled Autoupdate 1435662536 -> Geen bestand <==== AANDACHT
Task: {497289C8-D9D3-4F53-BB00-4E235FB33AB3} - \Opera scheduled Autoupdate 1413473089 -> Geen bestand <==== AANDACHT
Task: {5C1A6321-5D2B-479C-9D91-03AB76E5A014} - \{4B7E4EFB-F7CF-45C9-820E-3E25D9C7C34D} -> Geen bestand <==== AANDACHT
Task: {62E697BE-DDB4-4C4E-B725-BB36004403ED} - \Opera scheduled Autoupdate 1408105867 -> Geen bestand <==== AANDACHT
Task: {9F70C58D-9A1F-4C07-B924-F44EFCBE7D76} - \{1DE284B0-2C96-4A2A-AA63-F7B789D1903D} -> Geen bestand <==== AANDACHT
Task: {A6394258-1BD5-4D56-8A7C-06AF659708AE} - \{6B022555-AE29-420D-9032-78FEA8954F18} -> Geen bestand <==== AANDACHT
Task: {E097256F-D284-4D89-9E18-331FD0DE7BF0} - \Opera scheduled Autoupdate 1449697884 -> Geen bestand <==== AANDACHT
Task: {EDECF158-02F5-4CF2-8A67-B60648834B6D} - \{C3295539-5F1C-42DD-8848-AD37BCD0F0ED} -> Geen bestand <==== AANDACHT
Task: {F143CFDE-5906-4724-8E89-BE03B06D09B8} - \Opera scheduled Autoupdate 1414678713 -> Geen bestand <==== AANDACHT
Task: {F4B50F5A-3D5C-496D-B074-B158C149CECD} - \Opera scheduled Autoupdate 1424171179 -> Geen bestand <==== AANDACHT
Task: {F8CBA7F4-8ECE-4E1B-A1E3-406F3132E2AC} - \{A5BEE134-697F-478C-B7C0-E6C6F42A86BC} -> Geen bestand <==== AANDACHT
AlternateDataStreams: C:\ProgramData\TEMP:364682BC [116]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\Users\PC\AppData\Local\desktop.ini:722b2b1c349a06abf0e866180e5a7e63 [738]
Hosts:
EmptyTemp:
end

Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt.
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

20 apr 2017, 14:58

Hallo ,
als ik goed begrijp eerst IE resetten voor ik verder ga met de rest?

Marieke.
PS: vergeef me mijn onwetendheid aub.
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

20 apr 2017, 15:12

marieke72 schreef:Hallo ,
als ik goed begrijp eerst IE resetten voor ik verder ga met de rest?

Marieke.
PS: vergeef me mijn onwetendheid aub.
Je onwetendheid maakt niet uit hoor liever meerdere malen vragen als dat het niet lukt :wink:

Na het resetten van IE,

De tool FRST.exe staat in de dik gedrukte map: C:\Users\PC\Downloads <== Sleep de FRST.exe vanuit deze map naar je bureaublad.

Hierna de stappen onder de rode zin doen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

20 apr 2017, 16:41

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 19-04-2017
Gestart door PC (20-04-2017 16:33:03) Run:1
Gestart vanaf C:\Users\PC\Desktop
Geladen Profielen: PC (Beschikbare Profielen: PC & Gast)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => -> Geen bestand
GroupPolicy: Restrictie - Windows Defender <======= AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <======= AANDACHT
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Geen bestand
CHR dev: Chrome dev build gedetecteerd! <======= AANDACHT
S3 InnovativeSolutions_monitor; C:\Program Files (x86)\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [X]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
S4 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
Task: {1601CA36-FAC4-4BAC-AF8A-50B9138D4202} - \{F70846EA-42C0-4004-817C-2E929AF9CDE1} -> Geen bestand <==== AANDACHT
Task: {2CFFFFA9-C05A-496D-9C23-1BB77BE53DD8} - \{556E5FB0-9BBE-4BC2-8473-02287ABB6E04} -> Geen bestand <==== AANDACHT
Task: {3C19E4DC-E3E0-469B-83B3-E332BC4735DB} - \Opera scheduled Autoupdate 1435662536 -> Geen bestand <==== AANDACHT
Task: {497289C8-D9D3-4F53-BB00-4E235FB33AB3} - \Opera scheduled Autoupdate 1413473089 -> Geen bestand <==== AANDACHT
Task: {5C1A6321-5D2B-479C-9D91-03AB76E5A014} - \{4B7E4EFB-F7CF-45C9-820E-3E25D9C7C34D} -> Geen bestand <==== AANDACHT
Task: {62E697BE-DDB4-4C4E-B725-BB36004403ED} - \Opera scheduled Autoupdate 1408105867 -> Geen bestand <==== AANDACHT
Task: {9F70C58D-9A1F-4C07-B924-F44EFCBE7D76} - \{1DE284B0-2C96-4A2A-AA63-F7B789D1903D} -> Geen bestand <==== AANDACHT
Task: {A6394258-1BD5-4D56-8A7C-06AF659708AE} - \{6B022555-AE29-420D-9032-78FEA8954F18} -> Geen bestand <==== AANDACHT
Task: {E097256F-D284-4D89-9E18-331FD0DE7BF0} - \Opera scheduled Autoupdate 1449697884 -> Geen bestand <==== AANDACHT
Task: {EDECF158-02F5-4CF2-8A67-B60648834B6D} - \{C3295539-5F1C-42DD-8848-AD37BCD0F0ED} -> Geen bestand <==== AANDACHT
Task: {F143CFDE-5906-4724-8E89-BE03B06D09B8} - \Opera scheduled Autoupdate 1414678713 -> Geen bestand <==== AANDACHT
Task: {F4B50F5A-3D5C-496D-B074-B158C149CECD} - \Opera scheduled Autoupdate 1424171179 -> Geen bestand <==== AANDACHT
Task: {F8CBA7F4-8ECE-4E1B-A1E3-406F3132E2AC} - \{A5BEE134-697F-478C-B7C0-E6C6F42A86BC} -> Geen bestand <==== AANDACHT
AlternateDataStreams: C:\ProgramData\TEMP:364682BC [116]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119]
AlternateDataStreams: C:\Users\PC\AppData\Local\desktop.ini:722b2b1c349a06abf0e866180e5a7e63 [738]
Hosts:
EmptyTemp:
end

*****************

Herstelpunt is succesvol gemaakt.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon => sleutel is succesvol verwijderd.
HKCR\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6} => sleutel niet gevonden.
C:\Windows\system32\GroupPolicy\Machine => is succesvol verplaatst.
C:\Windows\system32\GroupPolicy\GPT.ini => is succesvol verplaatst.
HKLM\SOFTWARE\Policies\Google => sleutel is succesvol verwijderd.
HKCR\PROTOCOLS\Handler\livecall => sleutel niet gevonden.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => sleutel niet gevonden.
HKCR\PROTOCOLS\Handler\msnim => sleutel niet gevonden.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => sleutel niet gevonden.
CHR dev: Chrome dev build gedetecteerd! <======= AANDACHT => Fout: Geen automatische fix gevonden voor dit item.
HKLM\System\CurrentControlSet\Services\InnovativeSolutions_monitor => sleutel is succesvol verwijderd.
InnovativeSolutions_monitor => dienst is succesvol verwijderd.
HKLM\System\CurrentControlSet\Services\MozillaMaintenance => sleutel is succesvol verwijderd.
MozillaMaintenance => dienst is succesvol verwijderd.
HKLM\System\CurrentControlSet\Services\TTService => sleutel is succesvol verwijderd.
TTService => dienst is succesvol verwijderd.
HKLM\System\CurrentControlSet\Services\sbapifs => sleutel is succesvol verwijderd.
sbapifs => dienst is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1601CA36-FAC4-4BAC-AF8A-50B9138D4202} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1601CA36-FAC4-4BAC-AF8A-50B9138D4202} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F70846EA-42C0-4004-817C-2E929AF9CDE1} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CFFFFA9-C05A-496D-9C23-1BB77BE53DD8} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CFFFFA9-C05A-496D-9C23-1BB77BE53DD8} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{556E5FB0-9BBE-4BC2-8473-02287ABB6E04} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{3C19E4DC-E3E0-469B-83B3-E332BC4735DB} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C19E4DC-E3E0-469B-83B3-E332BC4735DB} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1435662536 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{497289C8-D9D3-4F53-BB00-4E235FB33AB3} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{497289C8-D9D3-4F53-BB00-4E235FB33AB3} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1413473089 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5C1A6321-5D2B-479C-9D91-03AB76E5A014} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C1A6321-5D2B-479C-9D91-03AB76E5A014} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4B7E4EFB-F7CF-45C9-820E-3E25D9C7C34D} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{62E697BE-DDB4-4C4E-B725-BB36004403ED} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62E697BE-DDB4-4C4E-B725-BB36004403ED} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1408105867 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F70C58D-9A1F-4C07-B924-F44EFCBE7D76} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F70C58D-9A1F-4C07-B924-F44EFCBE7D76} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1DE284B0-2C96-4A2A-AA63-F7B789D1903D} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6394258-1BD5-4D56-8A7C-06AF659708AE} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6394258-1BD5-4D56-8A7C-06AF659708AE} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6B022555-AE29-420D-9032-78FEA8954F18} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E097256F-D284-4D89-9E18-331FD0DE7BF0} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E097256F-D284-4D89-9E18-331FD0DE7BF0} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1449697884 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDECF158-02F5-4CF2-8A67-B60648834B6D} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDECF158-02F5-4CF2-8A67-B60648834B6D} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C3295539-5F1C-42DD-8848-AD37BCD0F0ED} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{F143CFDE-5906-4724-8E89-BE03B06D09B8} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F143CFDE-5906-4724-8E89-BE03B06D09B8} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1414678713 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{F4B50F5A-3D5C-496D-B074-B158C149CECD} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F4B50F5A-3D5C-496D-B074-B158C149CECD} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1424171179 => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F8CBA7F4-8ECE-4E1B-A1E3-406F3132E2AC} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8CBA7F4-8ECE-4E1B-A1E3-406F3132E2AC} => sleutel is succesvol verwijderd.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A5BEE134-697F-478C-B7C0-E6C6F42A86BC} => sleutel is succesvol verwijderd.
C:\ProgramData\TEMP => ":364682BC" ADS is succesvol verwijderd..
C:\ProgramData\TEMP => ":5C321E34" ADS is succesvol verwijderd..
C:\Users\PC\AppData\Local\desktop.ini => ":722b2b1c349a06abf0e866180e5a7e63" ADS is succesvol verwijderd..
C:\Windows\System32\Drivers\etc\hosts => is succesvol verplaatst.
Hosts met succes hersteld.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 28677508 B
Java, Flash, Steam htmlcache => 587 B
Windows/system/drivers => 72487 B
Edge => 0 B
Chrome => 0 B
Firefox => 4976616 B
Opera => 312603645 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33125 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 16674 B
LocalService => 0 B
NetworkService => 0 B
PC => 80198587 B
Gast => 146570527 B

RecycleBin => 0 B
EmptyTemp: => 554.6 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 16:34:34 ====
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

20 apr 2017, 18:32

Hallo,

Bestaat je probleem nog?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

20 apr 2017, 21:17

Dat zal ik morgen weten bij de opstart van de computer , ik laa het weten .

Marieke.
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

21 apr 2017, 08:51

marieke72 schreef:Dat zal ik morgen weten bij de opstart van de computer , ik laa het weten .

Marieke.
Mocht je die melding nog krijgen maak daar dan een printscreen van: http://www.seniorennet.be/forum/viewtopic.php?t=188237

Ik hoor net dat het al via het booten komt, kan je dan een foto ervan maken en die plaatsen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

21 apr 2017, 11:26

Goedemorgen ,
het probleem American Megatrends is er nog steeds .
Eerst was ik in de rubriek Software te rade gegaan en daar heeft Sony me wegwijs gemaakt om in de Bios de Smart Monitoring op Disabled te zetten maar dat heeft niet geholpen .
Toen heeft hij me naar jou doorverwezen .
Na die handeling werkt alles nog normaal zo te zien maar ,ik ben al mijn gegevens op facebook kwijt . Kan ik dit herstellen door naar 'n vorig herstelpunt te gaan .

Marieke.
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

21 apr 2017, 11:36

marieke72 schreef:Goedemorgen ,
het probleem American Megatrends is er nog steeds .
Eerst was ik in de rubriek Software te rade gegaan en daar heeft Sony me wegwijs gemaakt om in de Bios de Smart Monitoring op Disabled te zetten maar dat heeft niet geholpen .
Toen heeft hij me naar jou doorverwezen .
Na die handeling werkt alles nog normaal zo te zien maar ,ik ben al mijn gegevens op facebook kwijt . Kan ik dit herstellen door naar 'n vorig herstelpunt te gaan .

Marieke.
Ik heb niks met je Facebook gedaan, maar welke gegevens zijn weg (Facebook slaat toch niks op je pc op? )

Kan je een foto van die melding maken die je krijgt met opstarten?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

21 apr 2017, 12:57

OK maar ik moet wachten tot morgen want hij doet dit maar alleen bij de eerste opstart , wat ik wel kan doen is je 'n afbeelding sturen die ik gevonden op het net . Ik weet niet of die krek hetzelfde is maar gelijkt er sterk op .

Marieke .
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

21 apr 2017, 13:13

marieke72 schreef:OK maar ik moet wachten tot morgen want hij doet dit maar alleen bij de eerste opstart , wat ik wel kan doen is je 'n afbeelding sturen die ik gevonden op het net . Ik weet niet of die krek hetzelfde is maar gelijkt er sterk op .

Marieke .
Er zijn veel meldingen van daarom Klik.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

marieke72
Lid geworden op: 25 jan 2014, 22:00

22 apr 2017, 12:32

Afbeelding

Hier de foto , hoop dat je er iets mee kan doen.

Marieke .
DEsktop ,Win 7 Home Premium - Service pack 1, Processor AMD Phenom(tm) , X6 1100T , 64 bit
8 Ram

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

22 apr 2017, 12:51

Hallo,

Daar kunnen we zeker wat mee, het is een "Fan Error"
Dat houd in dat of je Fan kapot is of vol zit met stof.
Was dit nu een laptop of een desktop?
Als je je pc aan heb hoor je die dan draaien?
Of kan je zien of je Fan vol met stof zit?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)