HJ logje-opgelost

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

Flurk
Lid geworden op: 04 jan 2003, 18:17
Locatie: Roeselare

15 nov 2017, 09:18

Geacte Forum,

Wil iemand zo aardig zijn mijn Hijack log even na te kijken.
Alvast bedankt.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 9:15:39, on 15/11/2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.1715)


Boot mode: Normal

Running processes:
C:\Users\Willy\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll
O2 - BHO: eID Extension - {89D6D363-6550-47C1-B83F-2433F6844EC6} - C:\Program Files (x86)\eid-ie\eidie32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItIEAddin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll
O3 - Toolbar: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - https://fpdownload.macromedia.com/pub/s ... tor/sw.cab
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bitdefender RedLine Service (bdredline) - Bitdefender - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: HP SimplePass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
O23 - Service: Bitdefender Apparaatbeheer (DevMgmtService) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: ProductAgentService - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
O23 - Service: Bitdefender Protected Service (vsservp) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 12670 bytes
HP Envy 700-209eb
2 TB 12 GB x64 processor - Intel i7-4770
Windows 10 - Firefox

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

15 nov 2017, 12:42

Hallo,

De tool HijackThis is een beetje uit de tijd en laat niet zoveel meer zien, daarvoor is nu Farbar Recovery Scan Tool gekomen.
Voer die uit en plaats de inhoud uit de Twee verkregen logjes, doe één logje per antwoord (hier de handleiding en uitleg)
Handleiding <== Klik erop.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Flurk
Lid geworden op: 04 jan 2003, 18:17
Locatie: Roeselare

15 nov 2017, 13:45

Beste abbs,

Hierbij de gevraagde uitkomsten

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 12-11-2017 03
Gestart door Willy (Beheerder) op TWIESSIE (15-11-2017 13:39:31)
Gestart vanaf C:\Users\Willy\Downloads
Geladen Profielen: Willy (Beschikbare Profielen: Willy)
Platform: Windows 10 Home Versie 1607 14393.1770 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: IE)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.17.8162.0_x64__8wekyb3d8bbwe\Solitaire.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2016-04-01] (Glarysoft Ltd)
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [152064 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restrictie - Chrome <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{24c7ddb8-cab5-48e0-8c1b-987288dba7fd}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7539b01f-0275-4ed2-96dc-ef0aa44acc4b}: [DhcpNameServer] 192.168.1.1
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131364646832048360&GUID=F3EA5CD5-E08E-4255-8A0F-AE63F5364C94
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON14/15
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.be/
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {936A65A5-F3FF-4E2D-B886-D0D7E648B88A} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/1553-29906-12136-18/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/1553-29906-12136-18/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... EA_nlBE653
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {936A65A5-F3FF-4E2D-B886-D0D7E648B88A} URL =
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-09-14] (Bitdefender)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO: eID Extension -> {89D6D363-6550-47C1-B83F-2433F6844EC6} -> C:\Program Files (x86)\eid-ie\eidie64.dll [2017-06-09] ()
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-12] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2017-09-14] (Bitdefender)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-30] (Oracle Corporation)
BHO-x32: eID Extension -> {89D6D363-6550-47C1-B83F-2433F6844EC6} -> C:\Program Files (x86)\eid-ie\eidie32.dll [2017-06-09] ()
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> c:\program files (x86)\google\googletoolbar1.dll [2017-07-28] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-30] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-12] (Google Inc.)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2017-09-14] (Bitdefender)
Toolbar: HKLM-x32 - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\SnagIt 8\SnagItIEAddin.dll [2006-05-10] (TechSmith Corporation)
Toolbar: HKLM-x32 - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll [2017-07-28] (Google Inc.)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2017-09-14] (Bitdefender)
Toolbar: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-12] (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Geen bestand

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff [2017-09-29]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2017-09-29] [ niet getekend]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Geen bestand]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-10] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default [2017-11-14]
CHR Extension: (Google Presentaties) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-18]
CHR Extension: (Google Documenten) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-18]
CHR Extension: (Google Drive) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-18]
CHR Extension: (YouTube) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-15]
CHR Extension: (Google Spreadsheets) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-18]
CHR Extension: (Offline Documenten) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-18]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-01]
CHR Extension: (Gmail) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-18]
CHR Extension: (Chrome Media Router) - C:\Users\Willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-14]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2090152 2017-08-11] (Bitdefender)
S3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
S3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R3 Cachedrv server; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [109568 2013-09-05] () [Bestand niet getekend]
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [103072 2017-08-17] (Bitdefender)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29760 2016-07-04] (HP Inc.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend]
S3 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
S3 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2009-11-12] ()
S3 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [87552 2013-09-05] (Softex Inc.) [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1269824 2017-06-21] (Bitdefender)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2013-08-20] ()
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [218416 2017-09-14] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [1280816 2017-10-12] (Bitdefender)
R2 vsservp; C:\Program Files\Bitdefender\Bitdefender Security\vsservp.exe [524872 2016-08-25] (Bitdefender)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2017-08-08] (Microsoft Corporation)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-08-31] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0307778.inf_amd64_c23825c387b5872c\atikmdag.sys [26570784 2017-01-10] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0307778.inf_amd64_c23825c387b5872c\atikmpag.sys [535960 2017-01-10] (Advanced Micro Devices, Inc.)
R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1019880 2017-09-14] (BitDefender S.R.L. Bucharest, ROMANIA)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [101376 2016-08-11] (Advanced Micro Devices)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1763744 2017-08-23] (BitDefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [133088 2017-06-06] (BitDefender LLC)
S3 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [47856 2017-05-11] (© Bitdefender SRL)
S3 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31832 2016-08-11] (ELAN Microelectronic Corp.)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160 2016-03-24] (Glarysoft Ltd)
R3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [187688 2017-05-11] (BitDefender LLC)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-08-11] (REALiX(tm))
S3 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [362664 2017-08-10] (Bitdefender)
R1 MpKsl8fce5a9e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FCA497B1-B4E1-4B9F-8910-88C1465F56DC}\MpKsl8fce5a9e.sys [58120 2017-11-15] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security, S.L.)
S3 RSUSBCCID; C:\WINDOWS\system32\DRIVERS\RtsUCcid.sys [58072 2016-08-11] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [936192 2016-08-11] (Realtek )
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [21360 2016-03-22] (IObit)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] () [Bestand niet getekend]
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [7168 2009-11-12] () [Bestand niet getekend]
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [561672 2016-08-11] (Tempo Semiconductor Inc.)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [439576 2017-04-11] (BitDefender S.R.L.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-11-15 13:39 - 2017-11-15 13:40 - 000022986 _____ C:\Users\Willy\Downloads\FRST.txt
2017-11-15 13:38 - 2017-11-15 13:39 - 000000000 ____D C:\FRST
2017-11-15 13:38 - 2017-11-15 13:38 - 002392576 _____ (Farbar) C:\Users\Willy\Downloads\FRST64.exe
2017-11-15 11:50 - 2017-11-15 11:50 - 000093405 _____ C:\Users\Willy\Downloads\Logan.Lucky.2017.1080p.WEB-DL.DD5.1.H264-FGT.srt
2017-11-15 11:50 - 2017-11-15 11:50 - 000038464 _____ C:\Users\Willy\Downloads\logan.lucky.(2017).dut.1cd.(7159519).zip
2017-11-15 11:49 - 2017-11-15 11:49 - 000000000 ____D C:\Users\Willy\Downloads\Logan.Lucky.2017.HDRip.XviD.AC3 EVO
2017-11-15 09:19 - 2017-11-15 09:19 - 000000000 ____D C:\WINDOWS\system32\@ʯMé
2017-11-15 08:54 - 2017-11-15 08:54 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe
2017-11-15 08:54 - 2017-11-15 08:54 - 000000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
2017-11-15 08:53 - 2017-11-15 08:53 - 000752296 _____ C:\Users\Willy\Downloads\Adware Removal Tool by TSA.exe
2017-11-15 08:31 - 2017-11-15 08:31 - 000000000 ____D C:\WINDOWS\system32\àËïFE
2017-11-14 10:50 - 2017-11-14 10:50 - 000000898 _____ C:\Users\Willy\Desktop\HDCleaner.lnk
2017-11-14 10:50 - 2017-11-14 10:50 - 000000000 ____D C:\Users\Willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDCleaner
2017-11-14 10:50 - 2017-11-14 10:50 - 000000000 ____D C:\Users\Willy\AppData\Roaming\HDCleaner
2017-11-14 10:50 - 2017-11-14 10:50 - 000000000 ____D C:\Program Files\HDCleaner
2017-11-14 10:48 - 2017-11-14 10:48 - 008894800 _____ (Kurt Zimmermann) C:\Users\Willy\Downloads\HDCleaner.exe
2017-11-14 10:29 - 2017-11-15 08:50 - 000000000 ____D C:\AdwCleaner
2017-11-14 10:28 - 2017-11-14 10:29 - 008261584 _____ (Malwarebytes) C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
2017-11-14 09:07 - 2017-11-14 09:07 - 000000000 ____D C:\WINDOWS\system32\￾ʾª_
2017-11-13 20:00 - 2017-11-13 20:00 - 000000000 ____D C:\WINDOWS\system32\°È74¨
2017-11-13 13:31 - 2017-11-13 13:31 - 000000000 ____D C:\WINDOWS\system32\`Ì×WÎ
2017-11-13 08:31 - 2017-11-13 08:31 - 000000000 ____D C:\WINDOWS\system32\ÐÌ·&frac34;á
2017-11-12 11:01 - 2017-11-12 11:01 - 000000000 ____D C:\WINDOWS\system32\0ÌGeq
2017-11-11 18:29 - 2017-11-11 18:29 - 000000000 ____D C:\WINDOWS\system32\ÀǧW&acute;
2017-11-11 11:58 - 2017-11-11 11:58 - 000000000 ____D C:\WINDOWS\system32\@Ê_öÍ
2017-11-11 11:16 - 2017-11-15 11:31 - 000133395 _____ C:\Users\Willy\Documents\Dagboek 2018.xlsx
2017-11-11 08:33 - 2017-11-11 08:33 - 000000000 ____D C:\WINDOWS\system32\PÆ·íÀ
2017-11-11 00:20 - 2017-11-11 00:20 - 000000000 ____D C:\WINDOWS\system32\0Êçøs
2017-11-10 20:06 - 2017-11-10 20:06 - 000000000 ____D C:\WINDOWS\system32\°ÆW`￾
2017-11-10 11:36 - 2017-11-10 11:36 - 000000000 ____D C:\WINDOWS\system32\ðƯðê
2017-11-10 10:57 - 2016-05-28 12:02 - 000085401 _____ C:\Users\Willy\Downloads\Men.and.Chicken.2015.Bluray.1080p.DTS-HD.x264-Grym.srt
2017-11-10 10:56 - 2017-11-10 10:56 - 000032222 _____ C:\Users\Willy\Downloads\Ondertitel.com-8144-Men.and.Chicken.2015.Bluray.1080p.DTS-HD.x264-Grym.zip
2017-11-10 10:56 - 2017-11-10 10:56 - 000000000 ____D C:\Users\Willy\Downloads\Men.and.Chicken.2015.1080p.BRRip.x265.HEVC-zsewdc
2017-11-10 10:55 - 2017-11-10 11:00 - 000000000 ____D C:\Users\Willy\Downloads\Mænd & høns [Men & Chicken] 2015 720p BRRip x264 titler
2017-11-09 17:49 - 2017-11-09 17:49 - 000000000 ____D C:\WINDOWS\system32\0Æ÷ä¨
2017-11-09 11:54 - 2017-11-09 11:54 - 000000000 ____D C:\WINDOWS\system32\pËWÕ2
2017-11-06 19:52 - 2017-11-06 19:52 - 000000000 ____D C:\WINDOWS\system32\ Çßaû
2017-11-04 19:34 - 2017-11-04 19:34 - 000000000 ____D C:\WINDOWS\system32\pÈ&uml;Ç
2017-11-04 15:48 - 2017-11-04 15:48 - 000000000 ____D C:\WINDOWS\system32\ÀÊ¿#}
2017-11-04 11:56 - 2017-11-04 11:56 - 000000000 ____D C:\WINDOWS\system32\pÆÿÔB
2017-11-03 19:46 - 2017-11-03 19:46 - 000000000 ____D C:\WINDOWS\system32\€É~û
2017-11-03 19:45 - 2017-11-13 19:29 - 000108954 _____ C:\Users\Willy\Downloads\A.Street.Cat.Named.Bob.2016.1080p.WEB-DL.DD5.1.H264-FGT.srt
2017-11-03 19:42 - 2017-11-03 19:46 - 000000000 ____D C:\Users\Willy\Downloads\A.Street.Cat.Named.Bob.2016.720p.BRRip.x264.AAC-ETRG
2017-11-03 19:42 - 2017-11-03 19:45 - 1389161458 _____ C:\Users\Willy\Desktop\A.Street.Cat.Named.Bob.2016.720p.BRRip.x264.AAC-ETRG.avi
2017-11-03 19:05 - 2017-11-03 19:05 - 000000000 ____D C:\Users\Willy\Documents\FormatFactory
2017-11-03 17:48 - 2017-11-10 10:34 - 000047815 _____ C:\Users\Willy\Downloads\the.fury.of.a.patient.man.2016.bdrip.x264-bipolar.srt
2017-11-03 15:51 - 2017-11-03 15:51 - 000000000 ____D C:\Users\Willy\AppData\Roaming\WMM
2017-11-03 15:35 - 2017-11-03 15:35 - 000001147 _____ C:\Users\Willy\Desktop\Format Factory.lnk
2017-11-03 15:35 - 2017-11-03 15:35 - 000000000 ____D C:\Users\Willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2017-11-03 15:35 - 2017-11-03 15:35 - 000000000 ____D C:\FFOutput
2017-11-03 15:34 - 2017-11-03 15:35 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2017-11-03 15:33 - 2017-11-03 15:33 - 048320824 _____ (Free Time Co., Ltd) C:\Users\Willy\Downloads\formatfactory.exe.EXE
2017-11-03 15:32 - 2017-11-03 15:32 - 003595984 _____ ( ) C:\Users\Willy\Downloads\formatfactory.exe
2017-11-03 14:52 - 2017-11-03 14:52 - 000000000 ____D C:\ProgramData\boost_interprocess
2017-11-03 14:51 - 2017-11-03 14:51 - 000000000 ____D C:\Users\Willy\AppData\Local\DivXConverter
2017-11-03 14:39 - 2017-11-03 14:59 - 000000000 ____D C:\Program Files (x86)\Total Video Converter
2017-11-03 13:59 - 2017-11-13 17:19 - 000001368 _____ C:\Users\Willy\Desktop\Any Video Converter Ultimate.lnk
2017-11-03 13:59 - 2017-11-03 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2017-11-03 13:58 - 2017-11-03 13:58 - 000000000 ____D C:\Program Files (x86)\Anvsoft
2017-11-03 08:32 - 2017-11-03 08:32 - 000000000 ____D C:\WINDOWS\system32\ðɯa&frac12;
2017-11-02 20:04 - 2017-11-02 20:04 - 000000000 ____D C:\WINDOWS\system32\ÐÈOOg
2017-11-02 14:54 - 2017-11-02 14:54 - 000000000 ____D C:\WINDOWS\system32\pÇÇ¡C
2017-11-01 08:33 - 2017-11-01 08:33 - 000000000 ____D C:\WINDOWS\system32\à̾õb
2017-10-31 11:36 - 2017-10-31 11:36 - 000000000 ____D C:\WINDOWS\system32\`ÊOæ&acute;
2017-10-31 09:14 - 2017-10-31 09:14 - 000000000 ____D C:\WINDOWS\system32\`Æ¿óÜ
2017-10-30 20:01 - 2017-10-30 20:01 - 000000000 ____D C:\WINDOWS\system32\ðÈ'hû
2017-10-30 14:20 - 2017-10-30 14:20 - 000000000 ____D C:\WINDOWS\system32\€Æw¨O
2017-10-30 14:15 - 2017-10-30 14:15 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2017-10-30 14:15 - 2017-10-30 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-10-30 14:14 - 2017-10-30 14:14 - 010427120 _____ (Piriform Ltd) C:\Users\Willy\Downloads\ccsetup536.exe
2017-10-30 11:48 - 2017-10-30 11:48 - 000000000 ____D C:\WINDOWS\system32\PÉWN¥
2017-10-30 11:41 - 2017-10-30 11:41 - 000000000 ____D C:\WINDOWS\system32\￾Ê'ZF
2017-10-30 09:15 - 2017-10-30 09:15 - 000000000 ____D C:\WINDOWS\system32\0È
2017-10-29 11:00 - 2017-10-29 11:00 - 000000000 ____D C:\WINDOWS\system32\@Æ'
2017-10-29 08:34 - 2017-10-29 08:34 - 000000000 ____D C:\WINDOWS\system32\€È
2017-10-28 18:30 - 2017-10-28 18:30 - 000000000 ____D C:\WINDOWS\system32\@Ì
2017-10-28 18:29 - 2017-10-30 09:23 - 000000000 ____D C:\Users\Willy\Downloads\Office.2010.Toolkit.and.EZ-Activator.2.2.3
2017-10-28 08:03 - 2017-10-28 08:03 - 000000000 ____D C:\WINDOWS\system32\ðÅïfý
2017-10-28 01:32 - 2017-10-28 01:32 - 000000000 ____D C:\WINDOWS\system32\ ÇgýÎ
2017-10-28 00:16 - 2017-10-28 00:16 - 000000000 ____D C:\WINDOWS\system32\@ËO‹™
2017-10-27 19:05 - 2017-10-27 19:05 - 000000000 ____D C:\WINDOWS\system32\àƇYe
2017-10-27 15:10 - 2017-10-27 15:10 - 000000000 ____D C:\WINDOWS\system32\pÉf§
2017-10-27 12:35 - 2017-10-27 12:35 - 000000000 ____D C:\WINDOWS\system32\€Êïgé
2017-10-27 07:27 - 2017-10-27 07:27 - 000000000 ____D C:\WINDOWS\system32\PÇçrJ
2017-10-26 08:47 - 2017-10-26 08:47 - 000000000 ____D C:\WINDOWS\system32\@É÷ƒ¯
2017-10-25 07:33 - 2017-10-25 07:33 - 000000000 ____D C:\WINDOWS\system32\°É‡&frac14;&brvbar;
2017-10-24 10:22 - 2017-10-24 10:22 - 000056807 _____ C:\ProgramData\dm.1508836936.bdinstall.bin
2017-10-24 10:22 - 2017-10-24 10:22 - 000031139 _____ C:\ProgramData\agent.update.1508836919.bdinstall.bin
2017-10-24 10:22 - 2017-10-24 10:22 - 000000000 ____D C:\ProgramData\Bitdefender Device Management
2017-10-24 08:18 - 2017-10-24 08:18 - 000000000 ____D C:\WINDOWS\system32\€Ê¿ð„
2017-10-23 18:37 - 2017-10-23 18:37 - 000000000 ____D C:\WINDOWS\system32\ Éw, 
2017-10-23 13:17 - 2017-11-06 19:52 - 000000000 ____D C:\Users\Willy\Documents\CANNES
2017-10-23 00:32 - 2017-10-23 00:32 - 000000000 ____D C:\WINDOWS\system32\`Ç7“y
2017-10-22 22:26 - 2017-10-22 22:26 - 000000000 ____D C:\WINDOWS\system32\ۮ'ek
2017-10-22 09:55 - 2017-10-22 09:55 - 000034539 _____ C:\Users\Willy\Documents\Bitdefender factuur 64651966_order_confirmation.pdf
2017-10-22 07:33 - 2017-10-22 07:33 - 000000000 ____D C:\WINDOWS\system32\ ÊïU&uml;
2017-10-21 18:26 - 2017-10-21 18:26 - 000000000 ____D C:\WINDOWS\system32\`Ë_¶$
2017-10-21 15:22 - 2017-10-21 15:22 - 000000000 ____D C:\WINDOWS\system32\0Ì×Üu
2017-10-21 10:37 - 2017-10-21 10:37 - 000000000 ____D C:\WINDOWS\system32\PƯßÇ
2017-10-20 18:43 - 2017-10-20 18:43 - 000000000 ____D C:\WINDOWS\system32\€Ê_ÜÙ
2017-10-20 10:25 - 2017-10-20 10:25 - 000000000 ____D C:\WINDOWS\system32\€Ç÷¯ë
2017-10-20 07:26 - 2017-10-20 07:26 - 000000000 ____D C:\WINDOWS\system32\PÊ'JË
2017-10-19 19:04 - 2017-10-19 19:04 - 000000000 ____D C:\WINDOWS\system32\ÐÌ
2017-10-19 14:24 - 2017-10-19 14:24 - 000000000 ____D C:\WINDOWS\system32\ÐÇ·&A
2017-10-19 14:21 - 2017-10-19 14:21 - 000000000 ___HD C:\$SysReset
2017-10-19 13:57 - 2017-10-19 13:57 - 000000000 ____D C:\WINDOWS\system32\0Æ·»1
2017-10-19 10:34 - 2017-10-19 10:34 - 000000000 ____D C:\WINDOWS\system32\PɾYÙ
2017-10-19 07:40 - 2017-10-19 07:40 - 000000000 ____D C:\WINDOWS\system32\€È¾ìì
2017-10-18 19:06 - 2017-10-18 19:06 - 000000000 ____D C:\WINDOWS\system32\0Íoø)
2017-10-18 15:34 - 2017-10-18 15:34 - 000000000 ____D C:\WINDOWS\system32\￾ÅÏê¬
2017-10-18 01:46 - 2017-10-18 01:46 - 000000000 ____D C:\WINDOWS\system32\€Æ'&frac12;‚
2017-10-18 00:52 - 2017-10-18 00:52 - 000000000 ____D C:\WINDOWS\system32\ ÌÿÔ~
2017-10-17 08:17 - 2017-10-17 08:17 - 000000000 ____D C:\WINDOWS\system32\ÐÇß.£
2017-10-16 15:27 - 2017-10-16 15:27 - 000001894 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2017-10-16 15:18 - 2017-10-18 09:44 - 000000000 ____D C:\Users\Willy\AppData\Roaming\FileZilla
2017-10-16 15:18 - 2017-10-16 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-10-16 15:18 - 2017-10-16 15:27 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2017-10-16 15:18 - 2017-10-16 15:20 - 000000000 ____D C:\Users\Willy\AppData\Local\FileZilla
2017-10-16 15:17 - 2017-10-16 15:17 - 007905536 _____ (Tim Kosse) C:\Users\Willy\Downloads\FileZilla_3.28.0_win64-setup.exe
2017-10-16 07:34 - 2017-10-16 07:34 - 000000000 ____D C:\WINDOWS\system32\°Ë×&frac12;®

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-11-15 13:35 - 2017-10-05 10:28 - 000000000 ____D C:\Program Files\Bitdefender Agent
2017-11-15 13:35 - 2016-08-18 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-15 13:35 - 2015-03-14 17:26 - 000000000 ____D C:\Users\Willy\Documents\Outlook-bestanden
2017-11-15 11:56 - 2015-03-14 19:28 - 000000000 ____D C:\Users\Willy\AppData\Roaming\BitTorrent
2017-11-15 10:35 - 2016-07-16 12:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-15 10:35 - 2015-03-17 13:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-11-15 10:29 - 2017-10-11 10:24 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-15 10:29 - 2015-03-17 13:53 - 127017032 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-11-15 10:14 - 2016-08-18 15:29 - 000000000 ____D C:\Users\Willy
2017-11-15 09:28 - 2016-08-18 15:29 - 004822658 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-15 09:28 - 2016-07-16 23:15 - 002187640 _____ C:\WINDOWS\system32\perfh013.dat
2017-11-15 09:28 - 2016-07-16 23:15 - 000615358 _____ C:\WINDOWS\system32\perfc013.dat
2017-11-15 09:21 - 2016-08-18 15:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-15 09:20 - 2017-10-05 10:39 - 000006254 _____ C:\bdlog.txt
2017-11-15 09:20 - 2016-08-18 15:24 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-11-15 09:20 - 2016-07-16 07:04 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2017-11-15 08:57 - 2015-03-14 17:04 - 000019608 _____ C:\Users\Willy\Documents\BMI.xlsx
2017-11-15 08:51 - 2015-06-19 18:15 - 000000000 ____D C:\Users\Willy\AppData\Local\CrashDumps
2017-11-14 19:53 - 2016-09-16 10:15 - 000000000 ____D C:\Users\Willy\AppData\Roaming\vlc
2017-11-14 17:46 - 2015-04-18 15:41 - 000000000 ____D C:\Users\Willy\AppData\Roaming\Audacity
2017-11-14 15:25 - 2016-10-26 12:48 - 000137455 _____ C:\Users\Willy\Documents\Dagboek 2017.xlsx
2017-11-14 15:16 - 2016-08-18 15:49 - 000003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-14 15:16 - 2016-08-18 15:49 - 000003450 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-14 12:11 - 2016-07-16 12:45 - 000000000 ____D C:\WINDOWS\INF
2017-11-14 11:48 - 2015-03-14 17:04 - 000013314 _____ C:\Users\Willy\Documents\Lottokontrole.xlsx
2017-11-14 11:17 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-11-14 10:15 - 2017-06-04 10:48 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-11-13 17:20 - 2015-12-21 14:42 - 000000000 ____D C:\Users\Willy\AppData\Roaming\Anvsoft
2017-11-12 11:00 - 2015-12-07 11:28 - 000138836 _____ C:\Users\Willy\Documents\Dagboek 2016.xlsx
2017-11-10 10:39 - 2016-07-16 07:04 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2017-11-09 11:59 - 2017-07-27 07:46 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2740136656-2267361661-3735233382-1001
2017-11-09 11:59 - 2016-04-05 20:02 - 000000000 ___RD C:\Users\Willy\OneDrive
2017-11-09 11:59 - 2015-08-29 10:28 - 000002433 _____ C:\Users\Willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-05 01:47 - 2016-07-16 12:49 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-11-05 01:47 - 2016-07-16 12:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-03 19:37 - 2016-10-05 10:43 - 000000000 ____D C:\Users\Willy\AppData\Local\Popcorn-Time-CE
2017-11-03 18:16 - 2015-03-28 10:19 - 000000000 ____D C:\Users\Willy\AppData\Roaming\DivX
2017-11-03 18:16 - 2015-03-28 10:17 - 000000000 ____D C:\ProgramData\DivX
2017-11-03 15:58 - 2016-05-18 13:51 - 000000000 ____D C:\ProgramData\WinZip
2017-11-03 11:35 - 2017-10-12 09:35 - 000000000 ____D C:\Users\Willy\AppData\Roaming\NCH Software
2017-11-03 10:32 - 2017-09-29 00:41 - 000000000 ____D C:\Program Files\rempl
2017-10-30 14:15 - 2017-09-26 09:57 - 000000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-10-30 14:15 - 2017-09-26 09:57 - 000000000 ____D C:\Program Files\CCleaner
2017-10-30 14:13 - 2017-06-04 10:47 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-10-30 09:34 - 2015-04-10 15:57 - 000000000 ____D C:\ProgramData\Oracle
2017-10-30 09:33 - 2017-03-02 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-30 09:33 - 2016-10-08 16:25 - 000000000 ____D C:\Program Files (x86)\Java
2017-10-30 09:32 - 2017-03-02 11:06 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-10-29 10:57 - 2016-08-31 14:45 - 000010763 _____ C:\Users\Willy\Documents\Medebewoners.xlsx
2017-10-29 09:46 - 2015-03-14 16:51 - 000000000 ____D C:\Users\Willy\Documents\Kieslijsten
2017-10-24 10:22 - 2017-10-05 10:30 - 000000000 ____D C:\Program Files\Bitdefender
2017-10-21 15:50 - 2016-03-09 11:12 - 000000000 ____D C:\Users\Willy\Documents\Overlijden
2017-10-20 13:47 - 2015-04-13 18:41 - 000000000 ____D C:\Users\Willy\AppData\Roaming\U3
2017-10-20 10:02 - 2015-08-03 16:57 - 000000000 ____D C:\Users\Willy\AppData\Local\Windows Live
2017-10-19 14:29 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\registration
2017-10-19 08:17 - 2016-07-16 12:47 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-10-18 01:30 - 2016-07-16 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-17 10:11 - 2015-03-14 18:27 - 000000000 ____D C:\Aldfaer

==================== Bestanden in de root van sommige mappen =======

2016-06-14 10:18 - 2016-06-14 10:18 - 000038521 _____ () C:\Users\Willy\AppData\Roaming\Door lijstscheidingstekens gescheiden waarden (Windows).ADR
2015-04-14 09:09 - 2015-04-14 09:09 - 000000115 _____ () C:\Users\Willy\AppData\Roaming\LogFile.txt
2015-10-14 14:01 - 2016-04-13 18:55 - 000225904 _____ () C:\Users\Willy\AppData\Local\ars.cache
2015-10-14 14:01 - 2016-04-13 18:55 - 001365240 _____ () C:\Users\Willy\AppData\Local\census.cache
2015-10-14 13:41 - 2015-10-14 13:41 - 000000036 _____ () C:\Users\Willy\AppData\Local\housecall.guid.cache
2016-02-15 15:41 - 2016-02-15 15:41 - 000000218 _____ () C:\Users\Willy\AppData\Local\recently-used.xbel
2016-09-12 09:56 - 2016-09-12 09:56 - 000000017 _____ () C:\Users\Willy\AppData\Local\resmon.resmoncfg
2015-10-14 13:59 - 2016-04-13 18:55 - 000000010 _____ () C:\Users\Willy\AppData\Local\sponge.last.runtime.cache
2017-10-05 10:28 - 2017-10-05 10:28 - 000048511 _____ () C:\ProgramData\agent.1507195731.bdinstall.bin
2017-10-24 10:22 - 2017-10-24 10:22 - 000031139 _____ () C:\ProgramData\agent.update.1508836919.bdinstall.bin
2015-03-14 18:46 - 2015-03-14 18:46 - 000000057 _____ () C:\ProgramData\Ament.ini
2017-10-05 10:35 - 2017-10-05 10:35 - 000480597 _____ () C:\ProgramData\cl.1507195828.bdinstall.bin
2017-10-05 10:35 - 2017-10-05 10:35 - 000075131 _____ () C:\ProgramData\cl.kit.1507195823.bdinstall.bin
2017-10-24 10:22 - 2017-10-24 10:22 - 000056807 _____ () C:\ProgramData\dm.1508836936.bdinstall.bin

Sommige nul byte grootte bestanden/mappen:
==========================
C:\Windows\SysWOW64\LocationNotificationWindows.exe
C:\Windows\SysWOW64\usoclient.exe

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2017-11-14 17:03

==================== Eind van FRST.txt ============================
HP Envy 700-209eb
2 TB 12 GB x64 processor - Intel i7-4770
Windows 10 - Firefox

Flurk
Lid geworden op: 04 jan 2003, 18:17
Locatie: Roeselare

15 nov 2017, 13:46

Beste abbs,

vervolg log

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 12-11-2017 03
Gestart door Willy (15-11-2017 13:40:53)
Gestart vanaf C:\Users\Willy\Downloads
Windows 10 Home Versie 1607 14393.1770 (X64) (2016-08-18 15:15:59)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2740136656-2267361661-3735233382-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2740136656-2267361661-3735233382-503 - Limited - Disabled)
Gast (S-1-5-21-2740136656-2267361661-3735233382-501 - Limited - Disabled)
Willy (S-1-5-21-2740136656-2267361661-3735233382-1001 - Administrator - Enabled) => C:\Users\Willy

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{F60B8711-9A86-46F0-B4F0-E9E4D74E5DFD}) (Version: 20.28.3317.04403 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.28.3317.04403 - Alcor Micro Corp.)
Aldfaer (HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\Aldfaer) (Version: - )
AMD Catalyst Install Manager (HKLM\...\{FBF93CAE-9D92-1DD4-0DD0-A56F2D57980D}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Any Video Converter Ultimate 6.2.0 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (32-bit) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.6 - GPL Public release.)
Belgium e-ID middleware 4.2.8 (build 3252) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73252}) (Version: 4.2.3252 - Belgian Government)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 22.0.12.161 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 22.0.10.141 - Bitdefender)
BitTorrent (HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother's Keeper 7.1 (HKLM-x32\...\Brother's Keeper 7.1) (Version: - )
Catalyst Control Center Next Localization BR (HKLM\...\{118C2119-84B6-E32C-63E2-B56DBCF41CE5}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{51F85784-6799-5CA3-97B2-2E5904FC3E58}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{55A4D3AB-C8DF-26B2-89A8-7E16E1E40700}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{365AEAB2-4CF3-7CBB-0DAC-E9E14B688E65}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{5A083A57-10D6-D4E5-292C-F274870E73A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{8E6F5592-ED7E-9C50-74AC-BF417B1FE291}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{7ABC6D83-816E-6D48-E65D-B0CEDD294E4E}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{AD28960A-6190-C991-C964-308B86EAA2E2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{DF0D7C1C-72B6-9FFB-DF66-B3720237BB80}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{238F6F6F-2544-86CF-3AB6-2CDADAB58CF0}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{84C3F2C5-F7B2-2F08-CDF4-79EF7CC55D74}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{C3EE628C-7394-FE2C-0C90-C05284EB528D}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0E8A3B17-D603-B1B6-C205-1685EBDD23E9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{2F544F46-5F6E-97BB-3550-A0242A3C5754}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{EC688BD0-240D-AE40-55F3-234E54919AE6}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{1E7D3072-1D28-E33A-99DF-85D9F7ECD06E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{E27224E3-7913-DA1E-5B08-9BEEC8FEE3D1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{FC4086D6-E345-5F43-08BB-280FB57DAF49}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{95A52FC1-C728-841D-1BFC-CC793B77B0A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{BA26B70C-3D8C-2D14-4122-211FB3E6F691}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{F8EBE530-A4D5-BF51-F623-3787E6B8A878}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{42FBD43F-DE53-6D4D-5134-E3C93B45CBEF}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5FEACE78-C338-9AED-FF05-7DE7E273C774}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{A22CDEBA-6DB5-12CD-F6CE-6238C2D78363}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A3795528-F572-6314-C4E3-EE9DAF0FBF02}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{AC85CF50-9A55-0103-ADBF-365C37603AA4}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{C0BFC67D-E447-02C8-6046-C078DFE9EC97}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{4853A56D-7931-A08B-5BA7-8E2D61043DF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{94C72EBE-2908-F0AC-62DA-D61951830F8F}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{B349892D-B015-033C-4CA8-3635E6B655D7}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{5B987681-3652-492B-6A11-E02AC0FE5959}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B28CF677-E2C8-12CA-52BB-19B6F066D36A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{BE8D6AB1-3049-2F0C-67FA-00C0A5D321A3}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{26567561-DFB2-2B63-9BA8-6A490ED37016}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{43F6D22B-E0E9-EE90-9B62-1C5FC5D15A55}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{86BFE5B4-1FCE-3C02-6373-92B1AE6431E8}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0742432E-42D9-2240-4CA1-8595CCCBAA77}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0809FEC1-EF86-51E9-8210-DC1B1BDB6745}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{D4490E0F-8E7B-1097-B56A-7643C75F1C28}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{5FD706FF-6AD8-E372-A35A-879409982655}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{DAB44116-0266-C65B-B643-AC11217C3041}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{EAEAA839-44F4-22DF-D1CC-88C3B2A3D4B1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3AF70346-52C7-0334-606F-118D1C1CB7A2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A3973655-E448-4A1B-477C-988A79D132D9}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A4E7CA0C-84EB-5E29-2F04-06C4E4790C2F}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{53AE8AC7-5213-67AF-0DC0-CED696B77643}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{59D2664C-949B-7FA7-9880-ECB993B6616A}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{6DC92550-D065-4B36-C4D3-D8D7A702A7A7}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{970A40CA-46AB-986C-1798-976ED0EA00FA}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{B2A83706-3F14-1532-20CD-B4EE715A8945}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{DC9DFCBF-87DA-892C-6151-99CC9EF46E3E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{44ED2CDA-4197-E9E9-B328-26E1FB749116}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4707CBFC-8ED4-463E-0FF9-DE86F4A743E9}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C1EFF2A2-DF4A-F6D1-B99C-1ED194AE9E78}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{3450566C-4561-0EE8-B1AB-D5C79CCE8D2C}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{46EB68BE-8AAC-8C2B-7284-8DEDE6B5CD2A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{C14A3A5B-8A86-C239-37D7-158211778C54}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{7A6E431B-CF43-EC3E-FD7E-0A0AAB1B25FC}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{A50C89BC-8D8E-8828-824A-7171F6D583D5}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{FCE8438C-3272-D63F-479F-670F082B294B}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{0B5633F0-C415-2F08-671E-4C9E2FAACD45}) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{25D1751E-7CA2-5F6D-0125-0A16E47AF9FE}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{89A1F076-19B8-A2B1-D5A3-E8247EFAF157}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.2.7.1893 - CDBurnerXP)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15.3 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 11 - Illustrate)
dBpoweramp Music Converter (HKLM-x32\...\dBpoweramp Music Converter) (Version: Release 13.2 - Illustrate)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
eID Internet Explorer plugin 1.0.0 (HKLM-x32\...\eid-ie) (Version: 1.0.0 - e-Contract.be BVBA)
Eusing Cleaner (HKLM-x32\...\Eusing Cleaner) (Version: - Eusing Freeware)
FileZilla Client 3.28.0 (HKLM-x32\...\FileZilla Client) (Version: 3.28.0 - Tim Kosse)
FormatFactory 4.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.1.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{0FD66C6F-4023-4C74-AF8E-9B8B2053868E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galerie de photos (HKLM-x32\...\{F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GENMatcher 1.04 (HKLM-x32\...\GENMatcher_is1) (Version: - )
GENViewer version 1.19 (HKLM-x32\...\GENViewer_is1) (Version: - )
Glary Utilities PRO 5.48 (HKLM-x32\...\Glary Utilities 5) (Version: 5.48.0.68 - Glarysoft Ltd)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - )
Google Toolbar for Internet Explorer (HKLM-x32\...\{DBEA1034-5882-4A88-8033-81C4EF0CFA29}) (Version: 4.0.0.002 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HDCleaner (HKLM\...\HDCleaner) (Version: 1.061 - Kurt Zimmermann)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Deskjet 3070 B611 series Basissoftware van het apparaat (HKLM\...\{E12C5B43-0EF3-450E-9973-597771B92BB2}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7045.4591 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.00.51 - Hewlett-Packard)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{4CBA8ECF-0519-4583-91ED-F098522245EB}) (Version: 12.5.26.37 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HydraVision (HKLM-x32\...\{551A56B3-F5EE-43BC-724D-67CEB67A80CB}) (Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6486.0 - IDT)
Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Inst5675 (HKLM\...\{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}) (Version: 8.00.51 - Softex Inc.) Hidden
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.00.51 - Softex Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
K-Lite Codec Pack 12.3.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.5 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Language Pack 2010 - Dutch/Nederlands (HKLM\...\Office14.OMUI.nl-nl) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Outlook Hotmail Connector 64-bits (HKLM\...\{95140000-0081-0413-1000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x86) ENU (HKLM-x32\...\{FF63121D-91C6-42CC-B341-F1AA729728E7}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x86) ENU (HKLM-x32\...\{D3A80508-CD83-4CA3-8671-914A1BC78B61}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{0FD2B9C6-DB91-48EA-9518-AB5B68CA1E28}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{6066D3FE-3692-4449-A3C8-D1EAA2C0E9E7}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{E169436E-49D8-419B-A5C0-D245EAF99611}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Music Transfer (HKLM-x32\...\{CE2121C6-C94D-4A73-8EA4-6943F33EE335}) (Version: 1.3.00.11130 - Sony Corporation)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Primo (HKLM-x32\...\{14291118-0C19-45EA-A4FA-5C1C0F5FDE09}) (Version: 1.00.0000 - Your Company Name) Hidden
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.7001 - CyberLink Corp.) Hidden
Runtime (HKLM-x32\...\{DABF43D9-1104-4764-927B-5BED1274A3B0}) (Version: 1.00.0000 - Your Company Name) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 64-Bit Edition (HKLM\...\{90140000-0100-0413-1000-0000000FF1CE}_Office14.OMUI.nl-nl_{D62BBB58-8FD0-4BFD-AD13-237730FE5ED7}) (Version: - Microsoft)
Shark007 ADVANCED x64Components (HKLM\...\ADVANCED x64Components_is1) (Version: 6.4.8 - Shark007)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
SnagIt 8 (HKLM-x32\...\{93699C3E-005E-4294-87CA-F5B7DE2CD687}) (Version: 8.0.2 - TechSmith Corporation)
Software voor Intel® Chipset-apparaten (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Sony Picture Utility (HKLM-x32\...\{D5068583-D569-468B-9755-5FBF5848F46F}) (Version: 4.2.02.12040 - Sony Corporation)
Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict)
Sub2ssa (HKLM-x32\...\Product_Name) (Version: - )
Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
Uninstall Popcorn Time CE (HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\{6C134338-8281-4CDC-A209-046EAE74C00A}}_is1) (Version: 0.3.9-12 - PopcornTimeCE)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{17515373-7495-4995-9089-B7D6DF455C38}) (Version: 2.6.0.0 - Microsoft Corporation)
Van Dale Grote woordenboeken Duits (HKLM-x32\...\Van Dale Grote woordenboeken Duits) (Version: - )
Van Dale Grote woordenboeken Engels (HKLM-x32\...\Van Dale Grote woordenboeken Engels) (Version: - )
Van Dale Grote woordenboeken Frans (HKLM-x32\...\Van Dale Grote woordenboeken Frans) (Version: - )
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [CLVDShellExt10] -> {4682CEF2-C2F9-457B-83E0-3D6EBA418565} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt10.dll [2015-07-14] (Cyberlink)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2015-12-21] (Glarysoft Ltd)
ContextMenuHandlers1: [HDCleaner] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\Program Files\HDCleaner\HDCleanerContextMenu.dll [2017-09-04] (Kurt Zimmermann)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => -> Geen bestand
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt10] -> {4682CEF2-C2F9-457B-83E0-3D6EBA418565} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt10.dll [2015-07-14] (Cyberlink)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2015-12-21] (Glarysoft Ltd)
ContextMenuHandlers2: [HDCleanerContextMenuExtension] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\Program Files\HDCleaner\HDCleanerContextMenu.dll [2017-09-04] (Kurt Zimmermann)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2015-12-21] (Glarysoft Ltd)
ContextMenuHandlers6: [HDCleanerContextMenuExtension] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\Program Files\HDCleaner\HDCleanerContextMenu.dll [2017-09-04] (Kurt Zimmermann)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (Alexander Roshal)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {01A0D599-06A4-467B-8E1E-A1E12E2BF465} - System32\Tasks\{EBCF3639-3612-4D93-8827-88011DEFCDC3} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\Uninstall.exe"
Task: {053BC599-3265-403A-B0F7-C588287C626E} - System32\Tasks\DeviceDetector7 => C:\Program Files (x86)\CyberLink\MediaEspresso7\DeviceDetector\DeviceDetector7.exe [2015-06-21] (CyberLink)
Task: {08E3C118-AB8A-484B-BA80-C2C1E5BC8521} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-13] (Google Inc.)
Task: {33C1FAC3-3ABE-49EE-AF03-C9442374D831} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe
Task: {33F7925C-F450-4293-85C7-2BDDEB977950} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {51AA10C2-C0C9-4775-B6B9-142C13453AEE} - System32\Tasks\{3EF8525A-7311-426F-BD63-38AD83C67518} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Willy\Documents\wzipse22.exe -d C:\Users\Willy\Documents
Task: {54703A1F-162E-4DFD-A2FC-6D9A32C04E73} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-04-01] (Glarysoft Ltd)
Task: {5F7C4AD8-91B8-4787-AB32-786B5D3CD652} - \WPD\SqmUpload_S-1-5-21-2740136656-2267361661-3735233382-1001 -> Geen bestand <==== AANDACHT
Task: {64B3E936-B2BE-4AAA-AD52-71F8BBAACC5D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {7028499C-F575-4573-93AE-A92EA3D9EA8D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {71B101D4-1890-4C1A-AFE0-AC957560E67B} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {7788ED54-D550-415C-9CF6-57F2D26CEA69} - System32\Tasks\{82720201-6A3D-4DE4-B555-4A6DB5F0E4FA} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Willy\Documents\KillBox.exe -d C:\Users\Willy\Documents
Task: {8364EB37-9424-4B06-AEEC-79B687A78B0A} - System32\Tasks\{3558BFF1-2A97-446D-83C1-0FB87EA036D6} => C:\WINDOWS\system32\pcalua.exe -a "C:\ProgramData\Package Cache\{50f2d2b0-9e6e-466f-b418-b3526b61aa3f}\Bootstrapper.exe" -c /uninstall
Task: {83D5A5A0-3A21-400D-98D0-2A9BBD245B28} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe
Task: {921FD02A-BBEB-4892-8F5D-E4ECAAF56A76} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-08] (Microsoft Corporation)
Task: {9521B98F-1B96-4926-BDD1-FC01B2C78EED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {97436526-FB81-45BE-8867-27B0EB8CC973} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-08] (Microsoft Corporation)
Task: {9A4FCF95-6ED0-4516-95C6-D400CBDF84B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {9CEFC8D5-23FD-44E6-875E-C252E993951D} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-09-05] (Oracle Corporation)
Task: {9EEB3BD4-6055-4C27-8205-9F2A919D89B9} - System32\Tasks\{B7D9A3C9-DA6B-4D7B-82FA-80D591C33CEB} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Willy\AppData\Local\Microsoft\Windows\INetCache\IE\G32UQYYL\wmp11-windowsxp-x86-NL-NL.exe -d C:\Users\Willy\Desktop
Task: {AB8B1328-9341-495D-A9A9-BF7F9A0939E4} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-04-01] (Glarysoft Ltd)
Task: {BAE54CEE-0D6B-45A0-A3BF-C8684E5A75A1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
Task: {C3B6436F-4A0A-4186-ABAE-8C213BCC8EE3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-08] (Microsoft Corporation)
Task: {C83D58D3-6AAE-4234-A32C-C2198199A266} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-06-21] (Bitdefender)
Task: {D430DEC7-005C-4851-AA70-9FA0F85C60BE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-07-04] (HP Inc.)
Task: {D4804601-E15A-4E88-8450-8A7EE336CFF2} - System32\Tasks\DivX Update => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
Task: {D4B8D7E2-D50B-4762-9316-5D0FF25B92AD} - System32\Tasks\Opera scheduled suite Autoupdate 1495546438 => C:\Users\Willy\AppData\Local\Programs\Opera\launcher.exe
Task: {DC9DA7D6-2BA0-4CDE-A7A5-9B12E87E3481} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-08-08] (Microsoft Corporation)
Task: {F04C84BE-C575-44A6-8818-50DAEDF48D50} - System32\Tasks\{9DED80E1-9986-419A-B7DF-CA111B97CCFB} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Willy\Downloads\wmp11-windowsxp-x86-NL-NL.exe -d C:\Users\Willy\Downloads
Task: {F0A9C0B3-563C-4B67-ADE4-56AC70558430} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F347DFAC-E87F-49C3-AFA0-94DC96D74B99} - System32\Tasks\Opera scheduled Autoupdate 1495546432 => C:\Users\Willy\AppData\Local\Programs\Opera\launcher.exe
Task: {F7084872-AAE7-4174-9F3B-68AE0D465CEB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-13] (Google Inc.)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)


==================== Geladen Modules (gefilterd) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-09-13 07:57 - 2017-09-07 07:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-10-05 10:33 - 2013-09-03 13:29 - 000111832 _____ () C:\Program Files\Bitdefender\Bitdefender Security\bdmetrics.dll
2017-10-05 10:33 - 2017-02-07 11:34 - 001008448 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpbr.mdl
2017-10-05 10:33 - 2017-02-07 11:34 - 000541952 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpdsp.mdl
2017-10-05 10:33 - 2017-02-07 11:34 - 003243920 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttpph.mdl
2017-10-05 10:33 - 2017-02-07 11:34 - 001544568 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_001_001\ashttprbl.mdl
2017-05-08 23:44 - 2017-05-08 23:44 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-05-08 23:44 - 2017-05-08 23:44 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-21 19:08 - 2009-11-12 12:48 - 000071096 _____ () C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
2014-01-21 10:11 - 2013-08-20 01:07 - 000254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2013-09-05 12:22 - 2013-09-05 12:22 - 000109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
2013-09-05 12:24 - 2013-09-05 12:24 - 000627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll
2013-09-05 12:24 - 2013-09-05 12:24 - 002540544 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2013-09-05 12:21 - 2013-09-05 12:21 - 000035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2013-09-05 12:21 - 2013-09-05 12:21 - 000055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-09-14 08:53 - 2016-09-07 05:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 00:47 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 00:48 - 2017-03-04 07:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 00:48 - 2017-03-04 07:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 00:48 - 2017-03-04 07:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-10-11 10:03 - 2017-09-18 03:14 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-10-11 10:04 - 2017-09-18 03:16 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-09-29 11:32 - 2017-09-29 11:32 - 000076456 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2013-09-05 12:31 - 2013-09-05 12:31 - 000064000 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2017-10-18 01:27 - 2017-10-18 01:27 - 025741312 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-10-18 01:27 - 2017-10-18 01:27 - 009257984 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 08:16 - 2017-09-26 08:17 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2015-07-10 22:37 - 2015-07-10 22:37 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE trusted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\cloudfront.net -> hxxp://dnehqqnf5j8sa.cloudfront.net
IE restricted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\com001.site -> hxxp://com001.site
IE restricted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\cpmofferconvert.com -> hxxp://cpmofferconvert.com
IE restricted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\givingsol.com -> hxxp://givingsol.com
IE restricted site: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\liveadexchanger.com -> hxxps://www.liveadexchanger.com

==================== Hosts inhoud: ===============================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2013-08-22 14:25 - 2017-10-14 17:26 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "DivXUpdate"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "VideoDownloadConverter EPM Support"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\StartupApproved\StartupFolder: => "Inktwaarschuwingen controleren - HP Deskjet 3070 B611 series.lnk"
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\...\StartupApproved\Run: => "BingSvc"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{7DA31C68-43FB-4D5C-8086-C5515B92A2A2}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E2DF0A4B-14A5-44A5-A2DC-F7CE99D7633D}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{7EB401AB-27FA-42D5-92B2-FB8AC3B9344C}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{049C2973-D80E-4645-9987-2892AB121DF0}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B78B550E-E8EE-4DDD-862D-781D5C019655}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{115E35E5-F208-43C5-9E5B-3B82AD96BA5B}] => (Allow) C:\Users\Willy\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{66B2C3D6-C99B-49ED-A3F1-31D96C99C661}] => (Allow) LPort=1900
FirewallRules: [{1ED0C21E-FE16-45E2-99AC-216AEC223640}] => (Allow) LPort=2869
FirewallRules: [TCP Query User{30AC554F-10B8-4BE2-A9CA-BB6604DB391F}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{15250E76-C47E-4768-A463-C2C0E3B10E55}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{C260ED76-95CE-4FD4-8FC2-D7E8193B4F3E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{18B13CD7-7581-4FA1-A296-8797766199A9}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{5179D77A-7F4C-4024-A2DC-75B075C4A507}] => (Allow) C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\DeviceSetup.exe
FirewallRules: [{578488D6-3759-42DE-826A-748A04675499}] => (Allow) C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{9EB8BC68-882A-421F-8C05-5DE88CA214FA}] => (Allow) C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{F212614C-4546-4624-A20F-D5D58A028E4D}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{B043352B-A6FE-4A58-88C9-6E2325F0B357}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{528644D5-C32F-43ED-BECA-F84FE985B483}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{36C7C681-F546-409F-9004-C5BC6CDBAEDD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F0AA8A1F-6C0F-4444-8066-65389AB60221}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{70E2A425-860D-45C4-AD07-81C9ECE4041F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1E5F01CF-0E21-458D-9125-E59B700CDBA0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{39371092-191E-4D79-B975-AF3C56E9096F}C:\users\willy\documents\ws_ftp95.exe] => (Block) C:\users\willy\documents\ws_ftp95.exe
FirewallRules: [UDP Query User{4D86689C-DC8D-44EA-807E-2AEBABC63F3F}C:\users\willy\documents\ws_ftp95.exe] => (Block) C:\users\willy\documents\ws_ftp95.exe
FirewallRules: [TCP Query User{85B5AC63-AB82-4652-888F-ECEE7E2B8C85}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{5ED19BA9-E4D1-4329-9DF2-7148C34328B8}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{7EEDB5F6-3214-4F13-9FDB-D85E7DFAE438}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{6AAD9E81-0170-4510-9CC8-7D39B9DC9C32}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{F0372B8D-DA67-4F5F-BDAF-DEF333A24BDF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{8B1D7F85-6A64-47D7-B10B-585D9D44575C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{F695B333-7008-48C5-94DE-27AFD1575752}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [TCP Query User{4766FFFF-4208-4EC3-A0DF-9BDE0F937207}C:\users\willy\appdata\local\popcorn time ce\nw.exe] => (Allow) C:\users\willy\appdata\local\popcorn time ce\nw.exe
FirewallRules: [UDP Query User{A5DC8C11-96C9-4C9D-AC2D-916E938FFA57}C:\users\willy\appdata\local\popcorn time ce\nw.exe] => (Allow) C:\users\willy\appdata\local\popcorn time ce\nw.exe

==================== Herstelpunten =========================

27-10-2017 07:34:29 Windows Update
03-11-2017 10:31:45 Windows Update
03-11-2017 14:46:28 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
10-11-2017 10:31:50 Windows Update
15-11-2017 10:06:15 Windows Update
15-11-2017 10:08:37 Windows Update

==================== Defecte Apparaatbeheer Apparaten =============


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (11/15/2017 01:35:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: TWIESSIE)
Description: Het pakket Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe+App is beëindigd omdat het onderbreken te lang duurde.

Error: (11/15/2017 10:08:37 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Toegang geweigerd.
.

Error: (11/15/2017 10:06:35 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Toegang geweigerd.
.

Error: (11/15/2017 08:50:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: ntdll.dll, versie: 10.0.14393.1715, tijdstempel: 0x59b0d8f3
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000745e3
Id van proces met fout: 0x2ed0
Starttijd van toepassing met fout: 0x01d35de665716804
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll
Rapport-id: b57d3092-170f-47a8-98f2-ec8cf611983e
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (11/15/2017 08:50:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Uitzonderingscode: 0xc00001a5
Foutmarge: 0x003b006e
Id van proces met fout: 0x2ed0
Starttijd van toepassing met fout: 0x01d35de665716804
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Rapport-id: 51fef46e-bb08-426e-92ce-739380e66f9f
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (11/15/2017 08:50:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: ntdll.dll, versie: 10.0.14393.1715, tijdstempel: 0x59b0d8f3
Uitzonderingscode: 0xc0000409
Foutmarge: 0x000745e3
Id van proces met fout: 0x2ed0
Starttijd van toepassing met fout: 0x01d35de665716804
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll
Rapport-id: 86c076e1-176d-4a1f-93d9-84b13bbaf895
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (11/15/2017 08:41:34 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Kan activeringscontext voor 'c:\program files (x86)\cdburnerxp\cdbxpcmd.exe.Manifest' niet maken. Fout in manifest of beleidsbestand 'c:\program files (x86)\cdburnerxp\Native.CsLib.MANIFEST op regel 3.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is Native.CsLib,processorArchitecture="x86",type="win32",version="4.5.6.6059".
Definitie is Native.CsLib,processorArchitecture="x86",type="win32",version="1.0.1893.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (11/15/2017 08:40:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: ntdll.dll, versie: 10.0.14393.1715, tijdstempel: 0x59b0d8f3
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000745e3
Id van proces met fout: 0x2808
Starttijd van toepassing met fout: 0x01d35de4e0c89c0f
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll
Rapport-id: fb530059-c695-4e55-b946-9dbd15f50533
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (11/15/2017 08:39:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Uitzonderingscode: 0xc00001a5
Foutmarge: 0x003b006e
Id van proces met fout: 0x2808
Starttijd van toepassing met fout: 0x01d35de4e0c89c0f
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Rapport-id: 5afc0f7e-296b-439c-bfa2-c8b7793f886f
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (11/15/2017 08:39:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: adwcleaner_7.0.4.0.exe, versie: 7.0.4.0, tijdstempel: 0x59f3de9c
Naam van module met fout: ntdll.dll, versie: 10.0.14393.1715, tijdstempel: 0x59b0d8f3
Uitzonderingscode: 0xc0000409
Foutmarge: 0x000745e3
Id van proces met fout: 0x2808
Starttijd van toepassing met fout: 0x01d35de4e0c89c0f
Pad naar toepassing met fout: C:\Users\Willy\Downloads\adwcleaner_7.0.4.0.exe
Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll
Rapport-id: 1116f2ae-14b1-4995-a6ad-109cb5a5eb2a
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:


Systeemfouten:
=============
Error: (11/15/2017 09:25:34 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server {4EB61BAC-A3B6-4760-9581-655041EF4D69} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (11/15/2017 09:24:32 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (11/15/2017 09:21:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 09:21:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 09:21:32 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
en APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 09:19:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 08:34:21 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (11/15/2017 08:33:19 AM) (Source: DCOM) (EventID: 10016) (User: TWIESSIE)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker Twiessie\Willy SID (S-1-5-21-2740136656-2267361661-3735233382-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer 12199Asparion.AsparionClock_4.0.2.69_x64__f89vgcf3qm37t SID (S-1-15-2-3176966398-4280618494-1454447290-2886210293-1753669485-3698150592-548000920). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 08:33:19 AM) (Source: DCOM) (EventID: 10016) (User: TWIESSIE)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker Twiessie\Willy SID (S-1-5-21-2740136656-2267361661-3735233382-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer 12199Asparion.AsparionClock_4.0.2.69_x64__f89vgcf3qm37t SID (S-1-15-2-3176966398-4280618494-1454447290-2886210293-1753669485-3698150592-548000920). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (11/15/2017 08:33:19 AM) (Source: DCOM) (EventID: 10016) (User: TWIESSIE)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker Twiessie\Willy SID (S-1-5-21-2740136656-2267361661-3735233382-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer 12199Asparion.AsparionClock_4.0.2.69_x64__f89vgcf3qm37t SID (S-1-15-2-3176966398-4280618494-1454447290-2886210293-1753669485-3698150592-548000920). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.


CodeIntegrity:
===================================
Date: 2017-11-15 11:15:40.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-11-15 09:21:19.433
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender Security\vsservp.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender\Bit
HP Envy 700-209eb
2 TB 12 GB x64 processor - Intel i7-4770
Windows 10 - Firefox

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

15 nov 2017, 14:43

Hallo,

Staat de virusscanner: AV: Windows Defender wel uit kijk dat eens na: Uitleg.

Sleep nu eerst FRST (Farbar Recovery Scaqn Tool) vanuit je Downloads map naar je bureaublad (zeer belangrijk !)


Lees eerst de handleiding en voer daarna de fix uit Handleiding Fix

Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

Klik Windows knop plus R tegelijk in. Afbeelding
"Uitvoeren" opent vul daar Notepad in en klik daarna op "OK", Kladblok opent.
Kopieer onderstaande dik gedrukte blauwe code en plak dat in "Kladblok"



start
CreateRestorePoint:
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restrictie - Chrome <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {936A65A5-F3FF-4E2D-B886-D0D7E648B88A} URL =
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO-x32: eID Extension -> {89D6D363-6550-47C1-B83F-2433F6844EC6} -> C:\Program Files (x86)\eid-ie\eidie32.dll [2017-06-09] ()
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Geen bestand
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => -> Geen bestand
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
Task: {5F7C4AD8-91B8-4787-AB32-786B5D3CD652} - \WPD\SqmUpload_S-1-5-21-2740136656-2267361661-3735233382-1001 -> Geen bestand <==== AANDACHT
EmptyTemp:
end


Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Flurk
Lid geworden op: 04 jan 2003, 18:17
Locatie: Roeselare

15 nov 2017, 15:28

Beste,

Hier het resultaat

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 12-11-2017 03
Gestart door Willy (15-11-2017 15:23:24) Run:1
Gestart vanaf C:\Users\Willy\Desktop
Geladen Profielen: Willy (Beschikbare Profielen: Willy)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restrictie - Chrome <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {936A65A5-F3FF-4E2D-B886-D0D7E648B88A} URL =
SearchScopes: HKU\S-1-5-21-2740136656-2267361661-3735233382-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO-x32: eID Extension -> {89D6D363-6550-47C1-B83F-2433F6844EC6} -> C:\Program Files (x86)\eid-ie\eidie32.dll [2017-06-09] ()
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Geen bestand
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => -> Geen bestand
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => -> Geen bestand
Task: {5F7C4AD8-91B8-4787-AB32-786B5D3CD652} - \WPD\SqmUpload_S-1-5-21-2740136656-2267361661-3735233382-1001 -> Geen bestand <==== AANDACHT
EmptyTemp:
end
*****************

Herstelpunt is succesvol gemaakt.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ => waarde is succesvol verwijderd
C:\WINDOWS\system32\GroupPolicy\Machine => is succesvol verplaatst
C:\WINDOWS\system32\GroupPolicy\GPT.ini => is succesvol verplaatst
HKLM\SOFTWARE\Policies\Google => sleutel is succesvol verwijderd
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{936A65A5-F3FF-4E2D-B886-D0D7E648B88A} => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{936A65A5-F3FF-4E2D-B886-D0D7E648B88A} => sleutel niet gevonden.
HKU\S-1-5-21-2740136656-2267361661-3735233382-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{D944BB61-2E34-4DBF-A683-47E505C587DC} => sleutel niet gevonden.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{89D6D363-6550-47C1-B83F-2433F6844EC6} => sleutel is succesvol verwijderd
HKLM\Software\Wow6432Node\Classes\CLSID\{89D6D363-6550-47C1-B83F-2433F6844EC6} => sleutel is succesvol verwijderd
HKLM\Software\Classes\PROTOCOLS\Handler\wlpg => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} => sleutel niet gevonden.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => sleutel niet gevonden.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SnagItMainShellExt => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{CF74B903-3389-469c-B3B6-0204D204FCBD} => sleutel niet gevonden.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\TVCShellExt => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => sleutel is succesvol verwijderd
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SnagItMainShellExt => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{CF74B903-3389-469c-B3B6-0204D204FCBD} => sleutel niet gevonden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F7C4AD8-91B8-4787-AB32-786B5D3CD652} => sleutel is succesvol verwijderd
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F7C4AD8-91B8-4787-AB32-786B5D3CD652} => sleutel is succesvol verwijderd
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-2740136656-2267361661-3735233382-1001 => sleutel is succesvol verwijderd

=========== EmptyTemp: ==========

BITS transfer queue => 4164368 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 237929732 B
Java, Flash, Steam htmlcache => 974 B
Windows/system/drivers => 912722 B
Edge => 0 B
Chrome => 146432 B
Firefox => 0 B
Opera => 132096 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 128 B
Willy => 15147685 B

RecycleBin => 152870884 B
EmptyTemp: => 392.3 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 15:24:36 ====
HP Envy 700-209eb
2 TB 12 GB x64 processor - Intel i7-4770
Windows 10 - Firefox

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

15 nov 2017, 18:55

Hallo,

Ik heb je pc opgeruimd en er staat verder niks raar op.
Stond Defender uit?

En zijn er verder problemen waarom je een logje plaatst?
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

Flurk
Lid geworden op: 04 jan 2003, 18:17
Locatie: Roeselare

15 nov 2017, 19:27

Beste abbs,

Dank voor uw deskundige hulp.

Defender was idd niet uitgezet, nu wel (definitief)

Het logje heb ik geplaatst omdat ik om de haverklap het bericht kreeg dat IE niet meer functioneerde en zou worden afgesloten.

Ik ben heel tevreden dat dat nu is opgelost en alles perfect werkt.

Vriendelijke groeten en nogmaals van harte bedankt.
HP Envy 700-209eb
2 TB 12 GB x64 processor - Intel i7-4770
Windows 10 - Firefox

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

15 nov 2017, 19:33

Hallo,

Zorg altijd dat op Windows 10 maar één virusscanner actief is.
Dan mag je de laatste stap doen.

Met het onderstaande tooltje ruim je alle gebruikte tools op:

Download Afbeelding Delfix - Alternatieve downloadlink by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.
Zet een vinkje voor het volgende item:
  • Remove disinfection tools
Afbeelding
Klik nu op "Run" en wacht geduldig tot de tool gereed is.
Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft je echter niet te plaatsen.
Start je pc hierna opnieuw op, mochten er nog programma's of log bestanden aanwezig zijn mag je die handmatig verwijderen.
Maak ook een nieuw herstelpunt Uitleg.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)