Logje nakijken aub-opgelost-

Spyware is software die in het geheim op je computer wordt geplaatst en die persoonlijke gegevens doorstuurt, reclame toont, enz. Stel hier vragen, leer hoe je ervan af kan komen en hoe het te voorkomen.

de compostmeester
Lid geworden op: 12 aug 2006, 23:22

22 aug 2017, 23:31

Hallo,
Ik had graag gehad dat mijn logje nageken word, gewoon ter controle, misschien staan er bepaalde zaken in die ik kan verwijderen. Ik heb ook nog een klein probleempje, ik had de panda security 2017 geinstaleerd, maar omdat ik Norton Security Online van Proximus geinstaleerd heb heb ik de Panda verwijderd, dit is goed gelukt, maar als ik in de programmafiles ga kijken staat er nog een map van Panda Securirty, verwijderen lukt niet ik krijg de melding dat deze bewerking niet kan voltooit worden omdat de map in gebruik is of dat de map of een bestand in de map in een ander programma is geopend. Sluit de map of het bestand en probeer opnieuw. in de map staat Panda Devices Agent. Hoe kan ik deze verwijderen ?
Alvast dank
Hierna het logje:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:06:15, on 22/08/2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)

FIREFOX: 55.0.2 (x86 nl)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NSBU.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Windows\System32\smartscreen.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coNatHst.exe
C:\Users\Johan\Downloads\HijackThis.exe
C:\WINDOWS\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/search?FORM=INCOH1 ... O-2a7df7a4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Safety - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll
O2 - BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files\LastPass\LPToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: PDF Architect 5 Helper - {AEA429F3-D2D4-4BD7-A03E-5357DA017733} - C:\Program Files\PDF Architect 5\creator-ie-helper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll
O3 - Toolbar: LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [Malwarebytes TrayApp] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Johan\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Gadwin PrintScreen (32-bit)] "C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe" /nosplash
O4 - HKCU\..\Run: [Kaspersky Software Updater] "C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe" ksu autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: LastPass - file://C:\Users\Johan\AppData\LocalLow\LastPass\context.html?cmd=lastpass
O8 - Extra context menu item: LastPass Invulformulieren - file://C:\Users\Johan\AppData\LocalLow\LastPass\context.html?cmd=fillforms
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\LastPass\LPToolbar.dll
O9 - Extra 'Tools' menuitem: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files\LastPass\LPToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: WSAllMyTubechrome - (no CLSID) - (no file)
O20 - AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe,-100 (CIJSRegister) - CANON INC. - C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe
O23 - Service: Dropbox-update-service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox-update-service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Dropbox, Inc. - C:\WINDOWS\system32\DbxSvc.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HuaweiHiSuiteService.exe - Unknown owner - C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: KSU Service (ksu) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Norton Security with Backup (NSBU) - Symantec Corporation - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NSBU.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: PDF Architect 5 - pdfforge GmbH - C:\Program Files\PDF Architect 5\ws.exe
O23 - Service: PDF Architect 5 CrashHandler - pdfforge GmbH - C:\Program Files\PDF Architect 5\crash-handler-ws.exe
O23 - Service: PDF Architect 5 Creator - pdfforge GmbH - C:\Program Files\PDF Architect 5\creator-ws.exe
O23 - Service: PDF Architect 5 Manager - © pdfforge GmbH. - C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe

--
End of file - 9095 bytes
Laptop gegevens:
Dell Latitude E6500
Windows 10 Professional Creator Update
Processor: Intel(R)Core,TM2 Duo CPU T9550 @ 2,88 GHz 2.87 GHz
Geinstaleerd geheugen (Ram) 2,00 Gb
Type Systeem: 32 bits besturingssysteem, x64 processor
Harde schijf 500 Gb
Antivirus:
norton Internet Security Online van Proximus
Malware Antimalwarbytes

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

23 aug 2017, 10:28

Hallo,

Om meer inzicht te krijgen voer Farbar Recovery Scan Tool eens uit.
Handleiding: https://www.seniorennet.be/forum/viewtopic.php?t=197564
Er worden twee logjes gemaakt plaats de inhoud van elk logje in een nieuw onderwerp.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

24 aug 2017, 12:06

Hallo,

Antwoord staat onderop :)
Laatst gewijzigd door abbs op 24 aug 2017, 12:19, 1 keer totaal gewijzigd.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

verhaegen
Support SeniorenNet
Lid geworden op: 03 apr 2003, 20:48
Locatie: kapellen

24 aug 2017, 12:07

de compostmeester

Geplaatst: Do 24 Aug 2017, 8:08 Onderwerp: Eerste gevraagde logje van de frst scan-

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 20-08-2017
Gestart door Johan (Beheerder) op JOHAN (24-08-2017 07:47:41)
Gestart vanaf C:\Users\Johan\Desktop
Geladen Profielen: Johan (Beschikbare Profielen: defaultuser0 & Johan)
Platform: Microsoft Windows 10 Pro Versie 1703 (X86) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(CANON INC.) C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe
() C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(© pdfforge GmbH.) C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Wondershare) C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\nsbu.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Update\DropboxUpdate.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3487032 2017-08-22] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Gadwin PrintScreen (32-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe [11507872 2014-10-15] (Gadwin Systems)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Run: [Kaspersky Software Updater] => C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL => Geen bestand
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy: Restrictie ? <==== AANDACHT
GroupPolicyScripts: Restrictie <==== AANDACHT
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2812e8b1-c471-4686-aed8-1a3e61848346}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6f8cad46-0ee6-48c2-b95f-fd78c26d9916}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <==== AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05 ... O-2a7df7a4
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05 ... earchTerms}
SearchScopes: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=1011&geo=BE&ver=22.10.0.85&locale=nl_BE&guid=A959ADFB-CBDF-4736-B9FD-BA2DAAE3AC65&doi=2016-09-01&gct=kwd&qsrc=2869
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll [2017-02-11] (LastPass)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-12] (Google Inc.)
Toolbar: HKU\S-1-5-21-2730591041-2436348752-160320332-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Handler: WSAllMyTubechrome - Geen CLSID Waarde -

Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2017-06-14]
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.2.0.0_neutral__c1wakc4j0nefm [2017-07-13]
Edge Extension: (LastPass: Free Password Manager) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:\Program Files\WindowsApps\LastPass.LastPassFreePasswordManager_4.1.45.0_neutral__qq0fmhteeht3j [2017-06-23]

FireFox:
========
FF DefaultProfile: ba8xwqi9.default
FF ProfilePath: C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default [2017-08-22]
FF NewTab: Mozilla\Firefox\Profiles\ba8xwqi9.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ba8xwqi9.default -> Search Provided by Bing
FF Homepage: Mozilla\Firefox\Profiles\ba8xwqi9.default -> hxxps://www.google.be
FF Keyword.URL: Mozilla\Firefox\Profiles\ba8xwqi9.default -> user_pref("keyword.URL", true);
FF Extension: (Belgium eID) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\belgiumeid@eid.belgium.be.xpi [2017-07-01]
FF Extension: (Enhancer for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2017-08-17]
FF Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\firefox@ghostery.com.xpi [2017-08-14]
FF Extension: (Privacy Badger) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-08-17]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2017-08-14]
FF Extension: (S3.Google Translator) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\s3google@translator.xpi [2017-06-05]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\support@lastpass.com [2017-08-17]
FF Extension: (Adblock Plus) - C:\Users\Johan\AppData\Roaming\Mozilla\Firefox\Profiles\ba8xwqi9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-09]
FF Extension: (Belgium eID) - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-02-11]
FF HKLM\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.9.0.71\coFFAddon [2017-08-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-09] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Geen bestand]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files\LastPass\nplastpass.dll [2017-02-11] (LastPass)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-05-08] (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=3 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]
FF Plugin HKU\S-1-5-21-2730591041-2436348752-160320332-1001: @updates.epicbrowser.com/Epic Privacy Browser Update;version=9 -> C:\Users\Johan\AppData\Local\Epic Privacy Browser\Update\1.3.27.13\npEpicUpdate3.dll [Geen bestand]

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.be/"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default [2017-08-22]
CHR Extension: (Google Presentaties) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-09]
CHR Extension: (Google Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-09]
CHR Extension: (Google Drive) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-09]
CHR Extension: (YouTube) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-09]
CHR Extension: (Adblock Plus) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-13]
CHR Extension: (Norton Security Toolbar) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2017-08-15]
CHR Extension: (Google Spreadsheets) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-09]
CHR Extension: (Small Waterfall) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjmpmheefpadfkjkkeeeanlkhdlpmeom [2017-02-10]
CHR Extension: (Offline Documenten) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-10]
CHR Extension: (Vertalen.nu) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\giapagjeblcapfphboclikepoeelhgkj [2017-02-11]
CHR Extension: (Norton Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-06-17]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-08-02]
CHR Extension: (Advertenties blocker voor YouTube ™) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2017-08-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-05-07]
CHR Extension: (Ghostery) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2017-08-10]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Vertalen.nu woordenboek) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooiedhfkmchachmfaehplpcacmdleobg [2017-02-11]
CHR Extension: (Photobucket Album Downloader) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\papfjgooflcelknccdephbdnhogadkfj [2017-02-17]
CHR Extension: (Gmail) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-30]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\Exts\Chrome.crx [2017-08-15]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR StartupUrls:
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2017-08-15]
OPR Extension: (Ghostery) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfbekbndggmbdkfhjandenfihkdkndil [2017-04-21]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2017-07-01]
OPR Extension: (Custom Home Page) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pdkmcmpnodclbbopghhicfkifklpokkf [2017-04-18]
OPR Extension: (AdBlocker Ultimate) - C:\Users\Johan\AppData\Roaming\Opera Software\Opera Stable\Extensions\pmpmnoinbkdojlnknogfeoagmhmhgakc [2017-02-10]

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 CIJSRegister; C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe [153736 2016-06-02] (CANON INC.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-02-10] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [43336 2017-08-22] (Dropbox, Inc.)
R2 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [155848 2016-11-25] () [Bestand niet getekend]
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [387144 2017-03-31] ()
R3 ksu; C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NSBU.exe [288504 2017-07-15] (Symantec Corporation)
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (© pdfforge GmbH.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-06-20] (Microsoft Corporation)
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [65544 2016-11-28] (Advanced Card Systems Ltd.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [35760 2016-12-26] ()
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\BASHDefs\20170813.001\BHDrvx86.sys [1359520 2017-08-07] (Symantec Corporation)
R1 ccSet_NSBU; C:\WINDOWS\system32\drivers\NSBU\160A000.055\ccSetx86.sys [147072 2017-07-14] (Symantec Corporation)
R3 cvusbdrv; C:\WINDOWS\System32\Drivers\cvusbdrv.sys [52352 2017-02-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [393344 2017-08-15] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [126592 2017-08-15] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.9.0.71\Definitions\IPSDefs\20170816.001\IDSvix86.sys [845976 2017-08-12] (Symantec Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [221600 2017-08-22] (Malwarebytes)
S1 MpKslf114526f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B959E5EA-0B74-4F6F-8237-B2E944DD28EA}\MpKslf114526f.sys [39168 2017-08-18] () [Bestand niet getekend]
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7530736 2013-12-12] (Intel Corporation)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [100272 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212016 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [119600 2016-07-05] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [135856 2016-07-05] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [68376 2016-07-06] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [116144 2016-07-05] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [77232 2016-07-05] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [130736 2016-07-05] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [316336 2016-07-05] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [233264 2016-07-05] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [117808 2016-07-05] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [261808 2016-07-05] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [111536 2016-07-05] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [152336 2017-02-12] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [112400 2017-02-12] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [175888 2017-02-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [121616 2017-02-12] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [132880 2017-02-12] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [107792 2017-02-12] (Panda Security, S.L.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [60200 2016-08-11] (Panda Security, S.L.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-08] (Synaptics Incorporated)
R3 SRTSP; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SRTSP.SYS [659616 2017-07-14] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NSBU\160A000.055\SRTSPX.SYS [41112 2017-07-14] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMEFASI.SYS [1393792 2017-07-14] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NSBU\160A000.055\SYMELAM.SYS [20512 2017-07-14] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [89264 2017-08-15] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NSBU\160A000.055\Ironx86.SYS [241888 2017-07-14] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\NSBU\160A000.055\SYMNETS.SYS [423552 2017-07-14] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Gemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-08-24 07:47 - 2017-08-24 07:47 - 001792512 _____ (Farbar) C:\Users\Johan\Desktop\FRST.exe
2017-08-24 07:47 - 2017-08-24 07:47 - 000026566 _____ C:\Users\Johan\Desktop\FRST.txt
2017-08-24 07:47 - 2017-08-24 07:47 - 000000000 ____D C:\Users\Johan\Desktop\FRST-OlderVersion
2017-08-24 07:45 - 2017-08-24 07:45 - 001792512 _____ (Farbar) C:\Users\Johan\Downloads\FRST (1).exe
2017-08-24 07:42 - 2017-08-24 07:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-08-24 07:39 - 2017-08-24 07:39 - 000002087 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002085 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-08-24 07:39 - 2017-08-24 07:39 - 000002075 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-08-22 23:32 - 2017-08-22 23:32 - 000001048 _____ C:\Users\Johan\Desktop\HijackThis - Snelkoppeling.lnk
2017-08-22 18:55 - 2017-08-22 18:55 - 000043336 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-08-22 18:55 - 2017-08-22 18:55 - 000035432 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-08-22 18:55 - 2017-08-22 18:55 - 000035408 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-08-22 18:42 - 2017-08-22 18:42 - 000002074 _____ C:\Users\Johan\Desktop\Quick Menu.lnk
2017-08-17 18:18 - 2017-08-17 18:21 - 000055549 _____ C:\Users\Johan\Downloads\Addition.txt
2017-08-17 18:17 - 2017-08-24 07:47 - 000000000 ____D C:\FRST
2017-08-17 18:17 - 2017-08-17 18:21 - 000072057 _____ C:\Users\Johan\Downloads\FRST.txt
2017-08-16 18:54 - 2017-02-27 23:13 - 000454232 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20170816-185404.backup
2017-08-16 18:38 - 2017-08-22 21:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-16 18:37 - 2017-08-16 18:37 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\Johan\Downloads\spybotsd-2.6.46.exe
2017-08-16 18:23 - 2017-08-16 18:23 - 000001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera-browser.lnk
2017-08-16 14:49 - 2017-08-16 14:50 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2017-08-16 14:49 - 2017-08-16 14:49 - 000804936 _____ C:\Users\Johan\Downloads\dvd-creator_setup_full619.exe
2017-08-16 14:32 - 2017-08-16 14:33 - 144507904 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoEditor.exe
2017-08-15 23:49 - 2017-08-15 23:49 - 133741288 _____ (OpenShot Studios, LLC ) C:\Users\Johan\Downloads\OpenShot-v2.3.4-x86_64.exe
2017-08-15 22:51 - 2017-08-15 22:51 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2017-08-15 22:49 - 2017-08-15 22:49 - 000000000 ____D C:\Program Files\FreeCodecPack
2017-08-15 22:47 - 2017-08-15 22:48 - 059098016 _____ (Digital Wave Ltd ) C:\Users\Johan\Downloads\FreeStudio_6.6.39.707_d.exe
2017-08-15 19:03 - 2017-08-15 22:24 - 000000000 ____D C:\Program Files\Common Files\AVSMedia
2017-08-15 19:02 - 2017-08-15 19:07 - 000000000 ____D C:\ProgramData\AVS4YOU
2017-08-15 19:02 - 2012-03-23 18:59 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3a.dll
2017-08-15 19:01 - 2017-08-15 19:01 - 065536184 _____ (Online Media Technologies Ltd. ) C:\Users\Johan\Downloads\AVSVideoConverter.exe
2017-08-15 17:58 - 2017-08-15 17:58 - 000000000 ____D C:\Users\Johan\Downloads\Ashampoo Burning Studio FREE
2017-08-15 17:54 - 2017-08-15 17:54 - 000001366 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2017-08-15 17:53 - 2017-08-15 17:53 - 031700392 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_free_24045.exe
2017-08-15 11:45 - 2017-08-15 11:45 - 000002508 _____ C:\Users\Public\Desktop\Norton Security with Backup.lnk
2017-08-15 11:44 - 2017-08-15 11:44 - 000089264 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2017-08-15 10:56 - 2017-08-15 11:44 - 000008232 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2017-08-15 10:56 - 2017-08-15 11:20 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2017-08-15 10:55 - 2017-08-15 11:45 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2017-08-15 10:55 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\Norton Security with Backup
2017-08-15 10:54 - 2017-08-15 10:55 - 000000000 ____D C:\Program Files\NortonInstaller
2017-08-15 10:54 - 2017-08-15 10:54 - 001027864 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NSBUDownloader (1).exe
2017-08-15 10:43 - 2017-08-15 10:43 - 014417536 _____ (Symantec Corporation) C:\Users\Johan\Downloads\NRnR.exe
2017-08-14 18:15 - 2017-08-22 18:41 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Canon
2017-08-14 18:15 - 2017-08-14 18:15 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX2
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Canon Easy-WebPrint EX
2017-08-14 14:01 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2017-08-14 13:57 - 2017-08-14 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TS5000 series Schermhandleiding
2017-08-14 13:54 - 2017-08-14 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gebruikersregistratie voor Canon TS5000 series
2017-08-14 13:47 - 2017-08-14 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\ProgramData\CanonBJ
2017-08-14 13:46 - 2017-08-14 13:46 - 000000000 ___HD C:\Program Files\CanonBJ
2017-08-14 13:46 - 2016-06-20 05:00 - 000393728 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMDF.DLL
2017-08-14 13:46 - 2016-03-02 10:31 - 000346624 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFL.dll
2017-08-14 13:46 - 2016-02-15 10:05 - 000097280 _____ C:\WINDOWS\system32\CNC1802D.TBL
2017-08-14 13:46 - 2015-10-19 18:53 - 000477696 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFC.dll
2017-08-14 13:46 - 2015-10-19 18:53 - 000238592 _____ (CANON INC.) C:\WINDOWS\system32\CNC_DFI.dll
2017-08-14 13:46 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA.dll
2017-08-14 13:44 - 2017-08-14 18:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-08-14 13:44 - 2017-08-14 14:01 - 000000000 ____D C:\Program Files\Canon
2017-08-14 13:44 - 2017-08-14 13:44 - 000000000 ____D C:\ProgramData\Canon
2017-08-14 10:49 - 2017-08-14 10:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-11 09:00 - 2012-08-20 06:19 - 001534464 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\BrWi209c.dll
2017-08-11 08:58 - 2017-08-11 08:58 - 000000000 ____D C:\Users\Johan\Downloads\install
2017-08-10 23:40 - 2017-08-11 09:00 - 000000050 _____ C:\WINDOWS\system32\BRIDF10B.DAT
2017-08-10 23:39 - 2017-08-10 23:39 - 000000000 ____D C:\ProgramData\Brother
2017-08-10 23:38 - 2017-08-10 23:38 - 000000000 ____D C:\Users\Johan\Downloads\wlan_wiz
2017-08-10 23:37 - 2017-08-10 23:37 - 122970256 _____ (A.I.SOFT,INC.) C:\Users\Johan\Downloads\dcp-j715w-inst-C1-cd3.EXE
2017-08-10 23:30 - 2017-08-10 23:30 - 000000000 ____D C:\Users\Johan\Downloads\RemPnP
2017-08-10 23:29 - 2017-08-10 23:29 - 000472320 _____ (SEIKO EPSON CORPORATION) C:\Users\Johan\Downloads\delinf_10270.EXE
2017-08-09 19:25 - 2017-07-31 17:15 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-08-09 19:25 - 2017-07-31 17:15 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-08-08 19:44 - 2017-08-01 04:47 - 005862816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-08 19:44 - 2017-08-01 04:43 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-08 19:44 - 2017-08-01 04:41 - 000095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-08 19:44 - 2017-08-01 04:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-08 19:44 - 2017-08-01 04:36 - 000173984 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-08 19:44 - 2017-08-01 04:11 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-08-08 19:44 - 2017-08-01 04:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-08 19:44 - 2017-08-01 04:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-08 19:44 - 2017-08-01 04:04 - 001831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-08 19:44 - 2017-08-01 04:01 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-08-08 19:44 - 2017-07-28 06:48 - 001972128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-08 19:44 - 2017-07-28 06:47 - 000572320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-08 19:44 - 2017-07-28 06:44 - 000239008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-08 19:44 - 2017-07-28 06:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-08 19:44 - 2017-07-28 06:39 - 000434592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-08 19:44 - 2017-07-28 06:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-08 19:44 - 2017-07-28 06:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-08 19:44 - 2017-07-28 06:33 - 002081184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-08 19:44 - 2017-07-28 06:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-08 19:44 - 2017-07-28 06:20 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-08 19:44 - 2017-07-28 06:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-08 19:44 - 2017-07-28 06:16 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-08 19:44 - 2017-07-28 06:15 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-08 19:44 - 2017-07-28 06:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-08 19:44 - 2017-07-28 06:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-08 19:44 - 2017-07-28 06:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-08 19:44 - 2017-07-28 06:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-08-08 19:44 - 2017-07-28 06:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-08 19:44 - 2017-07-28 06:04 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-08 19:43 - 2017-08-01 04:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-08 19:43 - 2017-08-01 04:37 - 002023832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-08 19:43 - 2017-08-01 04:37 - 000582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-08 19:43 - 2017-08-01 04:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-08 19:43 - 2017-08-01 04:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-08 19:43 - 2017-08-01 04:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-08 19:43 - 2017-08-01 04:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-08 19:43 - 2017-08-01 04:34 - 000060312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-08 19:43 - 2017-08-01 04:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-08 19:43 - 2017-08-01 04:20 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-08 19:43 - 2017-08-01 04:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-08 19:43 - 2017-08-01 04:20 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-08 19:43 - 2017-08-01 04:20 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-08 19:43 - 2017-08-01 04:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-08 19:43 - 2017-08-01 04:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-08 19:43 - 2017-08-01 04:15 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-08 19:43 - 2017-08-01 04:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-08 19:43 - 2017-08-01 04:13 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-08 19:43 - 2017-08-01 04:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-08 19:43 - 2017-08-01 04:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-08 19:43 - 2017-08-01 04:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-08 19:43 - 2017-08-01 04:08 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-08 19:43 - 2017-08-01 04:07 - 003447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 001585152 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-08 19:43 - 2017-08-01 04:06 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-08 19:43 - 2017-08-01 04:06 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-08 19:43 - 2017-08-01 04:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-08 19:43 - 2017-08-01 04:01 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-08 19:43 - 2017-08-01 04:01 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2017-08-08 19:43 - 2017-08-01 00:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswdat10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswstr10.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrepl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000518144 _____ C:\WINDOWS\system32\msjetoledb40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspbde40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjtes40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstext40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msltus40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjint40.dll
2017-08-08 19:43 - 2017-08-01 00:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjter40.dll
2017-08-08 19:43 - 2017-07-28 07:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 001854832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000358816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-08 19:43 - 2017-07-28 06:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-08 19:43 - 2017-07-28 06:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-08 19:43 - 2017-07-28 06:46 - 000698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-08 19:43 - 2017-07-28 06:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-08 19:43 - 2017-07-28 06:38 - 000597920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-08 19:43 - 2017-07-28 06:38 - 000216504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-08 19:43 - 2017-07-28 06:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-08 19:43 - 2017-07-28 06:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-08 19:43 - 2017-07-28 06:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-08 19:43 - 2017-07-28 06:33 - 000440184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-08 19:43 - 2017-07-28 06:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-08 19:43 - 2017-07-28 06:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-08 19:43 - 2017-07-28 06:24 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-08 19:43 - 2017-07-28 06:21 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-08 19:43 - 2017-07-28 06:20 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-08 19:43 - 2017-07-28 06:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-08 19:43 - 2017-07-28 06:19 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-08 19:43 - 2017-07-28 06:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-08 19:43 - 2017-07-28 06:17 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-08 19:43 - 2017-07-28 06:17 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-08 19:43 - 2017-07-28 06:17 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-08 19:43 - 2017-07-28 06:16 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-08 19:43 - 2017-07-28 06:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-08 19:43 - 2017-07-28 06:15 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-08 19:43 - 2017-07-28 06:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-08 19:43 - 2017-07-28 06:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-08 19:43 - 2017-07-28 06:13 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-08 19:43 - 2017-07-28 06:12 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-08 19:43 - 2017-07-28 06:11 - 000962048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-08 19:43 - 2017-07-28 06:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-08 19:43 - 2017-07-28 06:09 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 002122240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-08 19:43 - 2017-07-28 06:08 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-08 19:43 - 2017-07-28 06:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-08 19:43 - 2017-07-28 06:06 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-08 19:43 - 2017-07-28 06:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-08 19:43 - 2017-07-28 06:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-08 19:43 - 2017-07-28 06:04 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-08 19:43 - 2017-07-28 06:03 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-08 19:43 - 2017-07-28 06:03 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001377280 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 001244160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-08 19:43 - 2017-07-28 06:02 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-08 19:43 - 2017-07-28 06:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-08 19:43 - 2017-07-28 06:01 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-08 19:42 - 2017-07-28 06:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-08 12:13 - 2017-08-08 12:18 - 1302233088 _____ C:\Users\Johan\Downloads\xubuntu-16.04.2-desktop-i386.iso
2017-08-07 23:31 - 2017-08-07 23:31 - 000000000 ____D C:\Users\Johan\AppData\Roaming\IObit
2017-08-07 23:30 - 2017-08-07 23:30 - 000001388 _____ C:\Users\Public\Desktop\Random Password Generator.lnk
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Random Password Generator
2017-08-07 23:30 - 2017-08-07 23:30 - 000000000 ____D C:\Program Files\IObit
2017-08-07 23:29 - 2017-08-07 23:29 - 003722312 _____ (IObit ) C:\Users\Johan\Downloads\rpg-setup_1.3.exe
2017-08-04 09:44 - 2017-08-04 09:44 - 000022701 _____ C:\Users\Johan\Downloads\dda0c8c4-f80b-4a1f-b817-ca19f2894793.tmp
2017-08-03 21:18 - 2017-08-15 17:55 - 000000000 ____D C:\Users\Johan\AppData\Roaming\Ashampoo
2017-08-03 21:17 - 2017-08-15 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-08-03 21:17 - 2017-08-03 21:17 - 000001382 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio 6 FREE.lnk
2017-08-03 21:17 - 2017-08-03 21:17 - 000000000 ____D C:\Users\Johan\AppData\Local\ashampoo
2017-08-03 21:04 - 2017-08-03 21:04 - 014340520 _____ (Ashampoo GmbH & Co. KG ) C:\Users\Johan\Downloads\ashampoo_burning_studio_6_free_21592.exe
2017-08-03 09:23 - 2017-08-03 09:23 - 000131760 _____ C:\Users\Johan\Downloads\administratief personeel leesbevordering volwassenen (3).pdf
2017-07-29 12:51 - 2017-07-29 12:51 - 000095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-07-29 12:51 - 2017-07-29 12:51 - 000000000 ____D C:\Program Files\Common Files\Java
2017-07-29 12:50 - 2017-07-29 12:50 - 000000000 ____D C:\Program Files\Java
2017-07-28 11:41 - 2017-07-28 11:41 - 001101419 _____ C:\Users\Johan\Downloads\clearly.crx
2017-07-28 11:31 - 2017-07-28 11:31 - 001833112 _____ (Epic Privacy Browser) C:\Users\Johan\Downloads\EpicSetup (1).exe
2017-07-27 12:00 - 2017-07-27 12:00 - 000002391 _____ C:\Users\Johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-08-24 07:47 - 2017-03-18 20:23 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-24 07:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-24 07:43 - 2017-02-10 23:27 - 000000000 ____D C:\Program Files\Dropbox
2017-08-24 07:39 - 2017-02-11 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-08-24 07:37 - 2017-03-18 20:21 - 000000000 ____D C:\WINDOWS\INF
2017-08-22 23:35 - 2017-04-13 21:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-22 23:35 - 2017-04-13 20:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-22 23:35 - 2017-02-11 10:36 - 000221600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-22 23:34 - 2017-03-18 08:02 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-08-22 22:46 - 2017-02-27 23:51 - 000000000 ____D C:\Users\Johan\Downloads\register Ccleaner
2017-08-22 22:39 - 2017-03-30 20:55 - 000000000 ____D C:\ProgramData\SecTaskMan
2017-08-22 22:36 - 2017-05-09 13:51 - 000000000 ____D C:\Users\Johan\AppData\Local\CrashDumps
2017-08-22 22:36 - 2017-04-27 22:00 - 000000000 ____D C:\WINDOWS\Minidump
2017-08-22 22:04 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-08-22 22:03 - 2017-04-13 20:58 - 000000000 ____D C:\Users\Johan
2017-08-22 21:48 - 2017-02-27 22:46 - 000000079 _____ C:\WINDOWS\wininit.ini
2017-08-22 21:12 - 2017-02-09 22:00 - 000000000 ___RD C:\Users\Johan\OneDrive
2017-08-22 18:36 - 2017-02-10 07:58 - 000001194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000001182 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-22 18:36 - 2017-02-10 07:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-22 18:34 - 2017-03-18 08:02 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-08-18 20:57 - 2017-02-10 00:01 - 000449704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-18 20:51 - 2017-07-14 02:15 - 000059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-08-18 20:17 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-17 18:37 - 2017-06-05 16:59 - 000000000 ____D C:\ProgramData\Ashampoo
2017-08-16 18:23 - 2017-02-10 08:38 - 000000000 ____D C:\Program Files\Opera
2017-08-16 18:22 - 2017-07-11 17:09 - 000001042 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-16 18:22 - 2017-02-09 22:45 - 000002306 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-16 15:36 - 2017-02-10 07:59 - 000000000 ____D C:\Users\Johan\AppData\LocalLow\Mozilla
2017-08-16 15:35 - 2017-02-16 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-08-16 15:35 - 2017-02-16 12:42 - 000000000 ____D C:\Program Files\Wondershare
2017-08-16 15:32 - 2017-02-16 12:43 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-08-16 06:40 - 2017-03-18 20:23 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-15 17:54 - 2017-06-05 16:59 - 000000000 ____D C:\Program Files\Ashampoo
2017-08-15 12:02 - 2017-02-27 23:02 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-15 11:45 - 2017-05-07 23:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSBU
2017-08-15 11:01 - 2017-05-07 23:15 - 000000000 ____D C:\ProgramData\Norton
2017-08-14 14:03 - 2017-02-09 21:57 - 000000000 ____D C:\Users\Johan\AppData\Local\Packages
2017-08-14 13:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\Media
2017-08-14 12:02 - 2017-05-17 10:08 - 000000000 ____D C:\Program Files\PDF Architect 5
2017-08-13 14:20 - 2017-02-09 22:06 - 000000000 ____D C:\Users\Johan\AppData\Local\Comms
2017-08-11 09:00 - 2017-02-11 11:58 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2017-08-11 08:57 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-10 23:00 - 2017-02-10 14:39 - 000001097 _____ C:\Users\Johan\Desktop\PhotoFiltre 7.lnk
2017-08-10 22:49 - 2017-07-20 15:38 - 000001190 _____ C:\Users\Johan\Desktop\Paint.lnk
2017-08-10 19:45 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-08-09 19:50 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\rescache
2017-08-09 19:29 - 2017-04-13 21:11 - 002401898 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-09 19:29 - 2017-03-19 11:33 - 001115822 _____ C:\WINDOWS\system32\perfh013.dat
2017-08-09 19:29 - 2017-03-19 11:33 - 000249720 _____ C:\WINDOWS\system32\perfc013.dat
2017-08-09 19:26 - 2016-11-20 12:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-08-09 19:22 - 2017-04-13 20:56 - 000290776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-08-08 20:46 - 2017-03-18 20:23 - 000000000 ____D C:\WI

verhaegen
Support SeniorenNet
Lid geworden op: 03 apr 2003, 20:48
Locatie: kapellen

24 aug 2017, 12:09

de compostmeester

Geplaatst: Do 24 Aug 2017, 8:10 Onderwerp: Tweede gevraagd logje van FRST scan-


Extra scanresultaten van Farbar Recovery Scan Tool (x86) Versie: 20-08-2017
Gestart door Johan (24-08-2017 07:49:32)
Gestart vanaf C:\Users\Johan\Desktop
Microsoft Windows 10 Pro Versie 1703 (X86) (2017-04-13 19:16:20)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2730591041-2436348752-160320332-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2730591041-2436348752-160320332-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2730591041-2436348752-160320332-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-2730591041-2436348752-160320332-501 - Limited - Disabled)
Johan (S-1-5-21-2730591041-2436348752-160320332-1001 - Administrator - Enabled) => C:\Users\Johan

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security Online (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security Online (Enabled - Up to date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security Online (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Nederlands (HKLM\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 26 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
AOMEI Partition Assistant Standard Edition 6.1 (HKLM\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio FREE (HKLM\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Belgium e-ID middleware 4.1.20 (build 1779) (HKLM\...\{4DDF16AE-8D5D-4027-A2D1-8CBB498E1779}) (Version: 4.1.1779 - Belgian Government)
Belgium e-ID viewer 4.2.3 (build 3176) (HKLM\...\{F3DC7F06-92FF-4C98-87F5-72C0B7863176}) (Version: 4.2.3176 - Belgian Government)
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: 5.3.1 - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.5.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM\...\Canon My Image Garden Design Files) (Version: 3.5.2 - Canon Inc.)
Canon Quick Menu (HKLM\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
Canon TS5000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5000_series) (Version: 1.01 - Canon Inc.)
Canon TS5000 series Schermhandleiding (HKLM\...\Canon TS5000 series Schermhandleiding) (Version: 1.1.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Compatibiliteitspakket voor het 2007 Microsoft Office system (HKLM\...\{90120000-0020-0413-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Debugging Tools for Windows (x86) (HKLM\...\{D09605BE-5587-4B0C-86C8-69B5092CB80F}) (Version: 6.12.2.633 - Microsoft Corporation)
Dell System Detect (HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dropbox (HKLM\...\Dropbox) (Version: 33.4.23 - Dropbox, Inc.)
Dropbox Update Helper (HKLM\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
FastStone Photo Resizer 3.7 (HKLM\...\FastStone Photo Resizer) (Version: 3.7 - FastStone Soft.)
File Shredder 2.5 (HKLM\...\File Shredder_is1) (Version: - Pow Tools)
Gadwin PrintScreen (32-Bit) (HKLM\...\{40475700-0CC9-4B2C-A365-293E82D784BC}) (Version: 5.4.2.0 - Gadwin Systems)
Gebruikersregistratie voor Canon TS5000 series (HKLM\...\Gebruikersregistratie voor Canon TS5000 series) (Version: - ‭Canon Inc.)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Drive (HKLM\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HiSuite (HKLM\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Image Resizer for Windows (HKLM\...\{6285B71F-660A-478B-A876-C7E66A678E6A}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView 4.44 (32-bit) (HKLM\...\IrfanView) (Version: 4.44 - Irfan Skiljan)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Kaspersky Software Updater (HKLM\...\{DEEDA858-A9B4-4212-8873-2F2CE2706E68}) (Version: 2.0.0.623 - Kaspersky Lab) Hidden
Kaspersky Software Updater (HKLM\...\InstallWIX_{DEEDA858-A9B4-4212-8873-2F2CE2706E68}) (Version: 2.0.0.623 - Kaspersky Lab)
LastPass (alleen deïnstalleren) (HKLM\...\LastPass) (Version: - LastPass)
Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Dutch) (HKLM\...\{95120000-00AF-0413-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x86 nl) (HKLM\...\Mozilla Firefox 55.0.2 (x86 nl)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
Norton Security Online (HKLM\...\NSBU) (Version: 22.10.0.85 - Symantec Corporation)
Opera Stable 47.0.2631.55 (HKLM\...\Opera 47.0.2631.55) (Version: 47.0.2631.55 - Opera Software)
Panda Devices Agent (HKLM\...\{3F9548B2-0B34-4453-A92E-35056B053F19}) (Version: 1.08.00 - Panda Security) Hidden
Panda Protection (HKLM\...\{5795BE84-629A-47A6-89C7-7554425D2181}) (Version: 8.87.00 - Panda Security) Hidden
PDF Architect 5 (HKLM\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{D4357D67-F66E-4FB0-8040-67E1045A5C54}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{D111BC40-7196-4A2C-8ED7-992D36990591}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{0247CCDF-4FAF-4AB8-A6C7-F2A63A306E0E}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH)
Photo Gadget (HKLM\...\Photo Gadget_is1) (Version: - XemiComputers)
PhotoFiltre 7 (HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\PhotoFiltre 7) (Version: - )
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Privacy Eraser (HKLM\...\{CB5AC03C-B8AD-980F-998E-51969A6DFC9F}_is1) (Version: 4.21.3.2271 - Cybertron Software Co., Ltd.)
Random Password Generator (HKLM\...\Random Password Generator_is1) (Version: 1.0 - IObit)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
STACK (HKLM\...\STACK) (Version: 2.2.4.163 - TransIP)
Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version: - Code Sector)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0413-0000-0000000FF1CE}_HOMESTUDENTR_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version: - Microsoft)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0413-0000-0000000FF1CE}_HOMESTUDENTR_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version: - Microsoft)
Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0413-0000-0000000FF1CE}_HOMESTUDENTR_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version: - Microsoft)
VisiPics V1.31 (HKLM\...\VisiPics_is1) (Version: - Ozone)
Vivaldi (HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\Vivaldi) (Version: 1.10.867.48 - Vivaldi)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Windows 10 Update and Privacy Settings (HKLM\...\{8BE893D4-107C-4867-9B71-A3CF2C917C0E}) (Version: 1.0.13.0 - Microsoft Corporation)
YTD Video Downloader 5.8.3 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.8.3 - GreenTree Applications SRL) <==== AANDACHT

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files\stack\shellext\OCOverlays_x86.dll [2016-09-30] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files\stack\shellext\OCOverlays_x86.dll [2016-09-30] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files\stack\shellext\OCOverlays_x86.dll [2016-09-30] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files\stack\shellext\OCOverlays_x86.dll [2016-09-30] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files\stack\shellext\OCOverlays_x86.dll [2016-09-30] (ownCloud Inc.)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\buShell.dll [2017-07-14] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\buShell.dll [2017-07-14] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\buShell.dll [2017-07-14] (Symantec Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\buShell.dll [2017-07-14] (Symantec Corporation)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-08-04] (Google)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1: [IrfanViewShellExt] -> {C835F12F-DD15-4294-B245-954A877D778A} => C:\Program Files\IrfanView\Shell Extension\IrfanViewShellExt.dll [2017-02-11] (Irfan Skiljan)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-05-08] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers1: [ResizeShellExt] -> {933E93E1-B249-46BA-8F1B-B1D9A12AE7C0} => C:\Program Files\XemiComputers\Photo Gadget\ShellResize.dll [2006-07-25] ()
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NavShExt.dll [2017-07-15] (Symantec Corporation)
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2012-01-20] ()
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {55D63393-DB17-4A2B-9052-15D85B4B1344} => C:\Windows\System32\WSCM32.dll [2015-02-27] ()
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NavShExt.dll [2017-07-15] (Symantec Corporation)
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2012-01-20] ()
ContextMenuHandlers3: [DeleteFiles] -> {736AF091-C361-49B4-A928-87C586130D33} => C:\Program Files\File Shredder\fsshell.dll [2012-11-09] ()
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files\stack\shellext\OCContextMenu_x86.dll [2016-09-30] (ownCloud Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-08-04] (Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2012-01-20] ()
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\buShell.dll [2017-07-14] (Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\NavShExt.dll [2017-07-15] (Symantec Corporation)
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2012-01-20] ()
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {0AC4E0CB-D10C-4A37-BCAE-4AE19BDCEC7C} - System32\Tasks\Opera scheduled Autoupdate 1486708745 => C:\Program Files\Opera\launcher.exe [2017-08-14] (Opera Software)
Task: {23B90DD3-0777-46B7-9D1C-AF30DC9986BA} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_26_0_0_151_pepper.exe [2017-08-10] (Adobe Systems Incorporated)
Task: {5E17DDE4-BD61-4AA8-A2FD-1C1790370B34} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {77D925AC-BC7E-4BE7-8F73-38563E70DDF9} - System32\Tasks\Norton Security with Backup\Norton Security Online Autofix => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\SymErr.exe [2017-07-14] (Symantec Corporation)
Task: {791301AB-C922-48EB-A202-190496C4A6A7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {799202AA-3F24-4FB8-9C76-470EE4743E47} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-02-10] (Dropbox, Inc.)
Task: {93081129-3CC9-45A7-9B86-1B7B30CD7A5F} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\SymErr.exe [2017-07-14] (Symantec Corporation)
Task: {9AABBA80-1B6B-4F8E-AD46-9E2FB29B658F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-02-10] (Dropbox, Inc.)
Task: {B8DFE1D5-7710-42C3-92E0-CCE2535C226E} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security Online\Upgrade.exe [2017-07-15] (Symantec Corporation)
Task: {BA45F290-DC76-41FC-BF90-A8581D371838} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\WSCStub.exe [2017-07-15] (Symantec Corporation)
Task: {BB9CC1B4-8C55-406C-80B7-4E319D8E2EE5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-02-09] (Google Inc.)
Task: {C5C012AE-EC30-45E2-A1D8-5096205C410F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-10] (Adobe Systems Incorporated)
Task: {D92D2944-7C81-4AA9-BBF1-F7CBA5D352B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-02-09] (Google Inc.)
Task: {F5FBED26-1830-430D-832A-8D0E5F5C8B0B} - System32\Tasks\Norton Security with Backup\Norton Security Online Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.10.0.85\SymErr.exe [2017-07-14] (Symantec Corporation)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)


==================== Geladen Modules (gefilterd) ==============

2016-11-25 08:16 - 2016-11-25 08:16 - 000155848 _____ () C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
2017-08-14 13:44 - 2017-03-31 12:11 - 000387144 _____ () C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
2017-03-18 20:19 - 2017-03-18 20:19 - 000116824 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-09-30 15:18 - 2016-09-30 15:18 - 000047104 _____ () C:\Program Files\stack\shellext\OCUtil_x86.dll
2017-02-11 09:51 - 2012-11-09 06:02 - 001752576 _____ () C:\Program Files\File Shredder\fsshell.dll
2017-02-16 12:47 - 2015-02-27 15:38 - 000214528 _____ () C:\Windows\System32\WSCM32.dll
2017-02-11 11:48 - 2012-01-20 15:55 - 000427520 _____ () C:\Program Files\TeraCopy\TeraCopyExt.dll
2017-02-11 11:55 - 2006-07-25 11:11 - 000045056 _____ () C:\Program Files\XemiComputers\Photo Gadget\ShellResize.dll
2017-03-18 20:19 - 2017-03-19 11:35 - 001456128 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-26 23:42 - 2016-11-26 23:42 - 000332104 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\dblite.dll
2016-12-21 20:21 - 2016-12-21 20:21 - 045077376 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\libcef.dll
2016-11-26 23:37 - 2016-11-26 23:37 - 000418512 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\ipm_service.dll
2016-12-21 20:21 - 2016-12-21 20:21 - 001650560 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\libglesv2.dll
2016-12-21 20:21 - 2016-12-21 20:21 - 000082304 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\libegl.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Er zijn 7936 Meer websites.

IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\123simsen.com -> www.123simsen.com

Er zijn 7936 Meer websites.


==================== Hosts Inhoud: ==========================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2016-07-16 10:30 - 2017-08-16 18:54 - 000454570 ____R C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

Er zijn 15600 meer regels.


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-2730591041-2436348752-160320332-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Johan\Downloads\mooie-molen-1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

HKLM\...\StartupApproved\StartupFolder: => "Install LastPass IE RunOnce.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Install LastPass FF RunOnce.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Dropbox"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run: => "DelaypluginInstall"
HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run: => "SDTray"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\StartupApproved\Run: => "DellSystemDetect"
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\StartupApproved\Run: => "Gadwin PrintScreen (32-bit)"
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\StartupApproved\Run: => "stack"
HKU\S-1-5-21-2730591041-2436348752-160320332-1001\...\StartupApproved\Run: => "Privacy Eraser"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{FD99F2A8-36FF-45C5-8A86-51651C80853E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3B20C4C0-D663-4F58-B3F6-360D64FCC763}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D6FBE8F9-8A71-434C-8223-491BBB758088}] => (Allow) C:\Program Files\Opera\46.0.2597.61\opera.exe
FirewallRules: [{74754AD6-CA44-4004-B915-0791746ECC23}] => (Allow) D:\win\MSetup.exe
FirewallRules: [{FF183CA0-DDC1-4B96-B440-D94DFD0231A7}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{82F3ECF5-A4E5-4C31-AEE3-131B70BC1DF5}] => (Allow) C:\Program Files\Opera\47.0.2631.55\opera.exe
FirewallRules: [{E3C70C43-7562-4838-8C19-9B7BB6C2CE00}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe

==================== Herstelpunten =========================

25-07-2017 11:34:31 Gepland controlepunt
01-08-2017 20:11:15 Gepland controlepunt
08-08-2017 19:46:42 Windows Update
08-08-2017 19:47:43 Windows Update
16-08-2017 15:37:09 Revo Uninstaller's restore point - UnderCover10 2.03
22-08-2017 21:32:47 Verwijderd Brother Software Suite
22-08-2017 21:41:51 Removed paint.net
22-08-2017 21:44:05 Revo Uninstaller's restore point - Privacy Eraser
22-08-2017 21:45:31 Revo Uninstaller's restore point - Spybot - Search & Destroy

==================== Defecte Apparaatbeheer Apparaten =============

Name: Microsoft Usbccid-smartcardlezer (WUDF)
Description: Microsoft Usbccid-smartcardlezer (WUDF)
Class Guid: {50dd5230-ba8a-11d1-bf5d-0000f805f530}
Manufacturer: Microsoft
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (08/24/2017 07:37:49 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/24/2017 07:37:43 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/24/2017 07:37:42 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/24/2017 07:37:41 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/22/2017 10:41:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine QueryFullProcessImageNameW. hr = 0x80070006, De ingang is ongeldig.
.


Bewerking:
Asynchrone bewerking uitvoeren

Context:
Huidige status: DoSnapshotSet

Error: (08/22/2017 10:41:29 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Toegang geweigerd.
.

Error: (08/22/2017 10:41:18 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd.
.
Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces.


Bewerking:
Schrijvergegevens verzamelen

Context:
Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220}
Naam van schrijver: System Writer
Instantie-id van schrijver: {6cbbb502-f0eb-42f2-82c0-fb44973d36b5}

Error: (08/22/2017 10:31:13 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/22/2017 10:16:14 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Panda Security\Panda Devices Agent\Util_NDKService.dll' niet maken.
Kan afhankelijke assembly NdkApi,type="win32",version="1.0.0.1" niet vinden.
Gebruik sxstrace.exe voor een gedetailleerde diagnose.

Error: (08/22/2017 09:50:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma _iu14D2N.tmp, versie 51.1052.0.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 245c

Starttijd: 01d31b7f3d4097b9

Eindtijd: 4294967295

Toepassingspad: C:\Users\Johan\AppData\Local\Temp\_iu14D2N.tmp

Rapport-id: 8e3e7154-2312-4a18-9ead-92cc028a782b

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:


Systeemfouten:
=============
Error: (08/24/2017 07:41:29 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: De Delivery Optimization-service is bij het starten vastgelopen.

Error: (08/24/2017 07:38:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/24/2017 07:38:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 11:35:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De CldFlt-service kan vanwege de volgende fout niet worden gestart:
De aanvraag wordt niet ondersteund.

Error: (08/22/2017 11:02:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 11:02:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 11:02:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 11:02:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 10:42:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
en APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (08/22/2017 10:42:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
en APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.


CodeIntegrity:
===================================
Date: 2017-05-02 20:13:13.903
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.900
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.896
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.892
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.889
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.885
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.881
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.870
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:13:13.866
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2017-05-02 20:11:25.594
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\SMCLpav\Pav2WSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Geheugen info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T9550 @ 2.66GHz
Percentage geheugen in gebruik: 58%
Totaal fysiek RAM-geheugen: 1999.91 MB
Beschikbaar fysiek RAM-geheugen: 825.87 MB
Totaal Virtueel geheugen: 4303.91 MB
Beschikbaar Virtual geheugen: 2853.31 MB

==================== Schijven ================================

Drive c: (Win10pro) (Fixed) (Total:464.79 GB) (Free:404.31 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 000B91D7)
Partition 1: (Active) - (Size=543 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== Eind van Addition.txt ============================

Hopelijk kunnen jullie ermee verder,
Alvast dank.

verhaegen
Support SeniorenNet
Lid geworden op: 03 apr 2003, 20:48
Locatie: kapellen

24 aug 2017, 12:17

beste compostmeester
je mag gewoon hier in dit topic alles zetten van antwoord
gewoon onderaan klikken op : nieuw antwoord

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

24 aug 2017, 12:21

Hallo,

Je magt de rest van je antwoorden in dit onderwerp plaatsen :)
Ik had het verkeerd voor je omschreven hoe je het moest plaatsen, maar het is weer opgelost.

Er staan nog zeker een aantal Panda bestanden op je pc.

Lees eerst de handleiding en voer daarna de fix uit Handleiding Fix

Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

Klik Windows knop plus R tegelijk in. Afbeelding
"Uitvoeren" opent vul daar Notepad in en klik daarna op "OK", Kladblok opent.
Kopieer onderstaande dik gedrukte code en plak dat in "Kladblok"


start
CreateRestorePoint:
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL => Geen bestand
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [100272 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212016 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [119600 2016-07-05] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [135856 2016-07-05] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [68376 2016-07-06] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [116144 2016-07-05] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [77232 2016-07-05] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [130736 2016-07-05] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [316336 2016-07-05] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [233264 2016-07-05] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [117808 2016-07-05] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [261808 2016-07-05] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [111536 2016-07-05] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [152336 2017-02-12] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [112400 2017-02-12] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [175888 2017-02-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [121616 2017-02-12] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [132880 2017-02-12] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [107792 2017-02-12] (Panda Security, S.L.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [60200 2016-08-11] (Panda Security, S.L.)
C:\WINDOWS\system32\DRIVERS\NNSALPC.sys
C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys
C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys
C:\WINDOWS\system32\DRIVERS\NNSIDS.sys
C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys
C:\WINDOWS\system32\DRIVERS\NNSPICC.sys
C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys
C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys
C:\WINDOWS\system32\DRIVERS\NNSPROT.sys
C:\WINDOWS\system32\DRIVERS\NNSPRV.sys
C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys
C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys
C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys
C:\WINDOWS\system32\DRIVERS\PSINAflt.sys
C:\WINDOWS\System32\DRIVERS\PSINFile.sys
C:\WINDOWS\system32\DRIVERS\PSINKNC.sys
C:\WINDOWS\System32\DRIVERS\PSINProc.sys
C:\WINDOWS\system32\DRIVERS\PSINProt.sys
C:\WINDOWS\system32\DRIVERS\PSINReg.sys
C:\WINDOWS\System32\DRIVERS\PSKMAD.sys
C:\Program Files\Panda Security
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
Hosts:
EmptyTemp:
Reboot:
end

Ga naar Bestand - Opslaan als.
Kies als locatie bureaublad.
Bij "Bestandsnaam" zet je:fixlist.txt.
Bij "Opslaan als type" selecteer je: Alle bestanden.

Als het goed is staat er nu een text bestand op je bureaublad?

Start de Farbar Recovery Scan Tool.
Als het programma is geopend klik Yes (Ja) bij de disclaimer. (indien nodig)
Druk op de Fix knop.
Er zal u een logbestand aangemaakt worden (fixlog.txt) op dezelfde plaats vanwaar de 'tool' is gestart.
Kopieer en plak de inhoud van de logbestanden in je het volgende bericht.(als de inhoud te groot is voor één bericht plaats het in meerdere berichten)
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

de compostmeester
Lid geworden op: 12 aug 2006, 23:22

25 aug 2017, 09:59

abbs,
Ik heb alles gedaan zoals jij het hier beschreven had, echter loop ik tegen een probleem op. De tool staat op het bureaublad alsook de beide logies die ik al gemaakt had, het logbestand dat jij me gegeven heb staat ook bij op het bureaublad met de naam fixlist.txt,echter als ik de tool start als administrator en ik klik op fixen, krijg ik de volgende melding: "geen fixlist.txt gevonden, de fixlist.txt moet in dezelfde map staan waar ook de FRST tool staat" Al verschillende malen geprobeerd, ook het geprobeerd met een (tijdelijke) uitgeschakelde antivirus maar steeds krijg ik dezelfde melding, hoe kan ik dit probleem oplossen?
Gr de compostmeester

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

25 aug 2017, 11:01

Hallo,

Maak eens een printscreen van je bureaublad (waar ze beiden op staan)
Hoe: https://www.seniorennet.be/forum/viewtopic.php?t=188237
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

de compostmeester
Lid geworden op: 12 aug 2006, 23:22

26 aug 2017, 10:38

Abbs
Hierbij vind je het gevraagde printscreen
Afbeelding

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

26 aug 2017, 10:55

Hallo,

Sorry maar dat plaatje is wel heel klein zou je een grotere willen plaatsen.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

pcekspeer
Lid geworden op: 06 aug 2010, 12:44
Locatie: 3530 houthalen limburg

26 aug 2017, 11:28

@abbs

Zeg, wat is me dat nu? Kan je er niet op klikken? Moe?

Afbeelding
PC Win7 Prem SP1/64bit/RAM4GB/HD1000GB/IE11//FFox
63.0.3 64bit /Chrome64bit//MSE+Win firewall/WLMail/Gmail/thunderbird/OpenOffice4.1.5/BSA+Micr.SafetyScan+MSRT.-Web Of Trust (WOT)-Spywarebl 5.5--Superantispyw/MBAM/AdwCleaner/JRT/Win10/Ixquick/

de compostmeester
Lid geworden op: 12 aug 2006, 23:22

26 aug 2017, 11:33

Abbs,
Tweede poging, ik hoop dat het beter is.

Afbeelding

abbs
Lid geworden op: 16 dec 2016, 13:49
Locatie: Leidschendam
Contacteer:

26 aug 2017, 11:51

Hallo,

@pcekspeer: Bedankt.

@de compostmeester:
Ik zie het al je heb de bestands naam letterlijk genomen, de punt(.) achter txt is een afsluitpunt van de regel: Bij "Bestandsnaam" zet je:fixlist.txt.

Klik met je rechtermuis op fixlist.txt. wat op je bureaublad staat > kies voor "Naam wijzigen" en maak van fixlist.txt. > fixlist.txt dus zonder punt (.).
Voer het dan nogmaals uit.
Groeten abbs
Afbeelding
Member of UNITE (Unified Network of Instructors and Trained Eliminators)

de compostmeester
Lid geworden op: 12 aug 2006, 23:22

26 aug 2017, 12:11

Abbs,
Bedankt, heb de naam veranderd en het lukte, hierna het gevraagde logje:

Fix resultaat van Farbar Recovery Scan Tool (x86) Versie: 20-08-2017
Gestart door Johan (26-08-2017 11:58:09) Run:1
Gestart vanaf C:\Users\Johan\Desktop
Geladen Profielen: Johan (Beschikbare Profielen: defaultuser0 & Johan)
Boot Modus: Normal

==============================================

fixlist Inhoud:
*****************
start
CreateRestorePoint:
(Panda Security, S.L.) C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL => Geen bestand
R2 PandaAgent; C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [100272 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212016 2016-07-05] (Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [119600 2016-07-05] (Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [135856 2016-07-05] (Panda Security, S.L.)
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [68376 2016-07-06] (Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [116144 2016-07-05] (Panda Security, S.L.)
R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [77232 2016-07-05] (Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [130736 2016-07-05] (Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [316336 2016-07-05] (Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [233264 2016-07-05] (Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [117808 2016-07-05] (Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [261808 2016-07-05] (Panda Security, S.L.)
R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [111536 2016-07-05] (Panda Security, S.L.)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [152336 2017-02-12] (Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [112400 2017-02-12] (Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [175888 2017-02-20] (Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [121616 2017-02-12] (Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [132880 2017-02-12] (Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [107792 2017-02-12] (Panda Security, S.L.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [60200 2016-08-11] (Panda Security, S.L.)
C:\WINDOWS\system32\DRIVERS\NNSALPC.sys
C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys
C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys
C:\WINDOWS\system32\DRIVERS\NNSIDS.sys
C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys
C:\WINDOWS\system32\DRIVERS\NNSPICC.sys
C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys
C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys
C:\WINDOWS\system32\DRIVERS\NNSPROT.sys
C:\WINDOWS\system32\DRIVERS\NNSPRV.sys
C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys
C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys
C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys
C:\WINDOWS\system32\DRIVERS\PSINAflt.sys
C:\WINDOWS\System32\DRIVERS\PSINFile.sys
C:\WINDOWS\system32\DRIVERS\PSINKNC.sys
C:\WINDOWS\System32\DRIVERS\PSINProc.sys
C:\WINDOWS\system32\DRIVERS\PSINProt.sys
C:\WINDOWS\system32\DRIVERS\PSINReg.sys
C:\WINDOWS\System32\DRIVERS\PSKMAD.sys
C:\Program Files\Panda Security
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Geen bestand
Hosts:
EmptyTemp:
Reboot:
end
*****************

Herstelpunt is succesvol gemaakt.
C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
[2700] C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe => Proces succesvol afgesloten.
"C:\PROGRA~1\Sophos\SOPHOS~1\\SOPHOS~1.DLL" => waarde gegevens is succesvol verwijderd.
PandaAgent => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PandaAgent => sleutel is succesvol verwijderd
PandaAgent => dienst is succesvol verwijderd
NNSALPC => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSALPC => sleutel is succesvol verwijderd
NNSALPC => dienst is succesvol verwijderd
NNSHTTP => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSHTTP => sleutel is succesvol verwijderd
NNSHTTP => dienst is succesvol verwijderd
NNSHTTPS => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSHTTPS => sleutel is succesvol verwijderd
NNSHTTPS => dienst is succesvol verwijderd
NNSIDS => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSIDS => sleutel is succesvol verwijderd
NNSIDS => dienst is succesvol verwijderd
NNSNAHSL => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSNAHSL => sleutel is succesvol verwijderd
NNSNAHSL => dienst is succesvol verwijderd
NNSPICC => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSPICC => sleutel is succesvol verwijderd
NNSPICC => dienst is succesvol verwijderd
NNSPIHSW => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSPIHSW => sleutel is succesvol verwijderd
NNSPIHSW => dienst is succesvol verwijderd
NNSPOP3 => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSPOP3 => sleutel is succesvol verwijderd
NNSPOP3 => dienst is succesvol verwijderd
NNSPROT => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSPROT => sleutel is succesvol verwijderd
NNSPROT => dienst is succesvol verwijderd
NNSPRV => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSPRV => sleutel is succesvol verwijderd
NNSPRV => dienst is succesvol verwijderd
NNSSMTP => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSSMTP => sleutel is succesvol verwijderd
NNSSMTP => dienst is succesvol verwijderd
NNSSTRM => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSSTRM => sleutel is succesvol verwijderd
NNSSTRM => dienst is succesvol verwijderd
NNSTLSC => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\NNSTLSC => sleutel is succesvol verwijderd
NNSTLSC => dienst is succesvol verwijderd
PSINAflt => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PSINAflt => sleutel is succesvol verwijderd
PSINAflt => dienst is succesvol verwijderd
PSINFile => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PSINFile => sleutel is succesvol verwijderd
PSINFile => dienst is succesvol verwijderd
PSINKNC => Kon service niet stoppen.
HKLM\System\CurrentControlSet\Services\PSINKNC => sleutel is succesvol verwijderd
PSINKNC => dienst is succesvol verwijderd
PSINProc => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PSINProc => sleutel is succesvol verwijderd
PSINProc => dienst is succesvol verwijderd
PSINProt => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PSINProt => sleutel is succesvol verwijderd
PSINProt => dienst is succesvol verwijderd
PSINReg => Service succesvol gestopt.
HKLM\System\CurrentControlSet\Services\PSINReg => sleutel is succesvol verwijderd
PSINReg => dienst is succesvol verwijderd
HKLM\System\CurrentControlSet\Services\PSKMAD => sleutel is succesvol verwijderd
PSKMAD => dienst is succesvol verwijderd
C:\WINDOWS\system32\DRIVERS\NNSALPC.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSIDS.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSPICC.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSPROT.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSPRV.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\PSINAflt.sys => is succesvol verplaatst
C:\WINDOWS\System32\DRIVERS\PSINFile.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\PSINKNC.sys => is succesvol verplaatst
C:\WINDOWS\System32\DRIVERS\PSINProc.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\PSINProt.sys => is succesvol verplaatst
C:\WINDOWS\system32\DRIVERS\PSINReg.sys => is succesvol verplaatst
C:\WINDOWS\System32\DRIVERS\PSKMAD.sys => is succesvol verplaatst
C:\Program Files\Panda Security => is succesvol verplaatst
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\UAContextMenu => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => sleutel niet gevonden.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\UAContextMenu => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => sleutel niet gevonden.
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\UAContextMenu => sleutel is succesvol verwijderd
HKLM\Software\Classes\CLSID\{A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => sleutel niet gevonden.
C:\Windows\System32\Drivers\etc\hosts => is succesvol verplaatst
Hosts met succes hersteld.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 135733760 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 2125 B
Edge => 2695786 B
Chrome => 920576 B
Firefox => 40159188 B
Opera => 1119232 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 52873133 B
NetworkService => 0 B
defaultuser0 => 7168 B
Johan => 18641265 B

RecycleBin => 100896283 B
EmptyTemp: => 344.2 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 12:00:29 ====