• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

Laptop traag en virusscanner werkt niet

Status
Niet open voor verdere reacties.

siem86

Vaak hier
Lid geworden
11 okt 2009
Berichten
927
Waarderingsscore
0
Mijn laptop is erg langzaam met opstarten en als ik b.v. naar mijn documenten wil gaan en ik krijg mijn virusscanner niet meer aan de praat. De laptop geeft aan, dat ik die moet inschakelen, maar als ik dat doe, dan gebeurd er niks.

Ik hoop, dat iemand mij kan helpen.
 
Download
52063a40e2e64-Farbar_Recovery_Scan_Tool_canned.png
Farbar Recovery Scan Tool 32 of 64 bit van één van de onderstaande links
Farbar Recovery Scan Tool 32 bit (x86)
Farbar Recovery Scan Tool 64 bit (x64)
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen!
Opmerkingen
: Alle openstaande programma's en webpagina's dienen afgesloten te zijn.

Antivirusprogramma en actieve malwarescanners dienen al voor je FRST.exe start gedeaktiveert zijn!
Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

FRST opstarten:
  • Windows 2000 en Windows XP: dubbelklik op FRST.exe.
  • Windows Vista, Windows 7, Windows 8/8.1 en Windows 10: via rechtsklik op FRST.exe of FRST64.exe en kies voor "Als Administrator uitvoeren".

FRST start op:
  • Wanneer het programma is geopend klik dan op de knop Yes bij de disclaimer.
  • Druk vervolgens op de Scan knop.
  • Aansluitend zullen twee logbestanden - FRST.txt en Addition-txt aangemaakt worden en op het bureaublad opgeslagen worden.
.

Voeg beide logs toe aan jouw volgende antwoord.

Hoe de logs bij te voegen, kijk dan hier:
 
Mm, klinkt als of er teveel programma's mee op starten
 
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 22-06-2019
Gestart door Seema (Beheerder) op SEEMA-PC (LENOVO ACLU12) (22-06-2019 20:37:16)
Gestart vanaf C:\Users\Seema\Desktop
Geladen Profielen: Seema (Beschikbare Profielen: Seema)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\74.4.115\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\74.4.115\QtWebEngineProcess.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Extra Solutions Ltd -> Trust.Zone VPN Project) C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software Development Products -> ) C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(LENOVO (UNITED STATES) INC. -> Lenovo) C:\Users\Seema\AppData\Local\Apps\2.0\LPDNM9XC.540\0KZ54HD1.MQO\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
(O and O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(O and O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(Spotify AB -> Spotify Ltd) C:\Users\Seema\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [686936 2013-07-13] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3942216 2011-01-25] (O and O Software GmbH -> O&O Software GmbH)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5576512 2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-04-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [329824 2019-03-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Run: [Spotify Web Helper] => C:\Users\Seema\AppData\Roaming\Spotify\SpotifyWebHelper.exe [781712 2018-06-15] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-18] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Run: [] => [X]
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-11-30] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.36\Installer\chrmstp.exe [2019-06-22] (Google LLC -> Google LLC)
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {06FAB76A-83B9-4770-BCE2-2F86FA3E6136} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {0DFD1292-F6B4-47DB-A087-683234EF40AA} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [20776 2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {17DF5357-B1D0-44C9-9034-8FDED3A23A17} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-18] (Piriform Ltd -> Piriform Ltd)
Task: {1D99AC87-3957-4EA5-B301-D6A9D53D7BAC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [563000 2015-08-27] (Apple Inc. -> Apple Inc.)
Task: {1E2C2471-1E00-4DA2-8D69-71E587837451} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_pepper.exe [1452600 2019-06-15] (Adobe Inc. -> Adobe)
Task: {23AC2F9E-E849-4FD9-80B0-7C1D33DC47C8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {269CD827-08EF-4B3E-A808-75791478FD89} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-27] (Google Inc -> Google Inc.)
Task: {29D0DD3E-61D7-4BC0-AEB4-603CBFC35B2A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3623C185-88CE-4F6C-BFFB-A5079AB6693C} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [111504 2019-06-04] (Solute GmbH -> Avira)
Task: {370C3CBE-B5D4-4F38-8369-B57393DDED29} - System32\Tasks\{23D0ADA6-1987-4322-86CC-3FD9C7504217} => C:\Windows\system32\pcalua.exe -a C:\Users\Seema\Desktop\IN1CAM16WW5.exe -d C:\Users\Seema\Desktop
Task: {3EFA8AE6-E5B7-497D-B021-E6E3AF095B14} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {490EA408-2B99-40CC-BCE4-E629BD139B01} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [61200 2015-12-01] (Apple Inc. -> Apple Inc.)
Task: {560F1F08-AF31-48F1-928E-A8DBAD23CF7F} - System32\Tasks\{BBBF4AEB-D396-45D7-97B5-DD3DD094B309} => C:\Windows\system32\pcalua.exe -a C:\Users\Seema\Desktop\FacebookGameroom.exe -d C:\Users\Seema\Desktop
Task: {590DE91F-AB85-42DB-B737-8B5BB4D7509A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-15] (Adobe Inc. -> Adobe)
Task: {6298D655-E108-4249-90AF-453C7D999DB0} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [111504 2019-06-04] (Solute GmbH -> Avira)
Task: {6FB0D294-64F1-4B03-B16A-716A73D5F685} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {6FB0D294-64F1-4B03-B16A-716A73D5F685} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {728011ED-A314-499C-942F-B367709DB70B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_Plugin.exe [1457208 2019-06-15] (Adobe Inc. -> Adobe)
Task: {75D4E04C-9EBF-4120-B42E-41B3872F1D70} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-27] (Google Inc -> Google Inc.)
Task: {780DDAA7-D0B9-407F-BADA-ADBD98C68D87} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [111504 2019-06-04] (Solute GmbH -> Avira)
Task: {7AF8BBFE-51DB-4A6F-B36E-34F545F583D0} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {82CA8405-FD48-40FB-A026-57B643097D9C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {85E6CDF8-38E4-4AD9-9A47-CC791A3206D7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {86B4FB78-A787-4BA0-AC49-A8F20B0D8D33} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {86B4FB78-A787-4BA0-AC49-A8F20B0D8D33} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {8D925267-CE7E-4EB0-AD2F-78BBA83FB617} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4071680 2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {94C0D99B-7B75-42AE-A188-5061C82693B4} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2879072 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {ABE9597F-DEA6-4BF2-AD3B-02CE74A6CF9D} - System32\Tasks\Opera scheduled Autoupdate 1483116204 => C:\Program Files (x86)\Opera\launcher.exe [1301592 2019-06-14] (Opera Software AS -> Opera Software)
Task: {AC52D190-476B-469C-8559-03F8D3077333} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {C1912559-A2BE-463B-8E0A-48521373CA29} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {C50C9640-8D9E-40C7-9AC5-0B191D8E33F1} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {F93E0A74-9648-4187-80B5-81E65B38D7CA} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1106430384-2681236975-3176511683-1000 => "C:\Windows\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Seema\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)

Hosts: Er is meer dan één item in Hosts. Zie Hosts deel van Addition.txt
Tcpip\Parameters: [DhcpNameServer] 84.116.46.22 84.116.46.23
Tcpip\..\Interfaces\{5B071621-650B-44E8-8274-EE14FF558FFF}: [DhcpNameServer] 84.116.46.22 84.116.46.23
Tcpip\..\Interfaces\{AA8D74D0-27C6-4BB6-B5F8-76A823FF7166}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{D0D4CBF5-2525-4787-B864-A2C6268CC708}: [DhcpNameServer] 84.116.46.22 84.116.46.23

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Seema\AppData\Roaming\TomTom\HOME\Profiles\0jfswyys.default [2019-06-15]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2016-11-18] [Verouderd] [niet getekend]
FF ProfilePath: C:\Users\Seema\AppData\Roaming\Mozilla\Firefox\Profiles\jdppkAwI.default [2019-06-22]
FF Homepage: Mozilla\Firefox\Profiles\jdppkAwI.default -> hxxps://www.google.nl/
FF Extension: (Avira Browser Safety) - C:\Users\Seema\AppData\Roaming\Mozilla\Firefox\Profiles\jdppkAwI.default\Extensions\abs@avira.com [2019-05-20]
FF Extension: (Avira Browser Safety) - C:\Users\Seema\AppData\Roaming\Mozilla\Firefox\Profiles\jdppkAwI.default\Extensions\abs@avira.com.xpi [2019-04-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_207.dll [2019-06-15] (Adobe Inc. -> )
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_207.dll [2019-06-15] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.) [Bestand niet getekend]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-02-04] (CANON INC.) [Bestand niet getekend]
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1106430384-2681236975-3176511683-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-07-03] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.nl/
CHR StartupUrls: Default -> "hxxps://www.google.nl/","hxxp://msn.nl/"
CHR NewTab: Default -> Not-active:"chrome-extension://bbhleiekcbdhhmhpodmcnmipiodipifd/newtab/newtab.html"
CHR DefaultSearchKeyword: Default -> google.nl_
CHR Profile: C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default [2019-05-20]
CHR Extension: (Presentaties) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-25]
CHR Extension: (Documenten) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-25]
CHR Extension: (Google Drive) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-18]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-03-04]
CHR Extension: (Google Search) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Spreadsheets) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-25]
CHR Extension: (Avira Browser Safety) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-03-04]
CHR Extension: (Offline Documenten) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-02]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje [2019-03-05]
CHR Extension: (BMW) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopcphnpdegpaapamfbcoboliabladna [2016-01-14]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-11]
CHR Extension: (Gmail) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-18]
CHR Extension: (Chrome Media Router) - C:\Users\Seema\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-05]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR StartupUrls: "hxxp://msn.nl/"

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1210984 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [486960 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [486960 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1772096 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc. -> Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [466280 2019-04-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2980056 2019-04-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [378528 2019-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [104752 2019-05-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] (Intel(R) Software Development Products -> )
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2015-08-10] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344184 2016-05-12] (Intel Corporation - pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NitroReaderDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [343032 2012-02-08] (Nitro PDF Software -> Nitro PDF Software)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3051848 2011-01-25] (O and O Software GmbH -> O&O Software GmbH)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] (Intel(R) Software Development Products -> )
R2 TZVPNCLIENT; C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe [4581112 2016-10-23] (Extra Solutions Ltd -> Trust.Zone VPN Project)
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] (Intel(R) Software Development Products -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [214424 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [176808 2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-02-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-02-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 cykbfltrService; C:\Windows\System32\DRIVERS\cykbfltr.sys [16896 2012-06-15] (Cypress Semiconductor -> Cypress Semiconductor, Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-12-02] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2015-12-02] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31144 2015-08-28] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-06-22] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [179456 2015-08-31] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\neo_vpn.sys [22784 2016-10-23] (Extra Solutions Ltd -> Trust.Zone VPN Project)
R3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [598272 2015-05-28] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [402136 2015-05-27] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [4481752 2015-07-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] (Intel(R) Code Signing External -> )
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2015-06-17] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssps2; C:\Windows\System32\DRIVERS\ssps2.sys [23608 2015-07-08] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-11-04] (CyberLink Corp. -> CyberLink Corp.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 rtsuvc; system32\DRIVERS\rtsuvc.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een maand (aangemaakt) ========

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2019-06-22 20:37 - 2019-06-22 20:40 - 000037396 _____ C:\Users\Seema\Desktop\FRST.txt
2019-06-22 20:36 - 2019-06-22 20:36 - 002418688 _____ (Farbar) C:\Users\Seema\Desktop\FRST64.exe
2019-06-22 12:12 - 2019-06-22 12:13 - 000000000 ____D C:\Users\Seema\Downloads\Complete Nederlandse Media Markt TOP 40 Week 25 van 2019_
2019-06-22 11:35 - 2019-06-22 11:35 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-06-22 11:29 - 2019-06-22 11:35 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-06-22 11:29 - 2019-06-22 11:29 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-06-22 11:29 - 2019-06-22 11:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-06-22 10:05 - 2019-06-22 10:05 - 007025360 _____ (Malwarebytes) C:\Users\Seema\Desktop\adwcleaner_7.3.exe
2019-06-22 09:57 - 2019-06-22 09:57 - 000000000 ____D C:\Users\Seema\Documents\Jaaropgave 2018
2019-06-22 09:16 - 2019-06-22 09:16 - 000626405 _____ C:\Users\Seema\Desktop\2019-06-22 09-02.pdf
2019-06-22 09:16 - 2019-06-22 09:16 - 000610585 _____ C:\Users\Seema\Desktop\2019-06-22 09-02 1.pdf
2019-06-22 09:11 - 2019-06-22 12:16 - 000000000 ____D C:\Users\Seema\Documents\Loonstroken MSX 2019
2019-06-15 11:03 - 2019-06-15 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-06-04 14:11 - 2019-06-04 14:11 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-06-04 14:11 - 2019-06-04 14:11 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-06-04 14:11 - 2019-06-04 14:11 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-06-04 14:11 - 2019-06-04 14:11 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

==================== Een maand (gewijzigd) ========

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2019-06-22 20:37 - 2016-11-27 10:43 - 000000000 ____D C:\FRST
2019-06-22 20:34 - 2015-10-23 09:37 - 000000000 ____D C:\Users\Seema\AppData\Roaming\uTorrent
2019-06-22 19:44 - 2015-10-23 10:30 - 000001012 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-06-22 19:17 - 2017-09-25 11:14 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2019-06-22 16:44 - 2015-10-23 10:30 - 000001008 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-06-22 13:20 - 2015-10-20 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-06-22 13:17 - 2017-06-18 20:56 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2019-06-22 13:17 - 2015-10-20 11:09 - 000214424 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2019-06-22 13:17 - 2015-10-20 11:09 - 000176808 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2019-06-22 12:05 - 2015-12-14 11:51 - 000003420 _____ C:\Windows\System32\Tasks\Apple Diagnostics
2019-06-22 11:42 - 2009-07-14 06:45 - 000026768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-06-22 11:42 - 2009-07-14 06:45 - 000026768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-06-22 10:48 - 2015-10-18 00:09 - 000000000 __SHD C:\Users\Seema\IntelGraphicsProfiles
2019-06-22 10:33 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-06-22 10:29 - 2019-05-21 13:33 - 000000000 ____D C:\Windows\System32\Tasks\Avira
2019-06-22 10:01 - 2019-01-31 13:23 - 000002227 _____ C:\Users\Seema\Desktop\JRT.txt
2019-06-22 09:34 - 2016-11-27 10:22 - 000002204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-22 09:34 - 2016-11-27 10:22 - 000002163 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-06-22 09:21 - 2017-12-22 14:15 - 000003846 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1483116204
2019-06-22 09:21 - 2016-02-25 20:54 - 000000000 ____D C:\Program Files (x86)\Opera
2019-06-22 09:17 - 2015-10-23 10:12 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-06-15 12:16 - 2017-12-12 12:46 - 000000000 ____D C:\Users\Seema\AppData\LocalLow\Mozilla
2019-06-15 11:54 - 2016-11-18 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2019-06-15 11:50 - 2019-04-23 17:31 - 000000000 ____D C:\Users\Seema\AppData\Local\BitTorrentHelper
2019-06-15 11:50 - 2017-12-12 12:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-06-15 11:25 - 2016-02-26 16:25 - 000004560 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-06-15 11:25 - 2015-10-18 00:15 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-06-15 11:25 - 2015-10-18 00:15 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-06-15 11:25 - 2015-10-18 00:15 - 000004422 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-06-15 11:25 - 2015-10-18 00:15 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-06-15 11:25 - 2015-10-18 00:15 - 000000000 ____D C:\Windows\system32\Macromed
2019-06-15 11:14 - 2015-10-20 10:24 - 000000000 ____D C:\Program Files (x86)\Avira
2019-06-15 11:05 - 2015-10-23 10:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-06-15 11:03 - 2018-03-15 15:25 - 000004572 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-06-15 11:00 - 2015-10-23 10:12 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Bestanden in de root van sommige mappen ================

2018-11-09 13:28 - 2018-11-09 14:06 - 000081599 _____ () C:\Users\Seema\AppData\Roaming\downloads.json
2016-12-24 13:47 - 2016-12-24 13:56 - 000007859 _____ () C:\Users\Seema\AppData\Roaming\pcouffin.cat
2016-12-24 13:47 - 2016-12-24 13:56 - 000001167 _____ () C:\Users\Seema\AppData\Roaming\pcouffin.inf
2016-12-24 13:47 - 2016-12-24 13:56 - 000000055 _____ () C:\Users\Seema\AppData\Roaming\pcouffin.log
2018-10-09 08:53 - 2018-10-09 08:53 - 000000000 _____ () C:\Users\Seema\AppData\Local\{29377B43-72EF-432F-81B8-97206507DB05}
2016-11-22 18:20 - 2016-11-22 18:20 - 000000000 _____ () C:\Users\Seema\AppData\Local\{E923888B-E6E3-470E-8707-AFEFFBCFD0E1}
2018-10-07 10:11 - 2018-10-07 10:11 - 000000000 _____ () C:\Users\Seema\AppData\Local\{FF592547-9740-4B9B-91AE-01656BBE1E2B}

==================== SigCheck ===============================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)


LastRegBack: 2016-11-08 19:31
==================== Einde van FRST.txt ============================
 
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 22-06-2019
Gestart door Seema (22-06-2019 20:41:17)
Gestart vanaf C:\Users\Seema\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-10-17 21:43:01)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1106430384-2681236975-3176511683-500 - Administrator - Disabled)
Gast (S-1-5-21-1106430384-2681236975-3176511683-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1106430384-2681236975-3176511683-1002 - Limited - Enabled)
Seema (S-1-5-21-1106430384-2681236975-3176511683-1000 - Administrator - Enabled) => C:\Users\Seema

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

. . . (HKLM\...\{DB52A2D0-CAA1-4ED1-B122-29E7EDDE187F}) (Version: 2.1.28.3 - Intel) Hidden
. . . (HKLM-x32\...\{06DA421D-EE23-487D-878F-F0AF97EF69AD}) (Version: 2.6.1.4 - Intel) Hidden
µTorrent (HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\uTorrent) (Version: 3.5.5.45263 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.207 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.207 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.207 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.0.162 - Adobe Systems, Inc.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.1623.127 - Alps Electric)
Apple Application Support (32-bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Ares (HKLM-x32\...\Ares) (Version: 2.4.3-Build#3067 - AresGalaxy)
Avira (HKLM-x32\...\{2504137A-5E42-4340-8F34-2086B49FBD1A}) (Version: 1.2.133.21088 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{b3f1f775-e558-4660-a503-9129ae9d7310}) (Version: 1.2.133.21088 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1906.1389 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.24.1.25128 - Avira Operations GmbH & Co. KG)
Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.9.1.1886 - Avira Operations GmbH & Co. KG)
Avira Safe Shopping (HKLM-x32\...\{1CBE3144-686E-4D53-B745-93FE4D5E3094}) (Version: 1.1.35.3883 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{81F65370-DB6A-4D97-9360-7AFAC67D16F1}) (Version: 2.0.6.15383 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 5.4.3.10308 - Avira Operations GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1084 - AB Team, d.o.o.)
Canon Hulpprogramma Snelkiezen (HKLM-x32\...\Speed Dial Utility) (Version: - )
Canon MP Navigator EX 3.1 (HKLM-x32\...\MP Navigator EX 3.1) (Version: - )
Canon MX340 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX340_series) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.55.62 - Conexant)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.4704.58 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
DMG Extractor (HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\DMG Extractor) (Version: 1.3.15.0 - Reincubate Ltd)
Dropbox (HKLM-x32\...\Dropbox) (Version: 74.4.115 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Easy CD-DA Extractor 11 (HKLM-x32\...\Easy CD-DA Extractor 11) (Version: 11.5.3 - Poikosoft)
FrostWire 6.3.0 (HKLM-x32\...\FrostWire 6) (Version: 6.3.0.185 - FrostWire LLC)
Gebruikersregistratie voor Canon MX340 series (HKLM-x32\...\Gebruikersregistratie voor Canon MX340 series) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.36 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4414 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.70.1 - ELAN Microelectronic Corp.)
Lenovo Service Bridge (HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo Solution Center (HKLM\...\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}) (Version: 3.3.003.00 - Lenovo)
Malwarebytes versie 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Hotmail Connector 64-bits (HKLM\...\{95140000-0081-0413-1000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 66.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 66.0.3 (x86 en-US)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
Nitro Reader 2 (HKLM\...\{500D17B2-EF84-4DA7-9330-C1EB3F222D04}) (Version: 2.2.1.14 - Nitro PDF Software)
O&O Defrag Free Edition (HKLM\...\{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}) (Version: 14.1.431 - O&O Software GmbH)
Opera Stable 60.0.3255.170 (HKLM-x32\...\Opera 60.0.3255.170) (Version: 60.0.3255.170 - Opera Software)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.9 - Tracker Software Products Ltd)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39063 - Realtek Semiconductor Corp.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.)
Spotify (HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\Spotify) (Version: 1.0.82.447.g975ad224 - Spotify AB)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TomTom HOME (HKLM-x32\...\{F76EFA2A-BF0B-47BC-9AD5-857FFBD3CC79}) (Version: 2.9.93 - Uw bedrijfsnaam)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1-x32: [EzCddax] -> {37DDAAA7-7B07-4e1e-8C37-B46B63AF2925} => C:\Program Files (x86)\Easy CD-DA Extractor 11\ezcddax11.dll [2008-06-12] (Poikosoft -> )
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2015-11-30] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-03-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4-x32: [EzCddax] -> {37DDAAA7-7B07-4e1e-8C37-B46B63AF2925} => C:\Program Files (x86)\Easy CD-DA Extractor 11\ezcddax11.dll [2008-06-12] (Poikosoft -> )
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-03-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-03-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-06-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

Shortcut: C:\Users\Seema\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 6\FrostWire 6.3.0-SafeMode.lnk -> C:\Program Files (x86)\FrostWire 6\frostwire.bat ()

==================== Geladen Modules (gefilterd) ==============

2016-09-13 13:44 - 2009-10-09 08:01 - 000337920 _____ (CANON INC.) [Bestand niet getekend] C:\Windows\System32\CNMN6PPM.DLL
2016-07-14 12:50 - 2016-07-14 12:50 - 000112128 _____ (Microsoft Corporation) [Bestand niet getekend] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-05-21 13:33 - 2019-05-21 13:33 - 000870912 _____ (ServiceStack) [Bestand niet getekend] C:\Windows\assembly\NativeImages_v4.0.30319_32\ServiceStack.Text\081ca0d4e2a3e1f3a8f285154b36064a\ServiceStack.Text.ni.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)

AlternateDataStreams: C:\ProgramData\Temp:1493A0EF [236]
AlternateDataStreams: C:\ProgramData\Temp:4ABA35EE [124]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)

IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\...\1001movie.com -> 1001movie.com

Er zijn 6091 Meer websites.


==================== Hosts inhoud: ==========================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2009-07-14 04:34 - 2018-09-30 13:05 - 000000128 ____N C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
0.0.0.0 keystone.mwbsys.com
0.0.0.0 telemetry.malwarebytes.com

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1106430384-2681236975-3176511683-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Seema\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 84.116.46.22 - 84.116.46.23
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

Als een item is opgenomen in de fixlist, zal het worden verwijderd.

MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenu => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: ETDCtrl => %ProgramFiles%\Elantech\ETDCtrl.exe
MSCONFIG\startupreg: hddled.exe => C:\Program Files (x86)\HddLed\hddled.exe s
MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
MSCONFIG\startupreg: iCloudPhotos => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: PowerDVD14Agent => "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Seema\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: Trust.Zone VPN Client UI Helper => "C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe" /uihelp

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{69FD6CB7-0244-4FEC-8D8C-F5D65EA5CDB6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{52D467E1-F6B5-45DE-8BF2-64A83BAA0C47}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A3387DAD-9712-4089-ADB3-2E210FE6D8E7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{465E5223-32FF-4A17-BCE2-7388DBC88794}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2807B06E-C699-4C61-9839-A60D0C557DFB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{64D1D04F-17E9-4C37-B5B6-C2895785A3C4}C:\users\seema\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\seema\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{FF881D86-8CB0-4B8D-BDFD-4C83B6686E50}C:\users\seema\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\seema\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{00E00878-CDC3-4D2D-BCBA-558D95CCD651}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Bestand niet getekend]
FirewallRules: [UDP Query User{FFA34129-B8AF-4F19-80C7-0AA01FE82A43}C:\program files (x86)\ares\ares.exe] => (Allow) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Bestand niet getekend]
FirewallRules: [TCP Query User{45DC03AA-DE27-4D5E-A537-934BF2C36878}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Bestand niet getekend]
FirewallRules: [UDP Query User{6A8A445F-419E-4611-9109-A3D7F13216FD}C:\program files (x86)\ares\ares.exe] => (Block) C:\program files (x86)\ares\ares.exe (AresGalaxy) [Bestand niet getekend]
FirewallRules: [{FBE0F578-76C2-43D9-88A7-76A153391440}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D3231995-1E73-4B3C-BEEA-2FE34B471C82}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{EA571DE5-4F61-45D0-9B1B-84DA9576A583}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A002B6D6-8155-4B87-8480-8A29DE082151}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CE348B26-ED3B-41A8-AC77-D247CAD46DEA}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{29523355-95F4-4CB7-B08D-B87D6A3E39BD}] => (Allow) C:\Users\Seema\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{033C16BB-2A19-43E5-9D8F-C9AE5A14565F}] => (Allow) C:\Program Files (x86)\FrostWire 6\FrostWire.exe (Frostwire, LLC -> FrostWire)
FirewallRules: [{037CA87B-3A36-4D97-8FC0-3568929B7355}] => (Allow) C:\Program Files (x86)\FrostWire 6\FrostWire.exe (Frostwire, LLC -> FrostWire)
FirewallRules: [{B5CEC7DD-1AE0-4C46-B413-6BF3EEB5EC2A}] => (Allow) C:\Program Files\Trust.Zone VPN Client\tzclient.exe (Extra Solutions Ltd -> Trust.Zone VPN Project)
FirewallRules: [{A1A81ED4-9305-4DFA-AD7C-8435DD2B3177}] => (Allow) C:\Program Files\Trust.Zone VPN Client\trustzone_x64.exe (Extra Solutions Ltd -> Trust.Zone VPN Project)
FirewallRules: [{EB9B9C29-F7ED-4C0F-828A-563CB0A648F4}] => (Allow) C:\Program Files\Trust.Zone VPN Client\trustzone.exe (Extra Solutions Ltd -> Trust.Zone VPN Project)
FirewallRules: [{5B2E03F1-77CA-4985-BF98-A3E101519A08}] => (Allow) C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe (Extra Solutions Ltd -> Trust.Zone VPN Project)
FirewallRules: [{2019D91C-D01E-4E1D-B7F5-2000EEF76A2F}] => (Allow) LPort=1688
FirewallRules: [{E4497FBD-62A2-4B21-90DE-4745E00D589B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
FirewallRules: [{CE0A3F23-2E5A-480E-B060-66AC1E7FFCC2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
FirewallRules: [{11075534-D0D4-4193-9E25-744ACB186FFA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{7D9FFB1D-9527-42DE-A8A7-9F24B290B75E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{58B60808-B75E-49B5-B217-0291D06802BE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1E421B98-B8AD-4245-B016-D77F6751E92D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{24989260-3973-460F-B087-88A939F9CB6A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{82B19170-056D-41DA-90D6-815BFF0BE8B4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6B2FFF65-6EAB-4CEB-8D86-2DD7B4BD1192}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1ED3DF1F-8B49-47F9-8A46-04CD80EC53F0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{29935FC5-071E-4B38-9F54-D7197288E2C6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1B1E6F03-26B4-4489-82B1-C93FF331389F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{9E645540-8CF9-4314-9D87-2DB97E62914F}] => (Allow) C:\Program Files (x86)\Opera\60.0.3255.151\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{9FC0430F-D4A4-4BE0-BEA7-F43F93763A34}] => (Allow) C:\Program Files (x86)\Opera\60.0.3255.170\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2D4FBC6D-6B9D-462B-BADA-A4EAC3C4508B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{542E1C25-0E6D-499C-89A4-8512B2C8721B}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{FE3714AA-15E8-4D89-8F29-48B9665F4820}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{2095C207-FC41-445E-8189-7B00BEB6E4E8}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

==================== Herstelpunten =========================

15-05-2019 11:12:33 Installed Smart Switch
22-06-2019 09:57:58 JRT Pre-Junkware Removal

==================== Defecte Apparaatbeheer Apparaten =============

Name: Bluetooth-apparaat (Personal Area Network)
Description: Bluetooth-apparaat (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VPN Client Adapter - VPN
Description: VPN Client Adapter - VPN
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VPN Client Provider
Service: Neo_VPN
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (06/22/2019 11:26:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: mbamservice.exe, versie: 3.2.0.704, tijdstempel: 0x5b9acf90
Naam van module met fout: ntdll.dll, versie: 6.1.7601.23915, tijdstempel: 0x59b94ee4
Uitzonderingscode: 0xc0000005
Foutoffset: 0x0000000000048f24
Id van proces met fout: 0xe78
Starttijd van toepassing met fout: 0x01d528d54a030e4c
Pad naar toepassing met fout: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Pad naar module met fout: C:\Windows\SYSTEM32\ntdll.dll
Rapport-id: beb2e1fd-94cf-11e9-81ae-68f72806f633

Error: (06/22/2019 11:20:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: Avira.ServiceHost.exe, versie: 1.2.133.21088, tijdstempel: 0x5cb07b57
Naam van module met fout: KERNELBASE.dll, versie: 6.1.7601.23915, tijdstempel: 0x59b94abb
Uitzonderingscode: 0xe0434352
Foutoffset: 0x0000c54f
Id van proces met fout: 0xe28
Starttijd van toepassing met fout: 0x01d528d548cb319c
Pad naar toepassing met fout: C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
Pad naar module met fout: C:\Windows\syswow64\KERNELBASE.dll
Rapport-id: fb81b25e-94ce-11e9-81ae-68f72806f633

Error: (06/22/2019 11:20:29 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: Avira.ServiceHost.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.Net.Sockets.SocketException

Uitzonderingsinformatie: System.Exception
bij SuperSocket.ClientEngine.TcpClientSession.DetectConnected()
bij SuperSocket.ClientEngine.TcpClientSession.Send(Byte[], Int32, Int32)
bij WebSocket4Net.Protocol.DraftHybi10Processor.SendHandshake(WebSocket4Net.WebSocket)
bij WebSocket4Net.WebSocket.OnConnected()
bij WebSocket4Net.WebSocket.client_Connected(System.Object, System.EventArgs)
bij SuperSocket.ClientEngine.ClientSession.OnConnected()
bij SuperSocket.ClientEngine.SslStreamTcpSession.OnAuthenticated(System.IAsyncResult)
bij System.Net.LazyAsyncResult.Complete(IntPtr)
bij System.Net.LazyAsyncResult.ProtectedInvokeCallback(System.Object, IntPtr)
bij System.Net.Security.SslState.FinishHandshake(System.Exception, System.Net.AsyncProtocolRequest)
bij System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
bij System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
bij System.Net.Security.SslState.ProcessReceivedBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
bij System.Net.Security.SslState.ReadFrameCallback(System.Net.AsyncProtocolRequest)
bij System.Net.AsyncProtocolRequest.CompleteRequest(Int32)
bij System.Net.FixedSizeReader.CheckCompletionBeforeNextRead(Int32)
bij System.Net.FixedSizeReader.ReadCallback(System.IAsyncResult)
bij System.Net.LazyAsyncResult.Complete(IntPtr)
bij System.Net.ContextAwareResult.CompleteCallback(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bij System.Net.ContextAwareResult.Complete(IntPtr)
bij System.Net.LazyAsyncResult.ProtectedInvokeCallback(System.Object, IntPtr)
bij System.Net.Sockets.BaseOverlappedAsyncResult.CompletionPortCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)
bij System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)

Error: (06/22/2019 11:14:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 867428

Error: (06/22/2019 11:14:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 867428

Error: (06/22/2019 11:14:58 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/22/2019 11:14:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 855260

Error: (06/22/2019 11:14:46 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 855260


Systeemfouten:
=============
Error: (06/22/2019 01:18:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De Avira Scheduler-service is onverwacht gestopt. Dit is 2 keer gebeurd. De volgende herstelbewerking zal over 0 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (06/22/2019 12:17:47 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 20.

Error: (06/22/2019 11:59:12 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 70.

Error: (06/22/2019 11:59:11 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 70.

Error: (06/22/2019 11:26:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De Avira Service Host-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (06/22/2019 11:22:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Lenovo Solution Center System Service-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (06/22/2019 11:22:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Lenovo Solution Center System Service.

Error: (06/22/2019 11:14:26 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: Appinfo.


CodeIntegrity:
===================================

Date: 2016-12-11 21:28:33.172
Description:
De integriteit van de kopie van het bestand \Device\HarddiskVolume1\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

Date: 2016-12-11 21:28:33.078
Description:
De integriteit van de kopie van het bestand \Device\HarddiskVolume1\ComboFix\catchme.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

==================== Geheugen info ===========================

BIOS: LENOVO 9ACN32WW 07/20/2015
Motherboard: LENOVO VIUU4
Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentage geheugen in gebruik: 92%
Totaal fysiek RAM-geheugen: 3992.36 MB
Beschikbaar fysiek RAM-geheugen: 295.81 MB
Totaal Virtueel geheugen: 14883.22 MB
Beschikbaar Virtueel geheugen: 1211.63 MB

==================== Schijven ================================

Drive c: () (Fixed) (Total:465.76 GB) (Free:221.54 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)]


==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: A564358C)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Einde van Addition.txt ============================
 
Waarschuwing: onderstaande bewerking is enkel voor deze computer bedoeld, het toepassen hiervan in een andere computer kan tot schade in Windows leiden.


We gaan
51a5c8edc4692-icon1337952077.png


Farbar Recovery Scan Tool (FRST.exe) opnieuw gebruiken.

Open een nieuw kladblok (of anders: notepad) bestand, via "Start\Alle programma’s\Bureau-accessoires\Kladblok (of Notepad)".
Kopieer nu de tekst die in het code-venster staat en plak die tekst in het lege kladblokvenster.

Code:
start
CreateRestorePoint:

CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
C:\Windows\system32\GWX
Task: {86B4FB78-A787-4BA0-AC49-A8F20B0D8D33} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand
FirewallRules: [{E4497FBD-62A2-4B21-90DE-4745E00D589B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
FirewallRules: [{CE0A3F23-2E5A-480E-B060-66AC1E7FFCC2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
C:\Program Files\KMSpico

EmptyTemp:
CloseProcesses:
cmd: ipconfig /flushdns
cmd: netsh winsock reset
end

Sla nu dit kladblokbestand in de dezelfde locatie waar ook FRST.exe aanwezig is op als Fixlist.txt

Farbar Recovery Scan Tool (FRST.exe) met de fixlist.txt gebruiken

  • Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op FRST.exe en kies voor "Als Administrator uitvoeren".
  • Als het programma wordt gestart, klik dan op Ja in de popup.
  • Druk op de Fix knop.
  • Na de fix wordt een logbestand - Fixlog.txt - in dezelfde locatie aangemaakt van waaruit FRST.exe is gestart.
  • Post de inhoud van dit logbestand in jouw volgende bericht.
 
Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 22-06-2019
Gestart door Seema (23-06-2019 09:57:23) Run:1
Gestart vanaf C:\Users\Seema\Desktop
Geladen Profielen: Seema (Beschikbare Profielen: Seema)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CreateRestorePoint:

CHR HKLM\SOFTWARE\Policies\Google: Restrictie <==== AANDACHT
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {02487483-6B30-4FB6-8296-2C7798FCF467} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
C:\Windows\system32\GWX
Task: {86B4FB78-A787-4BA0-AC49-A8F20B0D8D33} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {B8650424-253C-48A1-9005-A35E367EE758} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [358400 [358400 2016-07-13]] (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand
FirewallRules: [{E4497FBD-62A2-4B21-90DE-4745E00D589B}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
FirewallRules: [{CE0A3F23-2E5A-480E-B060-66AC1E7FFCC2}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe (@ByELDI -> ) [Bestand niet getekend]
C:\Program Files\KMSpico

EmptyTemp:
CloseProcesses:
cmd: ipconfig /flushdns
cmd: netsh winsock reset
end
*****************

Herstelpunt is succesvol gemaakt.
HKLM\SOFTWARE\Policies\Google => is succesvol verwijderd
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02487483-6B30-4FB6-8296-2C7798FCF467} => niet gevonden
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => is succesvol verwijderd
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02487483-6B30-4FB6-8296-2C7798FCF467} => niet gevonden
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => niet gevonden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => niet gevonden
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02487483-6B30-4FB6-8296-2C7798FCF467} => niet gevonden
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => niet gevonden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => niet gevonden
C:\Windows\system32\GWX => is succesvol verplaatst
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86B4FB78-A787-4BA0-AC49-A8F20B0D8D33} => niet gevonden
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => is succesvol verwijderd
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8650424-253C-48A1-9005-A35E367EE758}" => is succesvol verwijderd
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8650424-253C-48A1-9005-A35E367EE758} => is succesvol verwijderd
C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => is succesvol verplaatst
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => is succesvol verwijderd
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8650424-253C-48A1-9005-A35E367EE758} => niet gevonden
"C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => niet gevonden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => niet gevonden
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => is succesvol verwijderd
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => niet gevonden
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E4497FBD-62A2-4B21-90DE-4745E00D589B}" => is succesvol verwijderd
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE0A3F23-2E5A-480E-B060-66AC1E7FFCC2}" => is succesvol verwijderd
C:\Program Files\KMSpico => is succesvol verplaatst
Proces succesvol afgesloten.

========= ipconfig /flushdns =========


Windows IP-configuratie

De DNS-omzettingscache is leeggemaakt.

========= Einde van CMD: =========


========= netsh winsock reset =========


De Winsock-catalogus is opnieuw ingesteld.
De computer dient opnieuw te worden opgestart om het opnieuw instellen te voltooien.


========= Einde van CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 121299165 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 3268868367 B
Edge => 0 B
Chrome => 37253481 B
Firefox => 374463202 B
Opera => 514120638 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 0 B
Seema => 5829198286 B

RecycleBin => 25867451841 B
EmptyTemp: => 33.5 GB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Einde van Fixlog 10:27:34 ====
 
Jouw Windows heeft een record verbroken wat betreft opgeruimde tempmappen!
EmptyTemp: => 33.5 GB tijdelijke gegevens verwijderd.

Ik ga er dan ook van vanuit dat jouw notebook behoorlijk wat tempovoller is geworden.

We kijken verder:


Stap •1•
Download
51a46ae42d560-malwarebytes_anti_malware.png
MalwareBytes Anti-Malware.

  • Windows 2000 en Windows XP: dubbelklik op mbam-setup.exe.
  • Windows Vista, Windows 7, Windows 8: en Windows 10: via rechtsklik op mbam-setup.exe en kies voor "Als Administrator uitvoeren".
  • Klik in het menu van Malwarebytes ANTI-MALWARE op Instellingen" en daar op "Detectie en Bescherming" en zet vervolgens een vinkje bij "Scan naar rootkits".
  • Klik vervolgens op de knop Scan nu om een bedreigingsscan uit te voeren.
  • Er zal nu gecontroleerd worden op beschikbare updates, klik hier op "Nu bijwerken als er beschikbare updates zijn.
  • De scan wordt nu automatisch gestart,wanneer de scan gereed is en er bedreigingen zijn gedetecteerd krijgt u hier een overzicht van.

  • Wanneer er geen bedreigingen zijn gedetecteerd klikt u na de scan op Bekijk gedetailleerd logboek.
  • Klik vervolgens op de knop Exporteer en kies de optie "Tekstbestand (*.txt)".
  • Geef vervolgens een bestandsnaam op voor het opslaan van het logbestand, bijvoorbeeld MBAM Scanlog.
  • Kies bijvoorbeeld het bureaublad als opslaglocatie en klik vervolgens op de knop Opslaan.

  • Wanneer er wel bedreigingen zijn gedetecteerd klikt u na de scan op Acties toepassen.
  • Bij de melding om de computer opnieuw op te starten klikt u op Ja / Yes.
  • Open na de herstart MalwareBytes Anti-Malware en klik bovenaan op Historie en selecteer Programmalogboeken.
  • Klik op de nieuwste Scan Log.
  • Klik op "Exporteer" en kies de optie "Tekstbestand (*.txt)".
    5557b93ba94ab-Malwarebytes_Exporteer_ScanLog.png
  • Geef vervolgens een bestandsnaam op voor het opslaan van het logbestand, bijvoorbeeld MBAM Scanlog.
  • Kies bijvoorbeeld het bureaublad als opslaglocatie en klik vervolgens op de knop Opslaan.
    532aab157609a-MBAM-Scan.png

MBAM-Log posten:
  • Kopieer nu de inhoud van het zojuist opgeslagen log en plak dit in uw nieuwe antwoord erbij.


Indien jij MBAM meteen als gratis versie wil gebruiken in plaatst van de veertien dagen durende demo met al zijn toeters en bellen te gebruiken, kijk dan hier

Stap •2•
Download
536cf876403ee-AdwCleaner_Icon.png
AdwCleaner by Malwarebytes naar het bureaublad.

Klik met de rechtermuisknop op AdwCleaner en kies voor de optie
RunAsAdmin.jpg
Als administrator uitvoeren.
  • Klik vervolgens op de knop Nu scannen.
  • Wanneer de scan gereed is klikt u vervolgens op de knop Reiniging en Reparaties.
  • Klik vervolgens in het informatiescherm op Schoonmaken en nu opnieuw opstarten.
  • Nadat de computer opnieuw is opgestart wordt AdwCleaner automatisch geopend, klik op Logbestand bekijken.
  • Plaats dit logbestand als bijlage in het volgende bericht.
  • (Dit logbestand kunt u tevens terug vinden op de systeemschijf als C:\AdwCleaner\Logs\AdwCleaner[C00].txt.)


Graag beide logs in één keer bijvoegen.
 
Malwarebytes
www.malwarebytes.com

-Logboekdetails-
Scandatum: 26-06-19
Scantijd: 18:42
Logbestand: 74664d32-9831-11e9-84aa-68f72806f633.json

-Software-informatie-
Versie: 3.7.1.2839
Versie componenten: 1.0.586
Update pakketversie: 1.0.11266
Licentie: Gratis

-Systeeminformatie-
Besturingssysteem: Windows 7 Service Pack 1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: Seema-PC\Seema

-Scansamenvatting-
Scantype: Bedreigingsscan
Scan geactiveerd door: Handmatig
Resultaat: Voltooid
Objecten gescand: 256603
Dreigingen herkend: 13
Dreigingen in quarantaine: 13
Verstreken tijd: 24 min, 55 sec

-Scanopties-
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Ingeschakeld
Heuristiek: Ingeschakeld
POP: Detectie
POA: Detectie

-Scandetails-
Proces: 0
(Geen kwaadaardige items gedetecteerd)

Module: 0
(Geen kwaadaardige items gedetecteerd)

Registersleutel: 0
(Geen kwaadaardige items gedetecteerd)

Registerwaarde: 0
(Geen kwaadaardige items gedetecteerd)

Registerdata: 0
(Geen kwaadaardige items gedetecteerd)

Gegevensstroom: 0
(Geen kwaadaardige items gedetecteerd)

Map: 4
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\PCI Subsystem, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\USERS\SEEMA\APPDATA\ROAMING\666259A6-43F0-437C-B0BA-05A87E6F9184, In quarantaine, [3749], [677862],1.0.11266

Bestand: 9
Backdoor.NanoCore.StolenData.Generic, C:\USERS\SEEMA\APPDATA\ROAMING\666259A6-43F0-437C-B0BA-05A87E6F9184\run.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_42416.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_43243.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_45068.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_601898.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_66581.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\Logs\Seema\KB_77719.dat, In quarantaine, [3749], [677862],1.0.11266
Backdoor.NanoCore.StolenData.Generic, C:\Users\Seema\AppData\Roaming\666259A6-43F0-437C-B0BA-05A87E6F9184\settings.bin, In quarantaine, [3749], [677862],1.0.11266
RiskWare.DontStealOurSoftware, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, In quarantaine, [5310], [353142],0.0.0

Fysieke sector: 0
(Geen kwaadaardige items gedetecteerd)

WMI: 0
(Geen kwaadaardige items gedetecteerd)


(end)







# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-06-18.1 (Cloud)
# Support: Customer Support & Help Center
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-22-2019
# Duration: 00:00:35
# OS: Windows 7 Ultimate
# Scanned: 27551
# Detected: 4


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Conduit HKLM\Software\Wow6432Node\Conduit
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{684CB58B-DBBC-4BD6-B3BF-0937E5A7DDE6}C:\program files (x86)\popcorn time\chromecast\node.exe
PUP.Optional.Legacy HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{47B0B14F-72DD-46E1-A842-C6E49FF7A08E}C:\program files (x86)\popcorn time\chromecast\node.exe

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [2416 octets] - [10/10/2018 11:18:41]
AdwCleaner[C00].txt - [2380 octets] - [10/10/2018 11:19:39]
AdwCleaner[S01].txt - [1375 octets] - [31/01/2019 12:15:30]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########
 
Hallo Siem, poeh, dat is niet mis wat er ondertussen nog weer gevonden is.

Nu wil ik graag eerst weten hoe jouw computer thans draait.
 
Op dit moment heb ik veel last met opstarten. Het duurt heel lang voordat ie opgestart is en als ie eenmaal loopt en ik wil een programma openen, dan blijft ie hangen en geeft het programma aan "reageert niet"
 
Download de bijgevoegde CrystalDiskInfo Portable.zip.
Na download het bestand uitpakken en openen.

Dubbelklik dan op DiskInfo64.exe


Geeft het tool een gele knop aan,

laat dan weten welke regels in de gele kleur zijn vermeld.
 

Bijlagen

  • CrystalDiskInfo8_0_0.zip
    4,3 MB · Weergaven: 2
Mooi, dan kunnen we de harddisk uitsluiten.

Wat de laptop zal verbeteren is een SSD en uitbreiding van het werkgeheugen naar 8GB.

Wat is de type aanduiding van jouw Lenovo notebook?
 
Ik heb een Lenovo G50
 
Beste Siem,

Ik zou jou Java eens bijwerken, want jou Java is van januari 2017.
Voor de rest succes met het oplossen van jou probleem :)
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan