Re: Generic virus gedetecteerd door AVG
Abraham, bij deze de logs:
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 12-03-2017
Gestart door hp (Beheerder) op DESKTOP-O9S8BV1 (13-03-2017 14:38:37)
Gestart vanaf C:\Users\hp\Desktop
Geladen Profielen: hp (Beschikbare Profielen: hp)
Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Chrome)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfwsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Gladinet, INC) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Intel Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
() C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\igfxEM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDFViewer\PdfPro7Hook.exe
(MyHeritage) C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
() C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8004.42017.0_x64__8wekyb3d8bbwe\HxMail.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8004.42017.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Register (gefilterd) ====================
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-02] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-09-15] (Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-06-22] (CyberLink Corp.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [27308304 2017-03-06] (Dropbox, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [PowerPDF Registry Controller] => C:\Program Files (x86)\Nuance\Power PDF 20\RegistryController.exe [264416 2016-06-15] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [NuanPowerPdf1NPDFLM] => C:\Program Files (x86)\Nuance\Power PDF 20\NPDFLM.exe [3456552 2016-08-15] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [Nuance Power PDF Standard-reminder] => "C:\Program Files (x86)\Nuance\Power PDF 20\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\Power PDF Standard\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC.)
HKLM-x32\...\Run: [OmniPage Preload] => C:\Program Files (x86)\Nuance\OmniPage18\OmniPage.exe [1467240 2011-08-15] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [Nuance OmniPage 18-reminder] => "C:\Program Files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\OmniPage 18\Ereg\Ereg.ini"
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [36168 2013-05-14] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [18248 2013-05-14] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort14reminder] => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\14\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDFViewer\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [14870192 2017-01-19] (MyHeritage)
HKLM-x32\...\Run: [ABNotify] => C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe [80832 2016-09-26] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [LaplinkOffers] => C:\Program Files (x86)\Laplink\PCmover\ThirdParty\LaplinkOffers.exe [578664 2016-06-20] (Laplink Software, Inc.)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [Spotify Web Helper] => C:\Users\hp\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-22] (Spotify Ltd)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [Spotify] => C:\Users\hp\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-22] (Spotify Ltd)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [SnailDriver] => C:\Program Files (x86)\SnailSuite\SnailDriver\SnailLaunch.exe [814592 2016-09-17] (SnailDrivers)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1795736 2017-03-08] (Lavasoft)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [806400 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [OpAgent] => "OpAgent.exe" /agent
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => -> Geen bestand
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => -> Geen bestand
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => -> Geen bestand
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> Geen bestand
ShellIconOverlayIdentifiers: [GladinetIconOverlay] -> {3C3DC57A-7535-48AF-BB9E-C3576A4F34D0} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon.dll [2011-07-26] (Gladinet, INC)
ShellIconOverlayIdentifiers: [GladinetUploading] -> {959A18D3-9CC9-41e8-B76F-34ED9A89D4EA} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU.dll [2011-07-26] (Gladinet, INC)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [GladinetIconOverlay] -> {3C3DC57A-7535-48AF-BB9E-C3576A4F34D0} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon32.dll [2011-07-26] (Gladinet, INC)
ShellIconOverlayIdentifiers-x32: [GladinetUploading] -> {959A18D3-9CC9-41e8-B76F-34ED9A89D4EA} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU32.dll [2011-07-26] (Gladinet, INC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nuance Cloud Connector.lnk [2016-11-04]
ShortcutTarget: Nuance Cloud Connector.lnk -> C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladLauncher.exe ()
Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - .lnk [2016-12-09]
ShortcutTarget: Inktwaarschuwingen controleren - .lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk [2017-02-13]
ShortcutTarget: Inktwaarschuwingen controleren - HP Deskjet 2540 series.lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKLM\SOFTWARE\Policies\Google: Restrictie <======= AANDACHT
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9 18 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9-x64 01 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2017-03-08] (Lavasoft Limited)
Winsock: Catalog9-x64 18 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2017-03-08] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66
Tcpip\..\Interfaces\{37ea48e0-74ce-4858-ae88-9bc24c0f7625}: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-411354632-372324276-3053230233-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.nl/
SearchScopes: HKLM -> {228DD1BB-FF37-4A4F-8C9E-2D83790263FA} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {228DD1BB-FF37-4A4F-8C9E-2D83790263FA} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-411354632-372324276-3053230233-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D030817-A8049AA040D&form=CONBDF&conlogo=CT3335641&q={searchTerms}
SearchScopes: HKU\S-1-5-21-411354632-372324276-3053230233-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D030817-A8049AA040D&form=CONBDF&conlogo=CT3335641&q={searchTerms}
SearchScopes: HKU\S-1-5-21-411354632-372324276-3053230233-1001 -> {14B5F3C6-1F9E-4FC1-ACC8-CEEC9F0BFF26} URL =
SearchScopes: HKU\S-1-5-21-411354632-372324276-3053230233-1001 -> {228DD1BB-FF37-4A4F-8C9E-2D83790263FA} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-411354632-372324276-3053230233-1001 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_ya_ch&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Nuance PDF Conversion Toolbar Helper -> {940361F8-7F16-4498-AB43-2EFFE0235AFA} -> C:\Program Files (x86)\Nuance\Power PDF 20\Bin\SZeonIEFavClient_x64.dll [2016-05-13] (Zeon Corporation)
BHO: PlusIEEventHelper Class -> {9D137966-2E29-45C5-9B12-29D5427F8F66} -> C:\Program Files (x86)\Nuance\Power PDF 20\Bin\PlusIEContextMenu_x64.dll [2016-06-03] (Zeon Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDFViewer\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Nuance PDF Conversion Toolbar Helper -> {940361F8-7F16-4498-AB43-2EFFE0235AFA} -> C:\Program Files (x86)\Nuance\Power PDF 20\Bin\SZeonIEFavClient.dll [2016-05-13] (Zeon Corporation)
BHO-x32: PlusIEEventHelper Class -> {9D137966-2E29-45C5-9B12-29D5427F8F66} -> C:\Program Files (x86)\Nuance\Power PDF 20\Bin\PlusIEContextMenu.dll [2016-06-03] (Zeon Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Nuance PDF Toolbar - {BED78D9C-A025-4FE9-B3BA-27E6D376A3D5} - C:\Program Files (x86)\Nuance\Power PDF 20\Bin\SZeonIEFavClient_x64.dll [2016-05-13] (Zeon Corporation)
Toolbar: HKLM-x32 - Nuance PDF Toolbar - {BED78D9C-A025-4FE9-B3BA-27E6D376A3D5} - C:\Program Files (x86)\Nuance\Power PDF 20\Bin\SZeonIEFavClient.dll [2016-05-13] (Zeon Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-08-11] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\hp\AppData\Roaming\Songbird2\Profiles\4dkq2rkz.default [2016-12-09]
FF NetworkProxy: Songbird2\Profiles\4dkq2rkz.default -> no_proxies_on", "127.0.0.1;localhost"
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\albumart@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\gonzo@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\philips-addon-manager@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\pinkmartini@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\purplerain@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\sharing@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Songbird\extensions\soundboard@songbirdnest.com [niet gevonden]
FF ProfilePath: C:\Users\hp\AppData\Roaming\Philips-Songbird\Profiles\dtm3yjv0.default [2016-08-05]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\7digital@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\albumart@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\concerts-philips@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewh264dec@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmpeg4dec@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\fileassociation@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gogear@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\langpack-nl@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\msc@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mtp@songbirdnest.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-autoplay@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-branding@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-skin@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-ui@philips.com [niet gevonden]
FF Extension: (Geen Naam) - C:\Program Files (x86)\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com [niet gevonden]
FF SearchPlugin: C:\Users\hp\AppData\Roaming\Philips-Songbird\Profiles\dtm3yjv0.default\searchplugins\ec15a86d-ca4c-48b0-99dd-04c066a371ca.xml [2014-12-18]
FF HKLM-x32\...\Firefox\Extensions: [sweb2pdfextension.2@nuance.com] - C:\Program Files (x86)\Nuance\Power PDF 20\bin\SFirefoxExtn
FF Extension: (Nuance PDF Create) - C:\Program Files (x86)\Nuance\Power PDF 20\bin\SFirefoxExtn [2016-08-29]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => niet gevonden
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [Geen bestand]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [Geen bestand]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1213153.dll [Geen bestand]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-08-11] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2016-02-29] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-23] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDFViewer\bin\nppdf.dll [2011-07-15] (Zeon Corporation)
Chrome:
=======
CHR HomePage: Default -> hxxps://dub115.mail.live.com/default.aspx?rru=home&livecom=1
CHR StartupUrls: Default -> "hxxp://www.google.nl/","hxxp://www.google.nl/","hxxp://www.google.nl/","hxxp://google.nl/","hxxp://Vosteran.com/?f=7&a=vst_secureddownload_14_48_ch&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtA0CtAyEzy0FyCzzyDyBzztN0D0Tzu0StCtDyCyEtN1L2XzutAtFyCtFyCtFtDtN1L1CzutCyEtBzytDyD1V1BtN1L1G1B1V1N2Y1L1Qzu2SyByBtD0F0C0FtBtDtG0F0EyE0FtGtByCyEzztGtByD0F0CtGyEzy0FtAzyyDtCyC0D0E0B0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztCtAtBtAzzzytG0CzytBtCtGyEyC0A0DtGzz0DtCtCtGyDtDyB0C0BtD0A0EtB0BtBtC2Q&cr=1862030341&ir=","hxxp://vosteran.com/?f=7&a=vst_secureddownload_14_48_ch&cd=2XzuyEtN2Y1L1Qzu0Bzzzzzz0EtA0CtAyEzy0FyCzzyDyBzztN0D0Tzu0StCtDyCyEtN1L2XzutAtFyCtFyCtFtDtN1L1CzutCyEtBzytDyD1V1BtN1L1G1B1V1N2Y1L1Qzu2SyByBtD0F0C0FtBtDtG0F0EyE0FtGtByCyEzztGtByD0F0CtGyEzy0FtAzyyDtCyC0D0E0B0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEzztCtAtBtAzzzytG0CzytBtCtGyEyC0A0DtGzz0DtCtCtGyDtDyB0C0BtD0A0EtB0BtBtC2Q&cr=1862030341&ir="
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default [2017-03-13]
CHR Extension: (Google Presentaties) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-18]
CHR Extension: (Google Documenten) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-18]
CHR Extension: (Google Drive) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (YouTube) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Adobe Acrobat) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03]
CHR Extension: (Tetriz Challenge) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\emidddocikgklceeeifefomdnbkldhng [2016-07-18]
CHR Extension: (Google Spreadsheets) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-18]
CHR Extension: (Office Editor) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [2017-02-11]
CHR Extension: (Offline Documenten) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (Vertalen.nu) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\giapagjeblcapfphboclikepoeelhgkj [2016-07-18]
CHR Extension: (Norton Safe) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-03-08]
CHR Extension: (HP Network Check Launcher) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2017-01-27]
CHR Extension: (Tetris) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdhicelaffdlcajmemnjfccipcemjlki [2016-07-18]
CHR Extension: (Tag Assistant (by Google)) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2017-01-20]
CHR Extension: (HTTP/2 and SPDY indicator) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbpobfflnpcgagjijhmgnchggcjblin [2016-07-18]
CHR Extension: (Office Online) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2016-10-13]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Guest Profile [2016-10-18]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-18]
CHR HKU\S-1-5-21-411354632-372324276-3053230233-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfwsa.exe [1824184 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [56256 2016-09-26] (AOMEI Tech Co., Ltd.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2017-01-17] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\IntelCpHeciSvc.exe [303064 2017-02-02] (Intel Corporation)
S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\IntelCpHDCPSvc.exe [480224 2017-02-02] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-13] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-13] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46408 2017-01-21] (Dropbox, Inc.)
R2 GladFileMonSvc; C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [29552 2011-07-26] (Gladinet, INC)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-09-15] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\igfxCUIService.exe [341976 2017-02-02] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-04] (Intel Corporation)
R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2017-03-08] (Lavasoft Limited)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-05-03] ()
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77640 2013-05-14] (Nuance Communications, Inc.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-15] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [322560 2016-12-02] (Realtek Semiconductor)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25232 2017-03-08] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-05-03] (Intel Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [36024 2016-09-26] ()
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [73976 2015-06-04] (Advanced Micro Devices, Inc.)
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [156856 2016-09-26] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [23224 2016-09-26] ()
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys [73992 2016-10-23] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [349960 2016-08-03] (Intel Corporation)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\120578.inf_amd64_90853be61ecbb2f7\igdkmd64.sys [11060184 2017-02-02] (Intel Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-03-13] (Malwarebytes)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [7030040 2015-07-27] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7231248 2016-06-17] (Intel Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [329184 2016-08-15] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-22] (Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-07-23] (Synaptics Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een Maand Aangemaakt bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2030-01-12 06:53 - 2030-01-12 06:53 - 00016148 _____ C:\WINDOWS\system32\2K25QOVRGR7O8_Administrator_HistoryPrediction.bin
2030-01-12 06:14 - 2030-01-12 06:14 - 00018740 _____ C:\WINDOWS\system32\results.xml
2030-01-12 06:14 - 2030-01-12 06:14 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2030-01-12 06:12 - 2030-01-12 06:12 - 00016148 _____ C:\WINDOWS\system32\WIN-8TE8P6RSO81_Administrator_HistoryPrediction.bin
2030-01-12 06:12 - 2030-01-12 06:12 - 00001415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Welcome.lnk
2030-01-12 06:12 - 2017-03-11 13:38 - 00000000 ____D C:\Program Files (x86)\Dropbox
2030-01-12 06:11 - 2016-10-18 15:03 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2030-01-12 06:06 - 2030-01-12 06:10 - 00000000 ____D C:\Program Files\CyberLink
2030-01-12 06:06 - 2030-01-12 06:10 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2030-01-12 06:06 - 2013-10-29 08:26 - 00041704 _____ (CyberLink Corporation) C:\WINDOWS\system32\Drivers\clwvd6.sys
2030-01-12 06:05 - 2030-01-12 06:09 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2030-01-12 06:05 - 2030-01-12 06:09 - 00000000 ____D C:\Program Files (x86)\CyberLink
2030-01-12 06:05 - 2017-02-17 22:03 - 00000000 ____D C:\ProgramData\Temp
2030-01-12 06:05 - 2016-09-30 13:20 - 00000000 ____D C:\ProgramData\CyberLink
2030-01-12 06:03 - 2016-08-27 03:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2030-01-12 06:01 - 2016-08-03 15:49 - 00000000 ____D C:\ProgramData\mcafee
2030-01-12 06:00 - 2030-01-12 06:00 - 00000000 ____D C:\Program Files (x86)\Evernote
2030-01-12 06:00 - 2030-01-11 22:24 - 00000000 ___RD C:\Program Files\Online Services
2030-01-12 06:00 - 2030-01-11 22:24 - 00000000 ___RD C:\Program Files (x86)\Online Services
2030-01-12 06:00 - 2016-08-27 03:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2030-01-12 05:59 - 2030-01-11 22:35 - 00000000 __SHD C:\$RECYCLE.BIN
2030-01-12 05:59 - 2016-08-07 12:46 - 00000000 ____D C:\ProgramData\Apple
2030-01-12 05:59 - 2015-07-11 02:05 - 00432648 _____ (HP) C:\WINDOWS\system32\hpbprtmon.dll
2030-01-12 05:59 - 2015-07-11 02:05 - 00420872 _____ (HP) C:\WINDOWS\system32\hpbrprtmon.dll
2030-01-12 05:59 - 2015-07-11 02:05 - 00239624 _____ (HP) C:\WINDOWS\system32\hpbprtmonui.dll
2030-01-12 05:58 - 2016-08-15 10:43 - 00000000 ____D C:\Program Files\HP
2030-01-12 05:56 - 2030-01-12 05:56 - 00000000 ____D C:\Users\Public\Roaming
2030-01-12 05:56 - 2030-01-12 05:56 - 00000000 ____D C:\ProgramData\Roaming
2030-01-12 05:56 - 2016-10-29 15:31 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2030-01-12 05:55 - 2016-08-15 10:36 - 00000000 ____D C:\Program Files (x86)\Realtek
2030-01-12 05:53 - 2030-01-12 06:12 - 00000000 ____D C:\Program Files\Hewlett-Packard
2030-01-12 05:53 - 2016-08-27 03:09 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2030-01-12 05:53 - 2016-08-06 13:07 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2030-01-12 05:53 - 2016-07-18 01:22 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2030-01-12 05:53 - 2015-07-22 00:54 - 00135168 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe
2030-01-12 05:52 - 2016-08-15 10:43 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2030-01-12 05:51 - 2016-12-19 13:16 - 00000000 ____D C:\Program Files (x86)\HP
2030-01-12 05:45 - 2016-08-15 10:29 - 00000000 ____D C:\Program Files (x86)\Intel
2030-01-12 05:42 - 2017-03-13 12:23 - 00000000 __SHD C:\System Volume Information
2030-01-11 22:37 - 2030-01-11 22:37 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2030-01-11 22:36 - 2030-01-11 22:36 - 00000000 ____D C:\Users\hp\AppData\Local\HP_Inc
2030-01-11 22:36 - 2030-01-11 22:36 - 00000000 ____D C:\Users\hp\AppData\Local\CyberLink
2030-01-11 22:36 - 2017-03-13 13:19 - 00000000 ___RD C:\Users\hp\OneDrive
2030-01-11 22:36 - 2017-03-03 21:03 - 00002381 _____ C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2030-01-11 22:36 - 2016-10-05 13:18 - 00000000 ____D C:\Users\hp\Documents\YouCam
2030-01-11 22:36 - 2016-08-15 10:00 - 00000000 ____D C:\Users\hp\AppData\Local\Hewlett-Packard
2030-01-11 22:36 - 2016-07-18 01:22 - 00000000 ____D C:\Users\hp\AppData\Roaming\Hewlett-Packard
2030-01-11 22:35 - 2030-01-11 22:35 - 00000000 ____D C:\Users\hp\AppData\Local\DropboxOEM
2030-01-11 22:34 - 2030-01-12 05:56 - 00000000 ____D C:\Users\hp\Roaming
2030-01-11 22:34 - 2030-01-12 05:53 - 00000000 ___HD C:\Users\hp\Documents\hp.system.package.metadata
2030-01-11 22:34 - 2030-01-12 05:53 - 00000000 ___HD C:\Users\hp\Documents\hp.applications.package.appdata
2030-01-11 22:34 - 2030-01-11 22:34 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-O9S8BV1_defaultuser0_HistoryPrediction.bin
2030-01-11 22:34 - 2030-01-11 22:34 - 00000000 ____D C:\Users\hp\AppData\Roaming\Intel
2030-01-11 22:34 - 2030-01-11 22:34 - 00000000 ____D C:\Users\hp\AppData\Local\TileDataLayer
2030-01-11 22:34 - 2030-01-11 22:34 - 00000000 ____D C:\Users\hp\AppData\Local\Publishers
2030-01-11 22:34 - 2017-03-13 14:38 - 00000000 ___RD C:\Users\hp\Desktop
2030-01-11 22:34 - 2017-03-13 14:28 - 00000000 ___RD C:\Users\hp\Downloads
2030-01-11 22:34 - 2017-03-13 13:17 - 00000000 __SHD C:\Users\hp\IntelGraphicsProfiles
2030-01-11 22:34 - 2017-03-11 14:44 - 00000000 ___RD C:\Users\hp\Documents
2030-01-11 22:34 - 2017-03-09 18:19 - 00000000 ____D C:\Users\hp\AppData\Local\Packages
2030-01-11 22:34 - 2017-02-28 15:42 - 00000000 ___RD C:\Users\hp\Pictures
2030-01-11 22:34 - 2017-01-11 17:53 - 00000402 ___SH C:\Users\hp\Documents\desktop.ini
2030-01-11 22:34 - 2017-01-11 17:53 - 00000282 ___SH C:\Users\hp\Downloads\desktop.ini
2030-01-11 22:34 - 2017-01-11 17:53 - 00000282 ___SH C:\Users\hp\Desktop\desktop.ini
2030-01-11 22:34 - 2017-01-11 17:53 - 00000174 ___SH C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Videos
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Searches
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Saved Games
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Music
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Links
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\Favorites
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2030-01-11 22:34 - 2017-01-11 17:53 - 00000000 ___RD C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2030-01-11 22:34 - 2016-12-13 12:10 - 00000000 ____D C:\WINDOWS\SoftwareDistribution
2030-01-11 22:34 - 2016-12-09 15:51 - 00000000 ____D C:\Users\hp\AppData\LocalLow
2030-01-11 22:34 - 2016-08-08 13:14 - 00000000 ____D C:\Users\hp\AppData\Roaming\Adobe
2030-01-11 22:34 - 2016-08-05 17:17 - 00000000 ____D C:\Users\hp\AppData\Local\VirtualStore
2030-01-11 22:34 - 2016-07-18 04:38 - 00000000 ___RD C:\Users\hp\Contacts
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\Users\Public\Documents\Mijn video's
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\Users\Public\Documents\Mijn muziek
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\Users\Public\Documents\Mijn afbeeldingen
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\ProgramData\Sjablonen
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programma's
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\ProgramData\Menu Start
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\ProgramData\Documenten
2030-01-11 22:27 - 2030-01-11 22:27 - 00000000 _SHDL C:\ProgramData\Bureaublad
2030-01-11 22:26 - 2017-03-13 13:17 - 268435456 ___SH C:\swapfile.sys
2030-01-11 22:26 - 2017-03-13 13:17 - 1342177280 ___SH C:\pagefile.sys
2030-01-11 22:25 - 2030-01-11 22:25 - 00016148 _____ C:\WINDOWS\system32\WIN-639G97I977M_Administrator_HistoryPrediction.bin
2030-01-11 22:24 - 2016-12-19 13:16 - 00000000 __RSH C:\WINDOWS\SysWOW64\Drivers\103C_HP_cPC_23-q151nd_Y53316J_0U_QCZC6177W2Y_E15WE3QRT603_4A_I2B45_SHP_V0000_BA0.03_T150812_W1101-0_L413_M8053_J1000_7Intel_86E3_92.21_#300111_N80863165;10EC8168_Z_G80861912_Ohp HLDS DVDRW GUD0N_DHWP4224.MRK
2030-01-11 22:24 - 2016-12-19 13:16 - 00000000 __RSH C:\WINDOWS\system32\Drivers\103C_HP_cPC_23-q151nd_Y53316J_0U_QCZC6177W2Y_E15WE3QRT603_4A_I2B45_SHP_V0000_BA0.03_T150812_W1101-0_L413_M8053_J1000_7Intel_86E3_92.21_#300111_N80863165;10EC8168_Z_G80861912_Ohp HLDS DVDRW GUD0N_DHWP4224.MRK
2017-03-13 14:38 - 2017-03-13 14:39 - 00041721 _____ C:\Users\hp\Desktop\FRST.txt
2017-03-13 14:38 - 2017-03-13 14:38 - 00000000 ____D C:\FRST
2017-03-13 14:30 - 2017-03-13 14:29 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-03-13 14:28 - 2017-03-13 14:28 - 02424832 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2017-03-11 14:44 - 2017-03-11 14:45 - 00000000 ____D C:\Users\hp\Documents\RocketCakePublished
2017-03-11 13:37 - 2017-03-11 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-09 15:04 - 2017-03-09 15:04 - 00001311 _____ C:\Users\hp\Desktop\WebsitePainter 3.3.lnk
2017-03-09 15:04 - 2017-03-09 15:04 - 00000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebsitePainter 3.3
2017-03-08 16:58 - 2017-03-09 10:35 - 00002920 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2017-03-08 16:58 - 2017-03-09 10:35 - 00002920 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2017-03-08 16:58 - 2017-03-08 16:58 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00001934 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Users\hp\AppData\Roaming\Lavasoft
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Users\hp\AppData\Roaming\FileZilla
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Users\hp\AppData\Local\Lavasoft
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Users\hp\AppData\Local\FileZilla
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\ProgramData\Lavasoft
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2017-03-08 16:58 - 2017-03-08 16:58 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2017-03-06 21:50 - 2017-03-06 21:50 - 00046184 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-03-05 13:06 - 2017-03-13 12:10 - 01015002 _____ C:\Users\hp\Desktop\Website.rcd
2017-03-03 18:01 - 2017-03-03 18:01 - 00000372 _____ C:\Users\hp\Documents\Eerst.html
2017-03-03 16:46 - 2017-03-03 17:05 - 00000000 ____D C:\Users\hp\Documents\MyHeritage
2017-03-03 16:46 - 2017-03-03 17:05 - 00000000 ____D C:\ProgramData\MyHeritage
2017-03-03 16:46 - 2017-03-03 17:03 - 00001201 _____ C:\Users\hp\Desktop\MyHeritage Family Tree Builder.lnk
2017-03-03 16:46 - 2017-03-03 17:02 - 00000000 ____D C:\Program Files (x86)\MyHeritage
2017-03-03 16:46 - 2017-03-03 16:47 - 00000000 ____D C:\Users\hp\AppData\Roaming\MyHeritage
2017-03-03 16:46 - 2017-03-03 16:46 - 00000000 ____D C:\Users\hp\AppData\Roaming\The Complete Genealogy Reporter - FTB
2017-03-03 16:46 - 2017-03-03 16:46 - 00000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
2017-03-03 16:46 - 2012-08-02 08:56 - 00606208 _____ (Lorenzi Davide) C:\WINDOWS\SysWOW64\HexUniRTFBox.ocx
2017-03-03 16:46 - 2010-06-17 19:49 - 02029056 _____ (Bytescout) C:\WINDOWS\SysWOW64\PDFDocScout.DLL
2017-03-03 16:46 - 2004-12-07 11:11 - 00258352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unicows.dll
2017-03-03 16:46 - 2003-07-06 14:07 - 00372736 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ijl15.dll
2017-03-03 16:46 - 2002-03-07 01:19 - 00454656 _____ () C:\WINDOWS\SysWOW64\PaintX.dll
2017-03-03 16:46 - 2000-03-14 00:00 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL
2017-03-03 16:46 - 1998-06-24 01:00 - 00137000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmapi32.ocx
2017-03-03 16:45 - 2017-03-03 16:45 - 47125648 _____ C:\Users\hp\Desktop\family_tree_builder_8372.exe
2017-03-03 13:45 - 2017-03-03 13:45 - 00001074 _____ C:\Users\hp\Desktop\IrfanView.lnk
2017-03-03 13:45 - 2017-03-03 13:45 - 00000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2017-03-03 13:45 - 2017-03-03 13:45 - 00000000 ____D C:\Users\hp\AppData\Roaming\IrfanView
2017-03-03 13:45 - 2017-03-03 13:45 - 00000000 ____D C:\Program Files (x86)\IrfanView
2017-03-03 12:43 - 2017-03-03 11:40 - 00000720 _____ C:\Users\hp\Desktop\Brackets.lnk
2017-03-03 11:40 - 2017-03-03 11:40 - 00000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2017-03-03 11:39 - 2017-03-03 11:40 - 00000000 ____D C:\Program Files (x86)\Brackets
2017-03-01 15:23 - 2017-03-01 15:23 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-03-01 12:42 - 2017-03-01 12:42 - 00445834 _____ C:\Users\hp\Desktop\RibsAndBlues 2.pdf
2017-02-28 15:16 - 2017-02-28 15:16 - 00001321 _____ C:\Users\hp\Desktop\RocketCake Help - Snelkoppeling.lnk
2017-02-28 15:10 - 2017-02-28 15:10 - 00000000 ____D C:\Users\hp\AppData\Local\DiagramPainter
2017-02-28 15:09 - 2017-03-09 15:04 - 00000000 ____D C:\Program Files (x86)\Ambiera
2017-02-28 15:09 - 2017-02-28 15:09 - 00001263 _____ C:\Users\hp\Desktop\RocketCake 1.3.lnk
2017-02-28 15:09 - 2017-02-28 15:09 - 00000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RocketCake 1.3
2017-02-17 12:43 - 2017-02-17 12:43 - 00347783 _____ C:\Users\hp\Desktop\RibsAndBlues.pdf
2017-02-15 14:12 - 2017-02-15 14:12 - 04015056 _____ C:\Users\hp\Desktop\adwcleaner_6.043.exe
2017-02-11 17:41 - 2017-03-09 13:16 - 00000000 ____D C:\Users\hp\Documents\MoreLife
2017-02-11 17:27 - 2017-03-03 11:42 - 00000000 ____D C:\Users\hp\AppData\Roaming\Brackets
2017-02-11 17:23 - 2017-02-11 17:26 - 50421760 _____ C:\Users\hp\Desktop\Brackets.Release.1.8.msi
==================== Een Maand Gewijzigd bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2030-01-12 06:03 - 2015-07-10 12:04 - 00000124 _____ C:\WINDOWS\win.ini
2030-01-12 05:54 - 2015-08-15 10:13 - 00000000 _RSHD C:\hp
2030-01-11 22:34 - 2015-07-16 17:03 - 00000000 _RSHD C:\SYSTEM.SAV
2017-03-13 14:26 - 2016-08-27 02:55 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-13 13:23 - 2016-08-27 03:02 - 06161446 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-13 13:23 - 2016-07-18 04:03 - 00000000 ____D C:\ProgramData\MFAData
2017-03-13 13:23 - 2016-07-16 23:15 - 02868600 _____ C:\WINDOWS\system32\perfh013.dat
2017-03-13 13:23 - 2016-07-16 23:15 - 00826326 _____ C:\WINDOWS\system32\perfc013.dat
2017-03-13 13:19 - 2016-08-05 06:33 - 00000000 ____D C:\Users\hp\Documents\Administratie
2017-03-13 13:19 - 2016-08-04 14:52 - 00000000 ___HD C:\OneDriveTemp
2017-03-13 13:19 - 2016-08-04 02:35 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-13 13:17 - 2016-11-13 16:28 - 00000000 ____D C:\Program Files (x86)\AOMEI Backupper
2017-03-13 13:17 - 2016-08-27 03:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-13 13:16 - 2016-07-16 07:04 - 01572864 _____ C:\WINDOWS\system32\config\BBI
2017-03-13 13:05 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\registration
2017-03-13 11:57 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-13 11:57 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-13 11:52 - 2016-08-15 10:00 - 00000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForhp.job
2017-03-12 22:17 - 2016-09-22 09:29 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-03-12 22:17 - 2016-07-18 03:48 - 00000000 ____D C:\Users\hp\AppData\Local\AvgSetupLog
2017-03-12 15:14 - 2016-08-27 03:17 - 00003232 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForhp
2017-03-11 20:25 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-11 15:01 - 2016-08-05 14:22 - 00000000 ____D C:\Users\hp\AppData\Local\Spotify
2017-03-11 14:17 - 2016-08-05 15:23 - 00000000 ____D C:\Users\hp\AppData\Local\CrashDumps
2017-03-11 14:10 - 2016-08-13 12:15 - 00000000 ___RD C:\Users\hp\Dropbox
2017-03-11 14:04 - 2016-08-05 14:20 - 00000000 ____D C:\Users\hp\AppData\Roaming\Spotify
2017-03-11 14:02 - 2016-08-17 15:12 - 00001131 _____ C:\Users\Public\Desktop\EssentialPIM.lnk
2017-03-11 14:01 - 2016-08-17 14:36 - 00000000 ____D C:\Users\hp\AppData\Roaming\EssentialPIM
2017-03-09 21:49 - 2016-11-07 19:55 - 00000000 ____D C:\Users\hp\Documents\Wereldwinkel
2017-03-09 11:57 - 2016-08-05 10:44 - 00000000 ____D C:\Users\hp\Documents\Familie
2017-03-03 21:03 - 2016-12-17 15:09 - 00003284 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-03 12:44 - 2016-11-13 16:29 - 00001024 ____H C:\SYSTAG.BIN
2017-03-03 12:44 - 2016-11-13 16:29 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-03-03 12:22 - 2016-08-17 14:36 - 00000000 ____D C:\Program Files (x86)\EssentialPIM
2017-03-02 20:16 - 2016-08-05 13:56 - 00000000 ____D C:\Users\hp\Documents\Pensioen AOW
2017-03-02 14:50 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-02 14:49 - 2016-08-09 09:48 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-01 15:22 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-02-28 15:07 - 2016-08-05 10:47 - 00000000 ____D C:\Users\hp\Documents\Handleidingen
2017-02-23 15:36 - 2016-08-08 13:11 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-23 13:23 - 2016-07-18 03:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 13:20 - 2016-07-18 03:59 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-22 17:50 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-20 22:13 - 2016-08-27 03:02 - 00000000 ____D C:\Users\hp
2017-02-15 14:14 - 2016-10-05 15:48 - 00000000 ____D C:\AdwCleaner
2017-02-11 17:57 - 2016-08-05 16:36 - 00000000 ____D C:\Users\hp\AppData\Local\Microsoft Help
==================== Bestanden in de root van sommige mappen =======
2016-12-08 14:39 - 2016-12-08 14:39 - 21874200 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2015-03-12 16:51 - 2015-03-12 16:51 - 0002070 _____ () C:\Users\hp\AppData\Roaming\.DEFAULT
2015-03-12 16:51 - 2015-03-12 16:51 - 0000170 _____ () C:\Users\hp\AppData\Roaming\.DEFAULT-dm2
2015-03-12 16:51 - 2015-03-12 16:51 - 0026628 _____ () C:\Users\hp\AppData\Roaming\.DEFAULT-dmpu
2015-03-12 16:51 - 2015-03-12 16:51 - 0023596 _____ () C:\Users\hp\AppData\Roaming\nuanreg
2015-03-12 16:51 - 2015-03-12 16:51 - 0065810 _____ () C:\Users\hp\AppData\Roaming\nuanreg-dm2
2015-03-12 16:51 - 2015-03-12 16:51 - 0065820 _____ () C:\Users\hp\AppData\Roaming\nuanreg-dmpu
2015-03-12 16:51 - 2015-03-12 16:51 - 0002070 _____ () C:\Users\hp\AppData\Roaming\S-1-5-18
2015-03-12 16:51 - 2015-03-12 16:51 - 0000170 _____ () C:\Users\hp\AppData\Roaming\S-1-5-18-dm2
2015-03-12 16:51 - 2015-03-12 16:51 - 0026628 _____ () C:\Users\hp\AppData\Roaming\S-1-5-18-dmpu
2015-03-12 16:51 - 2015-03-12 16:51 - 0000180 _____ () C:\Users\hp\AppData\Roaming\S-1-5-19-dmpu
2015-03-12 16:51 - 2015-03-12 16:51 - 0000180 _____ () C:\Users\hp\AppData\Roaming\S-1-5-20-dmpu
2015-03-12 16:51 - 2015-03-12 16:51 - 0026940 _____ () C:\Users\hp\AppData\Roaming\S-1-5-21-30068578-1405947486-2441981919-1001
2015-03-12 16:51 - 2015-03-12 16:51 - 0065886 _____ () C:\Users\hp\AppData\Roaming\S-1-5-21-30068578-1405947486-2441981919-1001-dm2
2015-03-12 16:51 - 2015-03-12 16:51 - 0065896 _____ () C:\Users\hp\AppData\Roaming\S-1-5-21-30068578-1405947486-2441981919-1001-dmpu
2015-07-13 14:58 - 2015-07-13 14:58 - 0000268 ___RH () C:\Users\hp\AppData\Roaming\Transportation
2015-07-13 14:59 - 2015-07-13 14:59 - 0000268 ___RH () C:\Users\hp\AppData\Roaming\Treble Reduction
2015-07-13 14:58 - 2015-07-13 14:58 - 0000268 ___RH () C:\Users\hp\AppData\Roaming\Tremolo
2013-09-11 18:07 - 2013-12-06 16:26 - 0000112 _____ () C:\Users\hp\AppData\Roaming\WB.CFG
2013-09-11 18:07 - 2013-12-06 16:26 - 0000006 _____ () C:\Users\hp\AppData\Roaming\WBPU-TTL.DAT
2015-08-14 16:06 - 2016-08-31 12:27 - 0006144 _____ () C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-25 10:42 - 2015-05-25 10:42 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-11-28 17:10 - 2015-11-28 17:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-08-26 19:05 - 2015-08-26 19:05 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat
2015-07-13 14:59 - 2015-07-13 14:59 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT
2015-07-13 14:58 - 2016-02-17 14:17 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT
2015-07-13 14:58 - 2015-07-13 14:58 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT
2015-07-13 14:58 - 2015-07-13 14:58 - 0000268 ___RH () C:\ProgramData\Trumpet Section
2015-07-13 14:59 - 2015-07-13 14:59 - 0000268 ___RH () C:\ProgramData\Tuner
2015-07-13 14:58 - 2015-07-13 14:58 - 0000268 ___RH () C:\ProgramData\URLs
Bestanden om te verplaatsen of verwijderen:
====================
C:\ProgramData\fontcacheev1.dat
Sommige bestanden in TEMP:
====================
2017-03-03 12:22 - 2017-03-11 14:01 - 11745360 _____ () C:\Users\hp\AppData\Local\Temp\epim_install.exe
2017-03-09 15:36 - 2016-07-16 12:42 - 0616048 _____ (Microsoft Corporation) C:\Users\hp\AppData\Local\Temp\kernel32.dll
==================== Bamital & volsnap ======================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend
LastRegBack: 2017-03-10 15:33
==================== Eind van FRST.txt ============================
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 12-03-2017
Gestart door hp (13-03-2017 14:39:49)
Gestart vanaf C:\Users\hp\Desktop
Windows 10 Home Versie 1607 (X64) (2016-08-27 02:28:02)
Boot Modus: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-411354632-372324276-3053230233-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-411354632-372324276-3053230233-503 - Limited - Disabled)
Gast (S-1-5-21-411354632-372324276-3053230233-501 - Limited - Disabled)
hp (S-1-5-21-411354632-372324276-3053230233-1001 - Administrator - Enabled) => C:\Users\hp
==================== Security Center ========================
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Internet Security (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
==================== Genstalleerde programma's ======================
(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
AllDup 4.0.0 (HKLM-x32\...\AllDup_is1) (Version: 4.0.0 - Michael Thummerer Software Design)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09F}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASAP Utilities (HKLM-x32\...\ASAP Utilities_is1) (Version: 7.1 - Bastien Mensink - A Must in Every Office BV)
AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies)
AVG (Version: 16.141.7998 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4756 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.141.7998 - AVG Technologies)
AVG Zen (Version: 1.113.1 - AVG Technologies) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brackets (HKLM-x32\...\{0ED76FF2-9370-4437-8C51-39F27DD0361B}) (Version: 1.8 - brackets.io)
calibre (HKLM-x32\...\{BDE6D02A-86B7-4D4C-8248-7705C1C0CC79}) (Version: 2.78.0 - Kovid Goyal)
Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.4.30.2 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.4.20.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6713 - CyberLink Corp.)
CyberLink PhotoDirector (Version: 5.0.5.6713 - CyberLink Corp.) Hidden
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.5418 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4.4301 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.4.4301 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.1.4301 - CyberLink Corp.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 21.4.25 - Dropbox, Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.2 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
EssentialPIM (HKLM-x32\...\EssentialPIM) (Version: 7.23 - Astonsoft Ltd)
Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.)
FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HP Deskjet 2540 series Basissoftware van het apparaat (HKLM\...\{A7F14256-6DC6-458A-A92D-B5EEF79429AB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP Deskjet 2540 series Help (HKLM-x32\...\{50467ECF-F6A9-40EC-A649-67EB6FAD9894}) (Version: 30.0.0 - Hewlett Packard)
HP Documentation (HKLM\...\HP_Documentation) (Version: - HP)
HP ESU for Microsoft Windows 10 (HKLM-x32\...\{94D0EB60-8B2F-4A80-BA74-3D312434415F}) (Version: 11.2.2 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard)
HP Support Information (HKLM-x32\...\{76272057-98E0-4DC4-AAC3-10C546C47195}) (Version: 14.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{4CBA8ECF-0519-4583-91ED-F098522245EB}) (Version: 12.5.32.203 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - Hewlett-Packard Company)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1167 - Intel Corporation)
Intel(R) PRO/Wireless Driver (HKLM\...\{f3248475-9a51-4b89-875f-b8cf6f385fbd}) (Version: 19.00.0001.4542 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4590 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.7.0.1000 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{1A51AA9E-D4BC-4318-9419-B55EA4C95B3C}) (Version: 17.1.1525.1443 - Intel Corporation)
Intel PROSet/Wireless Software (HKLM-x32\...\{d5572863-793c-4ec8-872a-43cccc68b948}) (Version: 18.40.0 - Intel Corporation)
Intel Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IrfanView 4.44 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.44 - Irfan Skiljan)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Laplink PCmover Express - Personal Use (HKLM-x32\...\{7DD0370E-2BC4-4427-86A9-66BA6A476293}) (Version: 10.01.645 - Laplink Software, Inc.)
LibreOffice 5.2.0.4 (HKLM-x32\...\{8FA59B7B-1D26-408F-A798-BD11A65A68B9}) (Version: 5.2.0.4 - The Document Foundation)
Malwarebytes Anti-Malware versie 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Office 2013 voor Thuisgebruik en Studenten - nl-nl (HKLM\...\HomeStudentRetail - nl-nl) (Version: 15.0.4903.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8372 - MyHeritage.com)
Nero 2016 (HKLM-x32\...\{9C637A56-4287-487F-95BF-1422FC1AA879}) (Version: 17.0.04500 - Nero AG)
Nero 2016 Content Pack (HKLM-x32\...\{006F5CFF-ED35-41AF-9B2A-F52B0F545BF4}) (Version: 17.0.00200 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2003 - Nero AG)
Nuance Cloud Connector (HKLM-x32\...\{DE7C1B86-27EF-4D02-886E-17CC3458034B}) (Version: 3.2.713 - Nuance Communications, Inc.)
Nuance OmniPage 18 (HKLM-x32\...\{90F50D38-23E4-42AA-8483-75C1D8C546AB}) (Version: 18.1.0000 - Nuance Communications, Inc.)
Nuance PaperPort 14 (HKLM-x32\...\{AEF2D1F4-0696-11D5-8E6A-00C04F7FA234}) (Version: 14.5.0001 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{FC984E39-43D0-4AB2-ACC7-A7B87977B009}) (Version: 7.20.3274 - Nuance Communications, Inc.)
Nuance Power PDF Standard (HKLM\...\{BE12F131-4828-4E95-BD8D-416F4EC54DBB}) (Version: 2.00.6493 - Nuance Communications, Inc.)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4903.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4903.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4903.1002 - Microsoft Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0001 - Nuance Communications, Inc.)
Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden
Productverbeteringsonderzoek voor HP Deskjet 2540 series (HKLM\...\{08FB88A2-3FB6-4E82-AD55-393EBAD0E967}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.29093 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
RocketCake 1.3 (remove only) (HKLM-x32\...\RocketCake 1.3) (Version: - Ambiera)
Scansoft PDF Professional (x32 Version: - ) Hidden
Skype 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
SnailDriver version 1.0.0.3 (HKLM-x32\...\{3189DA22-4E71-4794-9F3D-39A3DE0062DE}_is1) (Version: 1.0.0.3 - SnailSuite)
Spotify (HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\Spotify) (Version: 1.0.45.186.g3b5036d6 - Spotify AB)
Stashimi Stub Installer (x32 Version: 18.001.1 - Nero AG) Hidden
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Web Companion (HKLM-x32\...\{f8333f97-3719-41d9-bf5e-de6cd61dd7e4}) (Version: 2.3.1479.2868 - Lavasoft)
WebsitePainter 3.3 (remove only) (HKLM-x32\...\WebsitePainter 3.3) (Version: - Ambiera)
==================== Aangepaste CLSID (gefilterd): ==========================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Geplande Taken (gefilterd) =============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
Task: {039577C7-FBF0-466C-922A-3E354429A26D} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {03B050EB-3F46-4760-8FCB-17F06192C40B} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2016-03-01] (Nero AG)
Task: {097074FB-FE9A-445F-8E37-DDC4D2C98327} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-13] (Dropbox, Inc.)
Task: {0A6A3921-9E05-487C-B42C-275AC0BAEF7C} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)
Task: {1041E34F-CF4E-4B82-851D-18A7EFA0AC8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-03-02] (HP Inc.)
Task: {1779FA68-7D00-4581-A97D-F050F1FF38B3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {23256F59-6013-48D8-9C90-DE0B5073E4A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {3617C53D-1963-45B0-A565-908FCB7F7689} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {37D68410-6B54-4EB6-84F8-70E73569CBDC} - System32\Tasks\SnailDriverSkipUSC => C:\Program Files (x86)\SnailSuite\SnailDriver\SnailLaunch.exe [2016-09-17] (SnailDrivers)
Task: {3A1EB3A6-B014-4500-AA43-43EBCC55BB4B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {4ECDA1D6-ED7C-438C-8C9F-4716801AC25D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {5BBF4113-0CFF-4060-A71A-0800815E1C6F} - System32\Tasks\HPCeeScheduleForhp => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {6D9FE2B2-8AD8-45BB-B384-6AA63D62B1F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {8413F711-9436-45EB-9E93-5822252028DC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-02-08] (HP Inc.)
Task: {8ECBB466-88FD-4C8E-8743-025BECB01EFE} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\hp\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {9431DA44-AA70-4BA2-83CD-EDF8CE6F50A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-02-08] (HP Inc.)
Task: {95D28F87-C725-4E0D-BD35-230928A976E6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-18] (Google Inc.)
Task: {A0DEF7DD-C6D3-4A65-95AC-088080D5DC0A} - System32\Tasks\SnailDriverSkipUAC => C:\Program Files (x86)\SnailSuite\SnailDriver\SnailDriver.exe [2016-09-17] (TODO: <???>)
Task: {A54D96B7-B048-47FF-8C53-82053158CEE9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-18] (Google Inc.)
Task: {BA2D2D59-1076-435E-A071-6ED4B99EFB59} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {C8992D5F-E453-46F8-B10C-54DE3D7FA691} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {D74D96F1-A606-4012-88D6-8C83F7A4A9DE} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {D9EBA43D-9153-449A-8074-2A5F1C01F7AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {DA9507D2-361E-4B10-BD9B-B31E019E7985} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-13] (Dropbox, Inc.)
Task: {DEF93AC5-7660-4D9D-9552-1F96CF5F0CBB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {EAC2B1F1-BAD1-48D2-B21F-02C16D90DB33} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {ED1B9773-22F5-4948-8D63-4CECB0FE9DA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {FB8E6183-E374-441E-A9BD-3E02BF7DAD5C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {FD7F2852-95B6-47FE-97AA-E6ED521D0B1B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {FFF4E6EF-9F04-4EE8-B0F0-4BCBCB81F4CF} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-06-19] ()
(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForhp.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Snelkoppelingen =============================
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
Shortcut: C:\Users\hp\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
Shortcut: C:\Users\hp\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
ShortcutWithArgument: C:\Users\hp\AppData\Local\Google\Chrome\User Data\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
==================== Geladen Modules (gefilterd) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 14:30 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-11 16:28 - 2017-01-17 03:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2017-01-13 13:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2030-01-12 06:08 - 2014-04-15 03:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2017-03-08 16:58 - 2017-03-08 16:58 - 00025232 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
2017-03-08 16:58 - 2017-03-08 16:58 - 00017048 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00037016 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll
2011-07-26 10:21 - 2011-07-26 10:21 - 00222064 _____ () C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
2016-12-14 14:30 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-16 10:46 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 15:49 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 15:48 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 15:48 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 15:48 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 15:48 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 15:48 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00080832 _____ () C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe
2017-03-13 11:57 - 2017-03-13 11:57 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-13 11:57 - 2017-03-13 11:57 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-13 11:57 - 2017-03-13 11:57 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-03-13 11:57 - 2017-03-13 11:57 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll
2017-03-07 11:45 - 2017-03-07 11:47 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8004.42017.0_x64__8wekyb3d8bbwe\HxMail.exe
2017-03-07 11:45 - 2017-03-07 11:48 - 13327552 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8004.42017.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-02-07 12:51 - 2017-02-01 10:47 - 02459992 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-07 12:51 - 2017-02-01 10:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00388032 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00318400 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2016-11-13 16:28 - 2016-09-26 16:53 - 00244672 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00125888 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00351168 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00080832 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00064448 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00289728 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00969664 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00031680 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00486336 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00281536 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00105408 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00072640 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00117696 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00158656 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00703424 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00105408 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2016-11-13 16:28 - 2016-09-26 16:54 - 00256960 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2016-11-13 16:28 - 2016-09-26 16:52 - 00179136 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2016-11-13 16:28 - 2015-02-26 00:00 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2011-07-26 10:13 - 2011-07-26 10:13 - 00292720 _____ () C:\Program Files (x86)\Nuance\Nuance Cloud Connector\sqlite3.dll
2011-07-26 10:13 - 2011-07-26 10:13 - 00079728 _____ () C:\Program Files (x86)\Nuance\Nuance Cloud Connector\zlib125.dll
2011-07-26 10:13 - 2011-07-26 10:13 - 00015216 _____ () C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSMui.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00129680 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00058512 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Common.Platform.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00018064 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.UpdateComponents.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00300688 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00030352 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.AvastWrapper.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00059032 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00128152 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.PUP.Management.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00038040 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll
2017-03-08 16:58 - 2017-03-08 16:58 - 00020624 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll
2016-11-28 20:09 - 2016-11-28 20:09 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2016-09-20 10:51 - 2016-09-20 10:51 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2015-09-04 19:34 - 2015-09-04 19:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (gefilterd) =========
(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)
AlternateDataStreams: C:\ProgramData\Temp:A303874F [233]
AlternateDataStreams: C:\ProgramData\Temp:AB1A1E3D [728]
AlternateDataStreams: C:\ProgramData\Temp:FD9CE1F3 [254]
==================== Veilige Modus (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)
==================== Bestandskoppeling (gefilterd) ===============
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)
==================== Internet Explorer vertrouwde/beperkte toegang ===============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts inhoud: ===============================
(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)
2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere gebieden ============================
(Momenteel is er geen automatische fix voor dit onderdeel.)
HKU\S-1-5-21-411354632-372324276-3053230233-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hp\Pictures\2016-08\IMG_1886.JPG
DNS Servers: 192.168.2.254 - 195.121.1.34
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
HKLM\...\StartupApproved\StartupFolder: => "Acer Backup Manager Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Image Transfer Utility.lnk"
HKLM\...\StartupApproved\StartupFolder: => "ImageBrowser EX Agent.lnk"
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Nuance Cloud Connector.lnk"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "BakupManagerTray"
HKLM\...\StartupApproved\Run32: => "IndexSearch"
HKLM\...\StartupApproved\Run32: => "NBAgent"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "Nuance OmniPage 18-reminder"
HKLM\...\StartupApproved\Run32: => "Nuance PDF Reader-reminder"
HKLM\...\StartupApproved\Run32: => "Nuance Power PDF Standard-reminder"
HKLM\...\StartupApproved\Run32: => "NuanPowerPdf1NPDFLM"
HKLM\...\StartupApproved\Run32: => "OmniPage Preload"
HKLM\...\StartupApproved\Run32: => "PaperPort PTD"
HKLM\...\StartupApproved\Run32: => "PowerPDF Registry Controller"
HKLM\...\StartupApproved\Run32: => "PPort14reminder"
HKLM\...\StartupApproved\Run32: => "Reader Application Helper"
HKLM\...\StartupApproved\Run32: => "Servicetool"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\StartupFolder: => "Download Foghat Last Train Home(rock blues)(mp3@320)[rogercc] Torrent - KickassTorrents.lnk"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\StartupFolder: => "Download The Beatles - Discography [studio] FLAC [24 Bit - 96 kHz] Torrent - KickassTorrents.lnk"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\StartupFolder: => "Verzenden naar OneNote.lnk"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "EssentialPIM"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "WinSweep"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "LaplinkOffers"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-411354632-372324276-3053230233-1001\...\StartupApproved\Run: => "SnailDriver"
==================== Firewall regels (gefilterd) ===============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6AB7ED34-9961-4774-BD86-3BEC9CE84DC4}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe
FirewallRules: [{418D8361-8458-4492-B950-33594DCE7917}] => (Allow) C:\Program Files (x86)\Nero\KM\MediaHome.exe
FirewallRules: [{03ED0D64-158D-4EC2-92A1-DA65BFF2BA6A}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{276E869E-3646-48FA-853C-AC64CBB4F37E}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe
FirewallRules: [UDP Query User{C6529D80-9666-4E09-A9B6-21CA6AF67B94}C:\program files (x86)\essentialpim\essentialpim.exe] => (Allow) C:\program files (x86)\essentialpim\essentialpim.exe
FirewallRules: [TCP Query User{4D403093-BE95-4BE9-BA3E-1192377D8EC8}C:\program files (x86)\essentialpim\essentialpim.exe] => (Allow) C:\program files (x86)\essentialpim\essentialpim.exe
FirewallRules: [{AEFD4668-4694-4703-A2BC-9BBBAC13580A}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{60579B97-DFF5-42C3-9F5C-9C60789DAB6C}] => (Allow) LPort=5357
FirewallRules: [{235698EC-FD79-46F3-9F4D-E1E3C01FCF99}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe
FirewallRules: [{D3B1A9A7-0A42-4A72-9CCD-2E8B57E028F9}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [UDP Query User{6DF10477-4624-4E00-864B-E26D74F763EF}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DCD7D63E-7EC8-45B6-97D0-F8520ABF538F}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe
FirewallRules: [{99EA1613-FC7A-412D-998B-E3F5EB57C5AF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3D975A89-E41C-49F1-8FB4-90CDE296EB94}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B92BED62-F3AF-483C-8B33-6FE171752BE0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{44698FAC-C45E-4EC3-BB94-09A51802B4B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{CDA75305-0139-4367-9F68-84D9D75AEFF5}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{AB803BA5-471C-422B-8598-00F50F5D17A0}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{46A68136-42D3-4A34-87DA-E4AF12BADBC1}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{CC2FF20B-6862-4BFB-BEB3-58E6BA2CE5FC}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6C47FB1F-443D-45C1-86D9-73EA4F3C2A12}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\OmniPage18.exe
FirewallRules: [{80406DEE-2858-4890-A2CB-FEA6CBA31F52}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\OmniPage18.exe
FirewallRules: [{965C751D-CD6C-4987-B05F-D7CCEC0EAC55}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\PPMV.exe
FirewallRules: [{EE894D7E-8950-479E-8748-68E9C8990A30}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\PPMV.exe
FirewallRules: [{53805EF4-E39B-4AE1-AD49-AD70D7F79600}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe
FirewallRules: [{80ED88F1-2377-44CA-B4DF-D1FF26193487}] => (Allow) C:\Program Files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe
FirewallRules: [{A44A0838-0704-4C36-9200-8033E74BA7ED}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladinetClient.exe
FirewallRules: [{81908B42-1A71-43AD-A483-A8F3C3FCA810}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladinetClient.exe
FirewallRules: [{EB3906A2-D509-4A1D-B489-A501E0FADD19}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
FirewallRules: [{F16A0884-F70F-41C1-9A40-D83BDC2E8BD6}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
FirewallRules: [{AA96EC0D-E617-43DA-A5E7-4C1EEBADE0AE}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr2003.exe
FirewallRules: [{1C40B258-26C6-4383-A1B3-5767F03E48B2}] => (Allow) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr2003.exe
FirewallRules: [{DC9E0F3C-E629-41D5-9E26-0137393E22F9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{09E622EC-A4B6-453E-9AE9-17D354EC5A3F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{FEDB59B3-B325-4058-887C-1673CE5FDC9E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{08C9E55D-97A5-46D9-9AC6-CF936C8CD43D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{45439636-DC02-4021-B047-75D886753185}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{AA018E3B-9272-4A01-8B02-ED0970CF2137}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{341A3F6D-D8B3-4E84-AD57-302A59CE0566}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{A9CF5EDA-116C-4F57-B01C-18D9010D6D33}C:\program files (x86)\brackets\node.exe] => (Block) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{9B780454-43C0-42F0-8297-F24F33A642D6}C:\program files (x86)\brackets\node.exe] => (Block) C:\program files (x86)\brackets\node.exe
FirewallRules: [{14405501-82A7-460F-BA71-664CF4CF74AA}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Herstelpunten =========================
21-02-2017 13:20:38 Gepland controlepunt
28-02-2017 15:04:12 D20170228
03-03-2017 11:37:43 Installed Brackets
10-03-2017 15:36:35 Gepland controlepunt
13-03-2017 12:22:37 Herstelbewerking
==================== Defecte Apparaatbeheer Apparaten =============
==================== Eventlog fouten: =========================
Applicatiefouten:
==================
Error: (03/13/2017 02:26:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-O9S8BV1)
Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2147417836. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.
Error: (03/13/2017 01:20:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: IAStorDataMgrSvc.exe, versie: 14.7.0.1000, tijdstempel: 0x55f7ca99
Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000
Uitzonderingscode: 0xc0000005
Foutmarge: 0x061d4765
Id van proces met fout: 0x3318
Starttijd van toepassing met fout: 0x01d29bf441a9175f
Pad naar toepassing met fout: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pad naar module met fout: unknown
Rapport-id: 947e45aa-b2e0-4819-a800-f70f5af89def
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (03/13/2017 01:20:59 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: IAStorDataMgrSvc.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.NullReferenceException
bij IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
bij IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
bij IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bij System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bij System.Threading.ThreadPoolWorkQueue.Dispatch()
bij System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (03/13/2017 01:18:06 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Er is tijdens Systeemherstel een onbekende fout opgetreden: (D20170228). Aanvullende gegevens: 0x80070091.
Error: (03/13/2017 12:50:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: IAStorDataMgrSvc.exe, versie: 14.7.0.1000, tijdstempel: 0x55f7ca99
Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000
Uitzonderingscode: 0xc0000005
Foutmarge: 0x05414765
Id van proces met fout: 0x148
Starttijd van toepassing met fout: 0x01d29befeff85bf7
Pad naar toepassing met fout: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pad naar module met fout: unknown
Rapport-id: fc0f4219-b154-4b4f-bd9a-02d07dabb499
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (03/13/2017 12:50:09 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: IAStorDataMgrSvc.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.NullReferenceException
bij IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
bij IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
bij IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bij System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bij System.Threading.ThreadPoolWorkQueue.Dispatch()
bij System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (03/13/2017 12:48:19 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Er is tijdens Systeemherstel een onbekende fout opgetreden: (Installed Brackets). Aanvullende gegevens: 0x80070091.
Error: (03/13/2017 12:22:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Toegang geweigerd.
.
Error: (03/13/2017 11:54:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: IAStorDataMgrSvc.exe, versie: 14.7.0.1000, tijdstempel: 0x55f7ca99
Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000
Uitzonderingscode: 0xc0000005
Foutmarge: 0x05434765
Id van proces met fout: 0x2224
Starttijd van toepassing met fout: 0x01d29be8369796c4
Pad naar toepassing met fout: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pad naar module met fout: unknown
Rapport-id: 644d95bb-2f75-403c-8ca8-5e2600ae9c89
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (03/13/2017 11:54:51 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: IAStorDataMgrSvc.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.NullReferenceException
bij IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
bij IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
bij IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bij System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bij System.Threading.ThreadPoolWorkQueue.Dispatch()
bij System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Systeemfouten:
=============
Error: (03/13/2017 02:38:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O9S8BV1)
Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (03/13/2017 02:33:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O9S8BV1)
Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (03/13/2017 02:31:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O9S8BV1)
Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (03/13/2017 02:24:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (03/13/2017 01:21:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O9S8BV1)
Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (03/13/2017 01:21:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: De Intel(R) Rapid Storage Technology-service is onverwacht beindigd. Dit is nu 1 keer gebeurd.
Error: (03/13/2017 01:17:11 PM) (Source: bowser) (EventID: 8016) (User: )
Description: Het browserstuurprogramma heeft te veel ongeldige datagrammen van de externe computer EXPERIA ontvangen om DESKTOP-O9S8BV1 op transport NetBT_Tcpip_{37EA48E0-74CE-4858-AE88-9BC24C0F7625} te kunnen benoemen. Raadpleeg het datagram voor verdere gegevens.
Er worden pas weer gebeurtenissen gegenereerd nadat de herstelfrequentie is verlopen.
Error: (03/13/2017 01:16:32 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5
Error: (03/13/2017 12:50:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O9S8BV1)
Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (03/13/2017 12:49:59 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: De Host synchroniseren_6fd78-service is gestopt met de volgende foutcode:
Toegang geweigerd.
.
CodeIntegrity:
===================================
Date: 2017-03-13 14:38:34.963
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\LavasoftTcpService64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 14:38:27.126
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\LavasoftTcpService64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 14:36:51.525
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\LavasoftTcpService64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 14:36:51.520
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\LavasoftTcpService64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:23:19.068
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:21:51.756
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:21:51.754
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:21:51.753
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:21:51.625
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\LavasoftTcpService64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 13:21:51.426
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume3\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Geheugen info ===========================
Processor: Intel(R) Core(TM) i5-6400T CPU @ 2.20GHz
Percentage geheugen in gebruik: 42%
Totaal fysiek RAM-geheugen: 8052.35 MB
Beschikbaar fysiek RAM-geheugen: 4638.22 MB
Totaal Virtueel geheugen: 9332.35 MB
Beschikbaar Virtual geheugen: 5784.4 MB
==================== Schijven ================================
Drive c: (Windows) (Fixed) (Total:918.13 GB) (Free:662.04 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:12.07 GB) (Free:1.55 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]
==================== MBR & Partitietabel ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: B6C68F4D)
Partition: GPT.
==================== Eind van Addition.txt ============================