Beste Abraham,
Alvast weer bedankt dat je mij helpt! Hierbij de logs;
Gr. Jeltjo
Addition;
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 24-09-2017
Gestart door Jelle (25-09-2017 14:34:20)
Gestart vanaf C:\Users\Jelle\Desktop
Windows 10 Home Versie 1607 (X64) (2016-12-07 12:45:54)
Boot Modus: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1366861136-3118521387-3878673927-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1366861136-3118521387-3878673927-503 - Limited - Disabled)
Gast (S-1-5-21-1366861136-3118521387-3878673927-501 - Limited - Disabled)
Jelle (S-1-5-21-1366861136-3118521387-3878673927-1001 - Administrator - Enabled) => C:\Users\Jelle
==================== Security Center ========================
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Norman Security Suite Anti-Virus (Disabled - Up to date) {EE1E9DC5-F163-7545-FFEE-B15767C7A7EB}
AV: AVG Antivirus (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
AS: Norman Security Suite Anti-Spyware (Disabled - Up to date) {557F7C21-D759-7ACB-C55E-8A251C40ED56}
==================== Geïnstalleerde programma's ======================
(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)
@bios B13.0703.1 (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE) Hidden
@bios B13.0703.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.22) - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AB0000000001}) (Version: 11.0.22 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.33 - NVIDIA Corporation) Hidden
App Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.13.1015 - Gigabyte)
AVG (HKLM\...\{BA40B3B4-7707-437E-84FF-8C18BE5AD9B6}) (Version: 1.211.2 - AVG Technologies) Hidden
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.6.3029 - AVG Technologies)
BUSB B13.0508.1 (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.00.0000 - GIGABYTE)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: 1.7 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: - ) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version: - )
Canon MP270 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP270_series) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
De Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
De Sims™ 3 Beestenbende (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
De Sims™ 3 Jaargetijden (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
De Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.00.0002 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.00.0002 - GIGABYTE)
Emergency 5 (HKLM-x32\...\Emergency 5_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
EZSetupN B13.0628.1 (HKLM-x32\...\{9EAB60B6-70FE-4EC7-8DF4-54773E4EAC05}) (Version: 1.00.0000 - GIGABYTE) Hidden
EZSetupN B13.0628.1 (HKLM-x32\...\InstallShield_{9EAB60B6-70FE-4EC7-8DF4-54773E4EAC05}) (Version: 1.00.0000 - GIGABYTE)
FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production)
FMW 1 (HKLM\...\{2B66FCDA-0BD6-47CC-8EC5-C2EA02E03EB2}) (Version: 1.224.4 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Drive (HKLM-x32\...\{F9A2761E-C1E4-4384-92A3-5732C9738327}) (Version: 2.34.6717.9565 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8302}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8303}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8304}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8305}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8306}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8307}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8308}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8309}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830A}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830B}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830C}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830D}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830E}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D830F}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8310}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
Malwarebytes versie 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 (HKLM-x32\...\EXCEL) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office PowerPoint 2007 (HKLM-x32\...\POWERPOINT) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word 2007 (HKLM-x32\...\WORD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Nero 7 Ultra Edition (HKLM-x32\...\{293C9DF5-7669-4826-BBB2-E1F182D71043}) (Version: 7.02.8631 - Nero AG)
NVIDIA 3D Vision controllerstuurprogramma 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision stuurprogramma 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.3.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.3.0.95 - NVIDIA Corporation)
NVIDIA Grafisch stuurprogramma 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.3.5.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM-x32\...\{F246092E-FA0B-47C8-9D3E-CF8C210293C8}) (Version: 14.1.1282 - Trimble Navigation Limited)
Smart Recovery 2 B13.0627.1 (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B13.0508.1 (HKLM-x32\...\{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE) Hidden
Smart TimeLock B13.0508.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Spotify (HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Spotify) (Version: 1.0.63.617.g5aca9a2a - Spotify AB)
Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.4.1 - Unified Intents AB)
Unity Web Player (HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0413-0000-0000000FF1CE}_EXCEL_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version: - Microsoft)
Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0413-0000-0000000FF1CE}_POWERPOINT_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version: - Microsoft)
Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0413-0000-0000000FF1CE}_WORD_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version: - Microsoft)
Vital Sign Simulator (HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\cb6a7d6f9043725d) (Version: 1.2.0.0 - Zege Zottel)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Aangepaste CLSID (gefilterd): ==========================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\ChromeHTML: -> <==== AANDACHT
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{0D327DA6-B4DF-4842-B833-2CFF84F0948F}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2017\acad.exe /Automation => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2017\acad.exe => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Program Files\Autodesk\AutoCAD 2017\en-US\acadficn.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => Geen bestand
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Jelle\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> Geen bestand
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> Geen bestand
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => D:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-07] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => D:\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG)
ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers1-x32: [NormanAntiMalwareScanner] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers1-x32: [NVC] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers2: [NormanAntiMalwareScanner] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers4: [NormanAntiMalwareScanner] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers4: [NVC] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-02] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-11-02] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => D:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-07] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [NVC] -> {D5507020-DB45-11d1-A5F0-00600872F78D} => C:\Program Files\Norman\nvc\bin\nvcse64.dll [2014-11-11] (Norman Safeground AS)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal)
==================== Geplande Taken (gefilterd) =============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
Task: {005C83A4-3738-4432-97F5-2E25610074EB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT
Task: {1344F01C-9C2D-4D34-BCBB-2505DB0AD6C7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT
Task: {18537444-27D8-4413-8E27-5F3B359C7421} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Geen bestand <==== AANDACHT
Task: {1D1630FB-C0AE-4035-AED8-F65AD397F7D5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT
Task: {292B215A-3396-4584-81A1-D06E7DCD6A20} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT
Task: {29B5E86D-4CA7-4615-8CDD-3440D12E4B65} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {2F3A6C16-41F2-4A04-A064-939C4014DA01} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT
Task: {30BA04F2-80FC-4F55-AE60-54FA5AF2CE60} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT
Task: {3BDE9C5C-B4A5-474E-A8DF-52755DB8A593} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Geen bestand <==== AANDACHT
Task: {3C3600D9-4437-4FF7-B94C-62C84F247132} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20] (NVIDIA Corporation)
Task: {419A3A75-5FB0-4FD6-8DE3-FB8AC8C1358D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Geen bestand <==== AANDACHT
Task: {4807620E-E914-46D7-99B1-81B1161EB195} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {4A58E72B-AB73-47AD-A518-4B1685514B43} - System32\Tasks\Antivirus Emergency Update => D:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-09-07] (AVG Technologies CZ, s.r.o.)
Task: {4AF6E164-E183-4C6D-AF4F-F5CC0D922BDF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Geen bestand <==== AANDACHT
Task: {64381091-AE5C-45D5-94C6-2CDA92A613D9} - System32\Tasks\{442EF289-DF41-401F-B3B0-1DD0F9A22031} => C:\Windows\system32\pcalua.exe -a C:\Users\Jelle\Downloads\akb04_software_v1.01.exe -d C:\Users\Jelle\Downloads
Task: {76384335-235B-4D09-9635-D315C5F4B1E7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {7CF2BDEB-10CF-46EA-92A4-3050472E56FF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-20] (NVIDIA Corporation)
Task: {84328C9F-FA93-43AD-B837-876ED2E36F1E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {8D8675AF-8DD5-4920-89F1-CF3A56F98024} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT
Task: {A2F18AB4-AEB7-48A7-8514-3E536C0542A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT
Task: {A67EAE83-44B3-441D-A2CE-44397D53CEE5} - \Microsoft\Windows\Setup\gwx\rundetector -> Geen bestand <==== AANDACHT
Task: {ACAB9081-4DFC-4DC6-B65B-7C5F1CD0D22F} - \WPD\SqmUpload_S-1-5-21-1366861136-3118521387-3878673927-1001 -> Geen bestand <==== AANDACHT
Task: {B58D6289-764C-41E8-9465-4A334F3BC6FD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {BF760C69-F234-488E-AEAB-3D494603AB09} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT
Task: {C4329506-5604-4CD1-9A23-2E380E0B682B} - \Microsoft\Windows\Setup\EOONotify -> Geen bestand <==== AANDACHT
Task: {D49046B7-8DDA-4B2C-ACB9-A93B9BF7C219} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {D954EB13-56EB-4B80-B162-632631769E41} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT
Task: {DD6E462A-CD96-420E-B520-CB234BAB094A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-20] (NVIDIA Corporation)
Task: {E03844C4-A584-4468-8C80-D901D69EC68F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-13] (Adobe Systems Incorporated)
Task: {E4E71782-ACE5-4E5F-A204-E03C2F65A4DC} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {FECBEBD0-1C0B-4E74-8591-1D11420C4B9D} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Snelkoppelingen & WMI ========================
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
Shortcut: C:\Users\Jelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV\Go to OpenIV web site.lnk -> hxxp://openiv.com
ShortcutWithArgument: C:\Users\Jelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default
==================== Geladen Modules (gefilterd) ==============
2016-11-29 21:51 - 2017-01-20 20:39 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-29 21:51 - 2017-01-20 20:39 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-05-10 13:02 - 2017-04-28 02:49 - 002681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-12-07 14:26 - 2016-12-29 14:44 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-10 19:28 - 2016-09-07 06:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-20 20:10 - 2017-03-04 08:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-20 20:11 - 2017-03-04 08:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-20 20:11 - 2017-03-04 08:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-20 20:11 - 2017-03-04 08:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-10 13:01 - 2017-04-28 01:36 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-10 13:01 - 2017-04-28 01:37 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-06-29 17:28 - 2017-06-29 17:28 - 069763560 _____ () C:\Program Files\Rockstar Games\Social Club\libcef.dll
2016-12-29 15:45 - 2016-12-29 15:45 - 003954688 _____ () D:\Program Files\Rockstar Games\Grand Theft Auto V\GFSDK_ShadowLib.win64.dll
2016-12-29 13:29 - 2015-02-06 18:15 - 000094720 _____ () D:\Program Files\Rockstar Games\Grand Theft Auto V\GFSDK_TXAA_AlphaResolve.win64.dll
2017-06-12 11:56 - 2017-04-05 14:06 - 003881984 _____ () D:\Program Files\Rockstar Games\Grand Theft Auto V\TrainerV.asi
2016-01-14 23:34 - 2017-01-20 20:39 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-29 21:51 - 2017-01-20 20:39 - 003774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-29 21:51 - 2017-01-20 20:39 - 000900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-02 14:51 - 2016-12-02 14:50 - 048920064 _____ () D:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-09-07 18:43 - 2017-09-07 18:43 - 000168216 _____ () D:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2017-09-07 18:43 - 2017-09-07 18:43 - 000060160 _____ () D:\Program Files (x86)\AVG\Antivirus\module_lifetime.dll
2017-06-27 11:04 - 2017-06-27 11:04 - 067109376 _____ () D:\Program Files (x86)\AVG\Antivirus\libcef.dll
2017-09-07 18:43 - 2017-09-07 18:43 - 000213024 _____ () D:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
2017-09-07 18:43 - 2017-09-07 18:43 - 000243080 _____ () D:\Program Files (x86)\AVG\Antivirus\tasks_core.dll
2017-09-07 18:43 - 2017-09-07 18:43 - 000686808 _____ () D:\Program Files (x86)\AVG\Antivirus\ffl2.dll
2016-11-29 21:51 - 2017-01-20 20:38 - 064245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-11-29 21:51 - 2017-01-20 15:36 - 000338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-29 21:51 - 2017-01-20 15:36 - 000254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-29 21:51 - 2017-01-20 15:36 - 002808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-29 21:51 - 2017-01-20 15:36 - 000384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-29 21:51 - 2017-01-20 15:36 - 000537656 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-29 21:51 - 2017-01-20 15:36 - 000468024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-29 21:51 - 2017-01-20 15:36 - 001066552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2017-01-17 16:48 - 2017-01-20 15:36 - 001014840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
==================== Alternate Data Streams (gefilterd) =========
(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)
==================== Veilige Modus (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Bestandskoppeling (gefilterd) ===============
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\Software\Classes\.scr: AutoCADScriptFile =>
==================== Internet Explorer vertrouwde/beperkte toegang ===============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)
==================== Hosts inhoud: ===============================
(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)
2013-08-22 15:25 - 2013-08-22 15:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere gebieden ============================
(Momenteel is er geen automatische fix voor dit onderdeel.)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jelle\Desktop\autumn-wallpaper-37.jpg
DNS Servers: 192.168.2.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
==================== Firewall regels (gefilterd) ===============
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
FirewallRules: [UDP Query User{CB760B60-07AD-437C-A151-109290891EED}C:\users\jelle\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\jelle\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{2C7FF726-A7FB-45FA-B46B-79441233C9AC}C:\users\jelle\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\jelle\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{63C590BF-A0CB-49D8-B3B3-F0C2074FFE78}C:\users\jelle\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\jelle\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{BE481067-6661-42D4-9E31-D2020555B7CF}C:\users\jelle\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\jelle\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{DF6E59F5-F028-488A-9A9E-347E3805D3E1}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [TCP Query User{770CD7CE-AEC9-42D2-87D8-9DE9701E1412}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [TCP Query User{099B68CB-A37D-492C-9082-7B702A96F899}D:\program files\rainbowsix\tom clancy's rainbow six vegas 2\binaries\r6vegas2_game.exe] => (Allow) D:\program files\rainbowsix\tom clancy's rainbow six vegas 2\binaries\r6vegas2_game.exe
FirewallRules: [UDP Query User{E2044D11-4B7B-4DAE-B565-B3ADD390A2A1}D:\program files\rainbowsix\tom clancy's rainbow six vegas 2\binaries\r6vegas2_game.exe] => (Allow) D:\program files\rainbowsix\tom clancy's rainbow six vegas 2\binaries\r6vegas2_game.exe
FirewallRules: [{36A53540-B0D1-4DFC-A242-DA14A84D1FF9}] => (Allow) D:\Program Files\Vuze\Azureus.exe
FirewallRules: [{3AE58D47-7A6A-4EDE-AC85-08B844040C72}] => (Allow) D:\Program Files\Vuze\Azureus.exe
FirewallRules: [{995DD411-4ABA-4955-BAE5-8666AD628764}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{48D13E14-46D4-4F82-A81E-3DE11C4CEE4E}] => (Allow) LPort=2869
FirewallRules: [{877EC1CA-48F0-463A-A4B4-8C4AD4D0E5D3}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{3B7BDC7B-383C-4BAF-A00E-B80127476D5F}D:\program files\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{77313365-E14D-4F83-89C5-324E3013C040}D:\program files\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [TCP Query User{248B6DB1-30C1-491B-92FC-4925110D6983}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{BB127CEE-0D9A-49BF-8F26-0F41D1C05F87}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{E8F4E808-65E0-47AC-9A88-243B6810E2B9}D:\program files\call of duty modern warfare 3\iw5sp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [UDP Query User{DD7FD3FF-81A5-4FE7-B4F6-BCB47D41E318}D:\program files\call of duty modern warfare 3\iw5sp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [{3B8A5AC9-46A8-4561-AE83-B7330E5CC940}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{F4BAD4BE-71C8-4AE8-A7F8-4938148F8896}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C808E4BE-5399-4DAA-8202-6E9270A13CE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F0F233DC-ED5F-47DD-B167-94BABC096273}] => (Allow) C:\Program Files (x86)\Laerdal Medical\Instructor Application\ServerApplication\ri\CTGServer.exe
FirewallRules: [{BEC0778A-2769-43C3-910B-148CB63A7F28}] => (Allow) C:\Program Files (x86)\Laerdal Medical\Instructor Application\InstructorApplication\InstructorApplication.exe
FirewallRules: [{71BADD40-096F-4BD6-B089-D73FCAE8B016}] => (Allow) LPort=11000
FirewallRules: [{C2A774E4-C8DB-4FA7-9529-16A37AE56E1B}] => (Allow) LPort=11001
FirewallRules: [{BB0FA061-1BCC-4BA0-BD38-74B2A878C9C6}] => (Allow) LPort=11005
FirewallRules: [{532993CB-162E-4CFC-BED5-14EBBE8298DF}] => (Allow) LPort=11006
FirewallRules: [{D1FF0CFB-981D-403D-87DB-32D84C6F0641}] => (Allow) LPort=15000
FirewallRules: [{7BF357B1-D27E-4AB1-BFAC-B8AEEA21362E}] => (Allow) LPort=15001
FirewallRules: [{29E2F839-50D1-49C2-B4DA-B4C2CF7577A7}] => (Allow) LPort=15007
FirewallRules: [{3FCB21D9-129C-4A9B-8AA5-8C529C475C6A}] => (Allow) LPort=9898
FirewallRules: [{5B66097B-91D1-41A8-A651-CA2C57AE256E}] => (Allow) C:\Program Files (x86)\Laerdal Medical\Instructor Application\ServerApplication\ri\ri_app.exe
FirewallRules: [{E6DD887B-0ADF-42C6-BB74-20E3BCC32412}] => (Allow) LPort=15000
FirewallRules: [{27C15109-83E5-4AAE-A145-F47D79ACC461}] => (Allow) LPort=15001
FirewallRules: [{BD5B2DCF-B484-44B6-A327-01FBAB8A48FA}] => (Allow) LPort=15020
FirewallRules: [{C653D550-C500-4974-9B8B-C40D591D4E05}] => (Allow) LPort=15021
FirewallRules: [{9E5C612E-EF8E-4F46-B096-5EBA5FA38CDC}] => (Allow) LPort=15022
FirewallRules: [{8E9F4B97-9162-4684-A500-BA2B099A693D}] => (Allow) LPort=15023
FirewallRules: [{495A1B74-9534-4329-A2BB-845504E76C69}] => (Allow) LPort=15024
FirewallRules: [{5D45CE2B-0D49-4DDD-8AD8-01C752E88640}] => (Allow) C:\Program Files (x86)\Laerdal Medical\Instructor Application\AuxiliaryTools\VoiceConferenceApplication\VoiceConferenceApplication.exe
FirewallRules: [{403A564C-BC3C-4FD8-84F0-63C57673183F}] => (Allow) C:\Program Files\Bonjour\mDNSresponder.exe
FirewallRules: [{5E72139F-922F-419F-8493-4227B9F723B4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSresponder.exe
FirewallRules: [TCP Query User{9FEDDE67-E2C5-4BD3-A5E1-24218A29B6B7}D:\program files\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{D74A3796-2032-4B2C-B491-AF1075D0231D}D:\program files\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\program files\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [TCP Query User{09CDCD96-3566-4A6C-952E-2DB5CCC0D2A1}C:\users\jelle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jelle\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{57C6A8AB-3FA7-4C53-BEF8-CD50C3D096EA}C:\users\jelle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jelle\appdata\roaming\spotify\spotify.exe
FirewallRules: [{56D96205-66EB-4D31-BF16-584F2FC27478}] => (Allow) D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [{AFF69199-E7F1-4259-8AC3-433A301477B7}] => (Allow) D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
FirewallRules: [{360A5862-0425-41D8-A0D6-AC743852AD4E}] => (Allow) LPort=51001
FirewallRules: [{FD3812EA-990C-4AC2-B642-79FBEE768AEB}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe
FirewallRules: [{223C236B-C40D-4CBE-853F-6406E404EAFB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{DE6C00B4-9CC2-4D89-A827-1B32B804E37B}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{E9FBC42D-B3EB-4482-9EED-05884392A5CD}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{4E834681-7841-4F14-98E6-B1E56CE44769}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{CC521EA5-1185-4436-8024-217B9C085D28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{D61AEE64-8FCB-4264-A869-2BF098CB5886}] => (Allow) D:\Program Files\Vuze\Azureus.exe
FirewallRules: [{62F31A4D-1D0F-498E-A843-EC16F288BF4B}] => (Allow) D:\Program Files\Vuze\Azureus.exe
FirewallRules: [{30235970-482B-416E-8009-2E80F75B58DD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{17C62E43-9D3C-4A79-BF23-69939DB854FC}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{67EE4E08-7A7F-4CD0-B1D3-C51C13DFA38A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Herstelpunten =========================
==================== Defecte Apparaatbeheer Apparaten =============
==================== Eventlog fouten: =========================
Applicatiefouten:
==================
Error: (09/25/2017 12:57:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: TiWorker.exe, versie: 10.0.14393.693, tijdstempel: 0x585a2af3
Naam van module met fout: wcp.dll, versie: 10.0.14393.1561, tijdstempel: 0x597035ed
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000000000018478b
Id van proces met fout: 0x2a30
Starttijd van toepassing met fout: 0x01d33586a921d2c0
Pad naar toepassing met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
Pad naar module met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\wcp.dll
Rapport-id: c93698d8-eb3f-4d89-b3a2-235cf75bda02
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (09/25/2017 01:04:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JELLE)
Description: Het activeren van de app Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.
Error: (09/25/2017 12:44:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: TiWorker.exe, versie: 10.0.14393.693, tijdstempel: 0x585a2af3
Naam van module met fout: wcp.dll, versie: 10.0.14393.1561, tijdstempel: 0x597035ed
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000000000018478b
Id van proces met fout: 0x1b90
Starttijd van toepassing met fout: 0x01d335860ebaa8c5
Pad naar toepassing met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
Pad naar module met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\wcp.dll
Rapport-id: c0f9fafb-0acc-402a-bb80-e7bf83c08a25
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (09/20/2017 06:17:03 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Toegang geweigerd.
.
Error: (09/19/2017 07:00:06 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Toegang geweigerd.
.
Error: (09/19/2017 06:42:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: TiWorker.exe, versie: 10.0.14393.693, tijdstempel: 0x585a2af3
Naam van module met fout: wcp.dll, versie: 10.0.14393.1561, tijdstempel: 0x597035ed
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000000000018478b
Id van proces met fout: 0x2bac
Starttijd van toepassing met fout: 0x01d331663c2307e1
Pad naar toepassing met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
Pad naar module met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\wcp.dll
Rapport-id: 974ea898-6f7d-4430-924f-1ea780e561f7
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (09/13/2017 10:53:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.
Error: (09/13/2017 10:33:45 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Toegang geweigerd.
.
Error: (09/13/2017 04:48:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: TiWorker.exe, versie: 10.0.14393.693, tijdstempel: 0x585a2af3
Naam van module met fout: wcp.dll, versie: 10.0.14393.1561, tijdstempel: 0x597035ed
Uitzonderingscode: 0xc0000005
Foutmarge: 0x000000000018478b
Id van proces met fout: 0x2a78
Starttijd van toepassing met fout: 0x01d32c9f5e3c65b2
Pad naar toepassing met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
Pad naar module met fout: C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\wcp.dll
Rapport-id: 356ae855-e4b0-457d-a3ce-45b69fcd48c8
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (09/08/2017 07:25:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JELLE)
Description: Het activeren van de app Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen is mislukt door de fout -2144927142. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.
Systeemfouten:
=============
Error: (09/25/2017 12:45:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
en APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (09/25/2017 01:04:57 AM) (Source: DCOM) (EventID: 10010) (User: PC-JELLE)
Description: De server App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (09/25/2017 01:04:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (09/25/2017 12:53:11 AM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
Error: (09/25/2017 12:41:47 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x8007371b: 2017-09 Cumulatieve update voor op Windows 10 Version 1607 for x64 gebaseerde systemen (KB4038782).
Error: (09/25/2017 12:40:47 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
en APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (09/25/2017 12:37:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: De NWSCMON2-service is afhankelijk van de NVOY-service, die vanwege de volgende fout niet kan worden gestart:
De bewerking is voltooid.
Error: (09/25/2017 12:37:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: De NPROSECSVC-service is afhankelijk van de NVOY-service, die vanwege de volgende fout niet kan worden gestart:
De bewerking is voltooid.
Error: (09/25/2017 12:37:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: De NNFSVC-service is afhankelijk van de NVOY-service, die vanwege de volgende fout niet kan worden gestart:
De bewerking is voltooid.
Error: (09/20/2017 09:17:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
en APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
CodeIntegrity:
===================================
Date: 2017-08-02 20:08:13.303
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-08-02 20:08:10.467
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-07-31 13:59:47.935
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-07-07 13:28:06.573
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-25 12:21:26.146
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-23 14:55:35.525
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-23 14:55:33.574
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-22 18:57:52.932
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-21 10:27:41.811
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-05-20 16:28:18.784
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
==================== Geheugen info ===========================
Processor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz
Percentage geheugen in gebruik: 41%
Totaal fysiek RAM-geheugen: 8070.98 MB
Beschikbaar fysiek RAM-geheugen: 4760.38 MB
Totaal Virtueel geheugen: 9350.98 MB
Beschikbaar Virtual geheugen: 5841.04 MB
==================== Schijven ================================
Drive c: () (Fixed) (Total:111.35 GB) (Free:12.23 GB) NTFS
Drive d: (ProgramFiles) (Fixed) (Total:732.42 GB) (Free:282.17 GB) NTFS
Drive e: (DATA) (Fixed) (Total:732.42 GB) (Free:595.68 GB) NTFS
Drive f: (BCK_win8) (Fixed) (Total:397.83 GB) (Free:163.01 GB) NTFS
==================== MBR & Partitietabel ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 38A763C4)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=732.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=732.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=397.8 GB) - (Type=OF Extended)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 38A763C8)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Eind van Addition.txt ============================
FRST:
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 24-09-2017
Gestart door Jelle (Beheerder) op PC-JELLE (25-09-2017 14:32:25)
Gestart vanaf C:\Users\Jelle\Desktop
Geladen Profielen: Jelle (Beschikbare Profielen: Jelle)
Platform: Windows 10 Home Versie 1607 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: Chrome)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool:
FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)
(Norman Safeground AS) C:\Program Files\Norman\Nse\bin\nseupdatesvc.exe
(Norman Safeground AS) C:\Program Files\Norman\Nvc\bin\nvcsvc.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\nfservice.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) D:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\Gigabyte\Smart TimeLock\TimeMgmtDaemon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(AVG Technologies CZ, s.r.o.) D:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\Gigabyte\Smart TimeLock\AlarmClock.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVG Technologies CZ, s.r.o.) D:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) D:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Unified Intents AB) D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1561_none_7ef6e89821f9a6be\TiWorker.exe
(Rockstar Games) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTAVLauncher.exe
(Take-Two Interactive Software, Inc.) C:\Program Files\Rockstar Games\Social Club\subprocess.exe
(Take-Two Interactive Software, Inc.) C:\Program Files\Rockstar Games\Social Club\subprocess.exe
(Spotify Ltd) C:\Users\Jelle\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Rockstar Games) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\UNP\UNPCampaignManager.exe
==================== Register (gefilterd) ===========================
(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvgUi] => D:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-09-14] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => D:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [289248 2017-09-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [AvgUi] => D:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-09-14] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Jelle\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-05-16] (Nero AG)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [Unified Remote V3] => D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [4340992 2016-07-06] (Unified Intents AB)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [Spotify] => C:\Users\Jelle\AppData\Roaming\Spotify\Spotify.exe [20644976 2017-09-25] (Spotify Ltd)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Run: [Spotify Web Helper] => C:\Users\Jelle\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-09-25] (Spotify Ltd)
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\Policies\Explorer: []
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\MountPoints2: {02265c8e-99c7-11e6-8066-94de807ea621} - "I:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\MountPoints2: {ba5f287e-82c7-11e7-81f2-94de807ea621} - "G:\setup\rsrc\Autorun.exe"
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\...\MountPoints2: {d41b6e8d-c513-11e6-8146-94de807ea621} - "G:\setup.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => Geen bestand
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => Geen bestand
Startup: C:\Users\Jelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk [2016-12-19]
ShortcutTarget: WO Mic Client.lnk -> C:\Program Files (x86)\WOMic\WOMicClient.exe (Geen bestand)
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{274de548-739c-4757-868a-69b7305bfdd4}: [DhcpNameServer] 192.168.2.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-1366861136-3118521387-3878673927-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://mysearch.avg.com/?cid={C261D7CF-9857-4F3B-A350-37C2772BE578}&mid=981cc3f7ebb747cfa33a4597c69a4fd2-f81dbb52451c3842967202575c01e59a8737a20b&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0217tb&pr=fr&d=2016-12-01 11:52:42&v=4.3.7.452&pid=wtu&sg=&sap=hp
about:blank
SearchScopes: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://
www.google.com/search?q={searchTerms}&rlz=
SearchScopes: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001 -> {2917E307-58CD-4605-AC6B-952E7648A93E} URL = hxxp://
www.google.nl/search?hl=nl&q={searchTerms}&rlz=
SearchScopes: HKU\S-1-5-21-1366861136-3118521387-3878673927-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={C261D7CF-9857-4F3B-A350-37C2772BE578}&mid=981cc3f7ebb747cfa33a4597c69a4fd2-f81dbb52451c3842967202575c01e59a8737a20b&lang=nl&ds=AVG&coid=avgtbavg&cmpid=0517tb&pr=fr&d=2016-12-01 11:52:42&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-23] (Oracle Corporation)
BHO: Geen Naam -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Geen bestand
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-23] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
FireFox:
========
FF ProfilePath: C:\Users\Jelle\AppData\Roaming\Mozilla\Firefox\Profiles\721tm955.default [2017-09-25]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\721tm955.default -> Yahoo!
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\721tm955.default -> Yahoo!
FF Homepage: Mozilla\Firefox\Profiles\721tm955.default -> hxxps://
www.malwarebytes.org/restorebrowser/yhp-ff
hxxps://
www.malwarebytes.org/restorebrowser/yhp-ff
FF Extension: (Adblock Plus) - C:\Users\Jelle\AppData\Roaming\Mozilla\Firefox\Profiles\721tm955.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-01-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-13] ()
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] ()
FF Plugin-x32:
@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32:
@intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> D:\Program Files\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-08-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1366861136-3118521387-3878673927-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jelle\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-08-08] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://nl.search.yahoo.com/?type=937811&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxp://
www.google.nl/"
CHR Profile: C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default [2017-09-25]
CHR Extension: (Google Presentaties) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Documenten) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-25]
CHR Extension: (Google Search) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Google Spreadsheets) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Offline Documenten) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (VoiceNote II - Speech to text) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfknjgplnkgjihghcidajejfmldhibfm [2016-12-19]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Transcribe: transcribe audio/interviews fast!) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogokenmicnjdfhmhocanoemnddmpcjjm [2016-12-19]
CHR Extension: (Gmail) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Jelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-04]
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 AVG Antivirus; D:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [276328 2017-09-07] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; D:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7502936 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; D:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-09-14] (AVG Technologies CZ, s.r.o.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Bestand niet getekend]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Bestand niet getekend]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 MBAMService; D:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 NBService; D:\Nero 7\Nero BackItUp\NBService.exe [792112 2007-04-13] (Nero AG)
R2 nfservice; C:\Program Files\Norman\npm\bin\nfservice.exe [196072 2015-02-17] (Norman Safeground AS)
S3 NJeeves2; C:\Program Files\Norman\Npm\Bin\Njeeves2.exe [179080 2014-11-27] ()
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
S2 NNFSVC; C:\Program Files\Norman\Ngs\Bin\Nnf.exe [314112 2016-11-23] (Norman Safeground AS)
S2 NPROSECSVC; C:\Program Files\Norman\Ngs\Bin\Nprosec.exe [148744 2016-11-15] (Norman Safeground AS)
R2 nseupdatesvc; C:\Program Files\Norman\nse\bin\nseupdatesvc.exe [272032 2016-05-27] (Norman Safeground AS)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 nvcsvc; C:\Program Files\Norman\nvc\bin\nvcsvc.exe [408776 2015-06-22] (Norman Safeground AS)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
S2 NVOY; C:\Program Files\Norman\Npm\Bin\Nvoy.exe [246560 2013-06-27] (Norman AS)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
S2 NWSCMON2; C:\Program Files\Norman\Npm\Bin\nwscmon2.exe [232008 2015-09-15] (Norman Safeground AS)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [Bestand niet getekend]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314128 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-09-07] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-09-07] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [140192 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102792 2017-09-07] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1008800 2017-09-07] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [583288 2017-09-07] (AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [191720 2017-09-19] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [353744 2017-09-07] (AVG Technologies CZ, s.r.o.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-22] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-22] (Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2016-05-25] (Huawei Technologies Co., Ltd.)
S3 gzflt; C:\Program Files\Norman\nvc\bin\gzflt.sys [155912 2015-02-17] (BitDefender LLC)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-11-25] (Huawei Technologies Co., Ltd.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R1 NGS; c:\program files\norman\ngs\bin\ngs64.sys [34968 2016-11-02] (Norman Safeground AS)
R1 NPROSEC; C:\Program Files\Norman\Ngs\Bin\nprosec64.sys [50840 2016-06-01] (AVG Technologies Norway AS)
R2 nregsec; C:\Program Files\Norman\Ngs\Bin\nregsec64.sys [78488 2016-06-01] (AVG Technologies Norway AS)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [14199224 2017-01-04] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [452040 2015-02-17] (BitDefender S.R.L.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-06-10] (Apple, Inc.) [Bestand niet getekend]
R3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [27064 2016-07-06] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 wovad_micarray; C:\WINDOWS\system32\drivers\womic.sys [33112 2016-07-08] (Windows (R) Win 7 DDK provider)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een Maand Aangemaakt bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-09-25 14:32 - 2017-09-25 14:33 - 000023434 _____ C:\Users\Jelle\Desktop\FRST.txt
2017-09-25 14:28 - 2017-09-25 14:31 - 002399744 _____ (Farbar) C:\Users\Jelle\Desktop\FRST64.exe
2017-09-25 14:28 - 2017-09-25 14:28 - 002399744 _____ (Farbar) C:\Users\Jelle\Downloads\FRST64.exe
2017-09-25 14:08 - 2017-09-25 14:08 - 000000000 ____D C:\Users\Jelle\AppData\Local\CrashRpt
2017-09-25 14:08 - 2017-09-25 14:08 - 000000000 ____D C:\Users\Jelle\AppData\Local\CallofDuty4MW
2017-09-25 13:30 - 2017-09-25 13:30 - 000001425 _____ C:\Users\Jelle\Desktop\scan 25-9.txt
2017-09-25 13:22 - 2017-09-25 13:25 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-09-25 13:22 - 2017-09-25 13:22 - 000253888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-25 13:22 - 2017-09-25 13:22 - 000192960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-09-25 13:22 - 2017-09-25 13:22 - 000045472 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-09-25 13:22 - 2017-09-25 13:22 - 000000992 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-09-25 13:22 - 2017-09-25 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-09-25 13:22 - 2017-08-24 11:27 - 000077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-09-25 13:12 - 2017-09-25 13:19 - 068408664 _____ (Malwarebytes ) C:\Users\Jelle\Desktop\mb3-setup-consumer-3.2.2.2029.exe
2017-09-25 13:11 - 2017-09-25 13:11 - 068408664 _____ (Malwarebytes ) C:\Users\Jelle\Downloads\mb3-setup-consumer-3.2.2.2029.exe
2017-09-25 12:45 - 2017-09-25 12:45 - 000000000 ___HD C:\OneDriveTemp
2017-09-13 23:26 - 2017-09-13 23:26 - 000660259 _____ C:\Users\Jelle\Downloads\weepingangelcrochet.pdf
2017-09-13 22:37 - 2017-09-13 23:19 - 000000000 ____D C:\Users\Jelle\Desktop\TATTOO
2017-09-13 16:58 - 2017-09-13 16:58 - 000000000 ____D C:\Users\Jelle\Desktop\Muziek
2017-09-07 18:43 - 2017-09-07 18:43 - 000402608 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2017-09-07 15:17 - 2017-09-13 23:39 - 000000000 ____D C:\Users\Jelle\Desktop\Lindsey
2017-09-07 15:16 - 2017-09-07 15:16 - 000010731 _____ C:\Users\Jelle\Downloads\Bijlage 1 Zorgplan.xlsx
2017-09-01 13:22 - 2017-09-01 13:22 - 000537662 _____ C:\Users\Jelle\Downloads\Uittreksel_diplomaregister, Jelle Schuiling.pdf
2017-09-01 13:04 - 2017-09-01 13:04 - 000023747 _____ C:\Users\Jelle\Downloads\calendar_2017-09-25_2017-11-06.pdf
2017-09-01 13:04 - 2017-09-01 13:04 - 000023600 _____ C:\Users\Jelle\Downloads\calendar_2017-08-28_2017-10-02.pdf
2017-08-30 20:24 - 2017-08-30 20:24 - 000000000 ____D C:\WINDOWS\Panther
2017-08-30 17:13 - 2017-08-30 17:16 - 1310767744 _____ C:\Users\Jelle\Downloads\wetransfer-782d3b.zip
2017-08-29 13:41 - 2017-08-04 07:31 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-08-29 13:41 - 2017-08-04 07:31 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-08-29 13:41 - 2017-08-04 07:31 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-08-29 13:41 - 2017-08-04 06:26 - 000192864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
==================== Een Maand Gewijzigd bestanden en mappen ========
(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)
2017-09-25 14:32 - 2016-10-25 11:37 - 000000000 ____D C:\FRST
2017-09-25 14:25 - 2016-12-07 16:20 - 000000000 ____D C:\Users\Jelle\AppData\Local\Spotify
2017-09-25 14:24 - 2016-12-07 16:20 - 000000000 ____D C:\Users\Jelle\AppData\Roaming\Spotify
2017-09-25 14:22 - 2016-07-16 13:36 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-25 14:00 - 2013-09-17 19:12 - 000000000 ____D C:\Users\Jelle\AppData\Roaming\vlc
2017-09-25 13:33 - 2013-09-28 19:47 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2017-09-25 13:32 - 2015-04-18 18:34 - 000000000 ____D C:\Program Files\Rockstar Games
2017-09-25 13:22 - 2016-11-29 00:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-09-25 12:59 - 2016-12-07 14:28 - 000000000 ____D C:\Users\Jelle
2017-09-25 12:48 - 2016-08-22 00:29 - 000000000 ____D C:\ProgramData\NVIDIA
2017-09-25 12:45 - 2016-12-07 14:24 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-09-25 12:45 - 2015-10-12 20:59 - 000000000 __RDO C:\Users\Jelle\OneDrive
2017-09-25 12:45 - 2014-07-16 16:18 - 000000000 __SHD C:\Users\Jelle\IntelGraphicsProfiles
2017-09-25 01:08 - 2016-12-07 14:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-25 00:52 - 2016-12-07 14:43 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-09-25 00:43 - 2016-07-26 18:37 - 007216574 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-25 00:43 - 2016-07-17 00:15 - 003434480 _____ C:\WINDOWS\system32\perfh013.dat
2017-09-25 00:43 - 2016-07-17 00:15 - 000990306 _____ C:\WINDOWS\system32\perfc013.dat
2017-09-25 00:41 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-25 00:38 - 2016-02-11 00:08 - 000000000 ____D C:\ProgramData\Unified Remote
2017-09-25 00:37 - 2016-12-07 14:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-20 21:20 - 2016-07-16 08:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-09-20 18:28 - 2017-07-26 17:20 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1366861136-3118521387-3878673927-1001
2017-09-20 18:28 - 2016-07-26 19:27 - 000002387 _____ C:\Users\Jelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-20 18:10 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-19 18:35 - 2017-04-01 21:36 - 000191720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgstm.sys
2017-09-19 18:34 - 2017-03-19 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-09-13 22:54 - 2013-09-09 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-13 22:52 - 2013-09-09 15:30 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-13 22:48 - 2013-08-22 15:25 - 000000167 _____ C:\WINDOWS\win.ini
2017-09-13 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-09-13 16:48 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-09-08 18:10 - 2016-12-28 18:14 - 000011776 _____ C:\Users\Jelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-09-08 18:07 - 2017-07-28 22:22 - 000000000 ____D C:\Program Files\rempl
2017-09-08 18:00 - 2013-09-12 04:11 - 000000000 ____D C:\Program Files\Google
2017-09-08 18:00 - 2013-09-12 03:48 - 000000000 ____D C:\Program Files (x86)\Google
2017-09-08 14:26 - 2016-07-16 13:45 - 000000000 ____D C:\WINDOWS\INF
2017-09-08 14:15 - 2016-06-28 22:29 - 000000000 ____D C:\Users\Jelle\AppData\Local\Hisuite
2017-09-08 14:11 - 2013-09-12 03:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte
2017-09-08 14:09 - 2017-08-07 11:28 - 000000000 ____D C:\WINDOWS\System32\Tasks\WiseCleaner
2017-09-08 14:07 - 2013-09-12 03:48 - 000000000 ____D C:\Users\Jelle\AppData\Local\Google
2017-09-08 13:56 - 2016-10-15 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2017-09-08 13:56 - 2016-08-22 14:03 - 000000000 ____D C:\ProgramData\RELOADED
2017-09-08 13:56 - 2013-09-17 20:28 - 000000000 ____D C:\Users\Jelle\Documents\Rockstar Games
2017-09-07 18:43 - 2017-04-01 21:36 - 001008800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000583288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000353744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000314128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000140192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2017-09-07 18:43 - 2017-04-01 21:36 - 000004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-09-07 14:56 - 2017-04-04 12:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-09-07 14:56 - 2016-12-01 13:45 - 000000724 _____ C:\Users\Public\Desktop\AVG.lnk
2017-09-05 21:01 - 2016-07-16 13:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-05 21:01 - 2016-07-16 13:49 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-09-01 13:05 - 2016-01-19 00:10 - 000000000 ____D C:\Users\Jelle\AppData\Local\CrashDumps
2017-08-29 14:40 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-08-28 22:35 - 2016-12-07 13:21 - 000002292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-28 22:35 - 2016-12-07 13:21 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-28 11:15 - 2013-09-22 19:05 - 000000000 ____D C:\Users\Jelle\AppData\Roaming\Azureus
==================== Bestanden in de root van sommige mappen =======
2016-12-19 16:12 - 2016-12-19 16:12 - 000001995 _____ () C:\Users\Jelle\AppData\Roaming\SAS7_000.DAT
2015-09-28 14:39 - 2012-06-06 22:15 - 000015086 _____ () C:\Users\Jelle\AppData\Roaming\shshortcut.ico
2016-12-28 18:14 - 2017-09-08 18:10 - 000011776 _____ () C:\Users\Jelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-04-05 21:54 - 2017-04-05 21:54 - 000004930 _____ () C:\ProgramData\czchsjpj.srw
2013-09-30 21:54 - 2013-09-30 21:54 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2017-04-05 21:54 - 2017-04-05 21:54 - 000000016 _____ () C:\ProgramData\mntemp
==================== Bamital & volsnap ======================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend
LastRegBack: 2017-09-07 15:28
==================== Eind van FRST.txt ============================