Hoi Abraham,
Daat zijn we weer.
Wil jij eens naar deze laptop kijken?
Sloom en traag bij het openen van de programma's.
Of toch nieuwe laptop kopen.
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-11-2019
Gestart door hzand (Beheerder) op LAPTOP (SAMSUNG ELECTRONICS CO., LTD. R530/R730/P530) (15-11-2019 13:43:12)
Gestart vanaf C:\Users\hzand\Desktop
Geladen Profielen: hzand (Beschikbare Profielen: hzand)
Platform: Windows 10 Home Versie 1809 17763.864 (X64) Taal: Nederlands (Nederland)
Standaardbrowser: Chrome
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)
() [Bestand niet getekend] C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.850_none_7e18264b4d00f498\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUService.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe
==================== Register (gefilterd) ===================
(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {81d0ec1e-377a-11e9-881e-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {81d0ec30-377a-11e9-881e-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {933702e8-384d-11e9-8821-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.36\Installer\chrmstp.exe [2019-11-14] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [Debugger] rundll32.exe SppExtComObjHook.dll,PatcherMain
IFEO\SppExtComObj.exe: [Debugger] rundll32.exe SppExtComObjHook.dll,PatcherMain
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT
==================== Geplande Taken (gefilterd) ============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
Task: {03E8D3F4-40C9-422E-8497-4974D2021640} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {11D98DC2-2387-49E0-AF2E-9A575A31ABF2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2761CC48-6CD2-4EC5-9162-E53A6455B87D} - System32\Tasks\SamsungUpdateServiceUpdate => C:\ProgramData\Samsung\SamsungUpdate3\data\SelfUpdate\SUInst.exe [2115392 2017-11-08] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {3A62BEB0-8189-4CD6-A7E6-012BA16433F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-17] (Google Inc -> Google Inc.)
Task: {3BD94461-B50A-406F-8498-DDAAC6CA91FE} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [3602632 2017-04-26] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {4F6AC421-B51F-4CD5-9D54-78E001F8065B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {67E5F48D-02F7-4FD9-8CE7-968B2306CBB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-17] (Google Inc -> Google Inc.)
Task: {89CA0B7D-F499-4763-9F49-691A5D60095F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A240D818-31D1-443E-AE53-7A5910F1DC83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD80731E-3822-4FCF-B145-50423F703E28} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {B195110D-8B53-4A6F-A0E4-D02BD54C1D46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAF47D4B-A92E-41EE-B37B-846E47B74A89} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {C3429DF2-0D57-4CC1-AF39-7D1C79672E55} - System32\Tasks\Samsung\SamsungUpdate\UserModeWorker => C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe [21880 2019-07-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {E1A53202-D4E3-46CF-B9C9-2DBE48A3E3D9} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_pepper.exe [1453112 2019-11-13] (Adobe Inc. -> Adobe)
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player PPAPI Notifier" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2753020900-3500922324-953930212-1001" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\SAgent" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\SamsungUpdateServiceUpdate" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {F20E6BD7-3088-4750-8E0B-A67385B39F61} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {F991C203-35F2-4B70-AB85-DDA20BCEECA9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{885688fd-ec89-420a-8ad4-2e6bf2530e61}: [DhcpNameServer] 89.101.251.228 89.101.251.229
Tcpip\..\Interfaces\{d75b9295-02e8-4529-9bb5-c412b669c82e}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2753020900-3500922324-953930212-1001 -> {F6E70F4D-EBF8-4815-97E5-A5E67E4BA241} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-08-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\hzand\AppData\Roaming\Mozilla\Firefox\Profiles\AfOW30pP.default [2018-11-26]
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Bestand niet getekend]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-08] (Google Inc -> Google LLC)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://wekelijkse-folders.nl/assets/img/shop_image/lidl/logo_192.png
CHR Notifications: Default -> hxxps://nl.trendingjobs.com; hxxps://www.facebook.com; hxxps://www.miniinthebox.com; hxxps://www.tui.nl
CHR Profile: C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default [2019-11-15]
CHR Extension: (Presentaties) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documenten) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-17]
CHR Extension: (YouTube) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-17]
CHR Extension: (Spreadsheets) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Avira Browser Safety) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-11-14]
CHR Extension: (Offline Documenten) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Avast Online Security) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-19]
CHR Extension: (Lidl) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpjpeemajomapdcbpkjopdmekhefplik [2019-08-27]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S4 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG -> Nero AG)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398784 2019-04-22] (Canon Inc. -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Bestand niet getekend]
R2 SamsungUpdateService; C:\Program Files\Samsung\SamsungUpdate\SUService.exe [404344 2019-07-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3305208 2019-07-19] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc [X]
===================== Drivers (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [69656 2018-08-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [179376 2018-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169864 2018-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 htcnprot; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 ykinw8; C:\WINDOWS\System32\drivers\ykinx64.sys [288768 2018-09-15] (Microsoft Windows -> Marvell)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een maand (aangemaakt) ===================
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-11-15 13:43 - 2019-11-15 13:44 - 000020399 _____ C:\Users\hzand\Desktop\FRST.txt
2019-11-15 13:17 - 2019-11-15 13:17 - 000000000 ____D C:\Users\hzand\Desktop\FRST-OlderVersion
2019-11-15 13:16 - 2019-11-15 13:17 - 002260480 _____ (Farbar) C:\Users\hzand\Desktop\FRST64 (1).exe
2019-11-15 13:15 - 2019-11-15 13:15 - 000024956 _____ C:\Users\hzand\Desktop\download.html
2019-11-15 13:01 - 2019-11-15 13:01 - 000218464 _____ C:\Users\hzand\Desktop\search.html
2019-11-14 10:27 - 2019-11-14 10:27 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-14 10:27 - 2019-11-14 10:27 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-14 10:27 - 2019-11-14 10:27 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-14 10:26 - 2019-11-14 10:26 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 10:26 - 2019-11-14 10:26 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-14 10:26 - 2019-11-14 10:26 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-14 10:26 - 2019-11-14 10:26 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-14 10:25 - 2019-11-14 10:25 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-14 10:25 - 2019-11-14 10:25 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-14 10:25 - 2019-11-14 10:25 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-14 10:22 - 2019-11-14 10:22 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-14 10:22 - 2019-11-14 10:22 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-14 10:22 - 2019-11-14 10:22 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-08 12:38 - 2019-11-08 12:38 - 000489434 _____ C:\Users\hzand\Desktop\ticket-12932503.pdf 08-11-2019 2.pdf
2019-11-08 12:35 - 2019-11-08 12:35 - 000524807 _____ C:\Users\hzand\Desktop\etickets.pdf 08-11-2019.pdf
2019-10-30 15:48 - 2019-10-30 15:48 - 002008832 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 3.pdf
2019-10-30 15:39 - 2019-10-30 15:39 - 000250524 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 1.pdf
2019-10-29 16:27 - 2019-10-29 16:27 - 001613403 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 2.pdf
2019-10-28 12:52 - 2019-10-28 12:53 - 000657713 _____ C:\Users\hzand\Desktop\ticket-12434617.pdf
2019-10-24 14:21 - 2019-10-24 14:21 - 000154864 _____ C:\Users\hzand\Desktop\IMG_20191018_0001.pdf
2019-10-16 10:49 - 2019-10-16 10:49 - 001873125 _____ C:\Users\hzand\OneDrive\Documenten\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf
==================== Een maand (gewijzigd) ==================
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-11-15 13:44 - 2017-12-24 10:23 - 000000000 ____D C:\FRST
2019-11-15 13:26 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-15 13:24 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-15 13:06 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-15 13:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-15 12:58 - 2019-01-30 17:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-14 18:59 - 2015-10-30 08:24 - 000000167 _____ C:\WINDOWS\win.ini
2019-11-14 15:58 - 2017-07-12 18:02 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-14 10:50 - 2017-07-12 18:02 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-14 10:45 - 2019-01-30 17:25 - 001681094 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 10:45 - 2018-09-15 17:42 - 000749784 _____ C:\WINDOWS\system32\perfh013.dat
2019-11-14 10:45 - 2018-09-15 17:42 - 000146608 _____ C:\WINDOWS\system32\perfc013.dat
2019-11-14 10:44 - 2017-12-06 22:00 - 000000000 ___RD C:\Users\hzand\3D Objects
2019-11-14 10:44 - 2016-04-27 07:37 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 10:39 - 2019-01-30 17:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-14 10:39 - 2019-01-30 17:05 - 000434584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 10:37 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 10:35 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-14 10:34 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-14 10:33 - 2017-07-17 20:21 - 000002355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-14 10:30 - 2019-01-30 17:12 - 000000000 ____D C:\Users\hzand
2019-11-13 19:55 - 2017-12-06 21:38 - 000000000 ____D C:\Users\hzand\AppData\Local\Packages
2019-11-13 19:12 - 2017-08-03 17:44 - 000000000 ____D C:\Users\hzand\AppData\Local\Albelli Fotoboeken
2019-11-13 19:09 - 2017-07-12 16:55 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-13 19:01 - 2017-09-16 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-11-13 18:58 - 2019-06-20 12:07 - 000004650 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-11-13 18:58 - 2019-06-20 12:07 - 000004490 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2019-11-13 18:58 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-11-13 18:58 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-11-13 18:55 - 2017-08-03 17:44 - 000002008 _____ C:\Users\hzand\Desktop\albelli NL.lnk
2019-11-13 18:55 - 2017-08-03 17:44 - 000000000 ____D C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\albelli NL
2019-11-08 12:49 - 2018-06-18 19:00 - 000000000 ____D C:\ProgramData\Packages
2019-11-08 12:48 - 2019-01-30 17:35 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2753020900-3500922324-953930212-1001
2019-11-08 12:47 - 2019-02-10 16:48 - 000002401 _____ C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-08 12:47 - 2017-07-12 12:56 - 000000000 ___RD C:\Users\hzand\OneDrive
2019-11-08 12:40 - 2017-08-16 11:09 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-11-08 12:35 - 2019-01-30 17:35 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-08 12:35 - 2019-01-30 17:35 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-08 12:33 - 2017-07-12 17:54 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-29 16:21 - 2018-03-14 12:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-21 10:43 - 2019-04-22 14:23 - 000000000 ____D C:\Users\hzand\Desktop\Peru
2019-10-17 13:36 - 2019-07-10 21:52 - 000000000 ____D C:\Users\hzand\AppData\Local\CrashDumps
2019-10-17 13:30 - 2017-07-13 20:28 - 000000000 ____D C:\Program Files\CCleaner
==================== Bestanden in de root van sommige mappen ========
2018-12-25 13:29 - 2018-12-25 13:29 - 000005632 _____ () C:\Users\hzand\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-22 14:21 - 2018-08-22 14:21 - 000000017 _____ () C:\Users\hzand\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
==================== Einde van FRST.txt ========================
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 14-11-2019
Gestart door hzand (15-11-2019 13:45:40)
Gestart vanaf C:\Users\hzand\Desktop
Windows 10 Home Versie 1809 17763.864 (X64) (2019-01-30 16:37:08)
Boot Modus: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2753020900-3500922324-953930212-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2753020900-3500922324-953930212-503 - Limited - Disabled)
Gast (S-1-5-21-2753020900-3500922324-953930212-501 - Limited - Enabled)
hzand (S-1-5-21-2753020900-3500922324-953930212-1001 - Administrator - Enabled) => C:\Users\hzand
WDAGUtilityAccount (S-1-5-21-2753020900-3500922324-953930212-504 - Limited - Disabled)
==================== Security Center ========================
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Geïnstalleerde programma's ======================
(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.293 - Adobe)
Albelli Fotoboeken (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: 19.2.2.5008 - albelli NL)
Backup and Sync from Google (HKLM\...\{93EBD8BA-7A14-4636-8F1F-E929ADF2C3A9}) (Version: 3.47.7654.0300 - Google, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.3 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.59 - Piriform)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Gebruikersregistratie voor Canon MG3600 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG3600 series) (Version: - â€Canon Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.36 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - Uw bedrijfsnaam)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.88.3 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: - )
Malwarebytes versie 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM-x32\...\{90160000-001F-040C-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PhotoPad Image Editor (HKLM-x32\...\PhotoPad) (Version: 2.81 - NCH Software)
Prism Video File Converter (HKLM-x32\...\Prism) (Version: 4.28 - NCH Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
S Agent (HKLM\...\{061881E0-653B-41CA-839E-2BA6569B5FEE}) (Version: 1.1.69 - Samsung Electronics Co., Ltd.) Hidden
Samsung Update (HKLM-x32\...\{07293DB3-A8AB-4861-B5A9-C6A55B5CA7C5}) (Version: 2.2.57 - Samsung Electronics Co., Ltd.)
Samsung Update Service (HKLM\...\{06A23D54-8603-4F81-871D-E4A628251C9D}) (Version: 3.0.39 - Samsung Electronics Co., Ltd.)
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Spotnet (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\Spotnet) (Version: 2.0.0.276 - Spotnet)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM-x32\...\{90160000-001F-0413-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0413-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.151.300.0_x86__kgqvnymyfvs32 [2019-11-08] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-27] (Canon Inc.)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.4.0.5_x86__h6adky7gbf63m [2019-10-16] (Gameloft.)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-24] (Facebook Inc)
Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20368.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Nieuws -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-11-13] (Microsoft Corporation) [MS Ad]
MSN sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
PicsArt - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PicsArt-PhotoStudio_8.8.0.0_x86__crhqpqs3x1ygc [2019-10-16] (PicsArt Inc.) [MS Ad]
Samsung Update -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungUpdate_3.0.42.0_x64__3c1yjt4zspk6g [2019-09-25] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-10-30] (Twitter Inc.)
==================== Aangepaste CLSID (gefilterd): ==============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll -> Geen bestand
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll -> Geen bestand
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (gefilterd) ====================
==================== Snelkoppelingen & WMI ========================
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
ShortcutWithArgument: C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Lidl.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kpjpeemajomapdcbpkjopdmekhefplik
==================== Geladen Modules (gefilterd) =============
2017-08-16 11:09 - 2017-12-07 10:25 - 000219648 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJPLM\cnmpu2.dll
2017-08-16 11:29 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL
==================== Alternate Data Streams (gefilterd) ========
==================== Veilige Modus (gefilterd) ==================
==================== Bestandskoppeling (gefilterd) =================
==================== Internet Explorer vertrouwde/beperkte toegang ==========
==================== Hosts inhoud: =========================
(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)
2015-10-30 08:24 - 2018-08-13 15:00 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere gebieden ===========================
(Momenteel is er geen automatische fix voor dit onderdeel.)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hzand\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG-20180929-WA0000.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is ingeschakeld.
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "WinZip PreLoader"
HKLM\...\StartupApproved\Run: => "WinZip UN"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Firewall regels (gefilterd) ================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
FirewallRules: [{8DA8C56B-BC2E-4B2A-A98D-E39F5282923E}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe (Nero AG -> )
FirewallRules: [{C5267117-630B-4AF8-953C-3D305DA8387D}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{52BB1E88-953E-40C1-8D92-02084817E136}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C34D1A67-C5C0-484D-B7A4-0A3997AE8E1A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BF9C5D3-4AE9-42A2-9FB6-72796CAE0247}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94EC4B4C-26F6-4423-89BA-353439D3ED5C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{847915C3-78CD-46A9-BE99-B68B054924C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0701A281-7A00-4CAF-A6F3-1E34D2E87820}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1C4C75B4-2981-468E-AFAC-E3821E5F94B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BEC3B630-8A64-4B49-B043-3496FA73A0A0}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [Bestand niet getekend]
FirewallRules: [UDP Query User{3C0374F9-7E2E-42BA-9F16-06310784CDD7}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [Bestand niet getekend]
FirewallRules: [{7F592D3C-E2BD-4415-9041-540A576A19A0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Herstelpunten =========================
13-11-2019 19:28:03 Windows Update
==================== Defecte Apparaatbeheer Apparaten ============
==================== Eventlog fouten: ========================
Applicatiefouten:
==================
Error: (11/14/2019 10:45:50 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fout tijdens bijwerken van status Windows Defender naar SECURITY_PRODUCT_STATE_ON.
Error: (11/14/2019 10:45:50 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fout tijdens bijwerken van status Windows Defender naar SECURITY_PRODUCT_STATE_ON.
Error: (11/14/2019 10:44:11 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Gebruikerscomponent is geladen door een ander proces (Registry Lock). Procesnaam: C:\Windows\System32\svchost.exe, PID: 5688, ProfSvc PID: 2044.
Error: (11/14/2019 10:39:41 AM) (Source: Microsoft-Windows-WMI) (EventID: 28) (User: NT AUTHORITY)
Description: Kan de WMI-kern of het providersubsysteem of gebeurtenissubsysteem niet initialiseren. Foutnummer: 0x80041002. Dit kan het gevolg zijn van een onjuist geïnstalleerde versie van WMI, een mislukte upgrade van de WMI-opslagplaats, onvoldoende schijfruimte of onvoldoende geheugen.
Error: (11/14/2019 10:35:33 AM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Product: Microsoft Excel MUI (Dutch) 2016 - Update 'Security Update for Microsoft Excel 2016 (KB4484144) 32-Bit Edition' kan niet worden geïnstalleerd. Foutcode: 1603. Windows Installer kan logboekbestanden maken om te helpen bij het oplossen van problemen tijdens het installeren van softwarepakketten. Raadpleeg de volgende koppeling voor aanwijzingen over het inschakelen van ondersteuning via logboekregistratie: http://go.microsoft.com/fwlink/?LinkId=23127
Error: (11/14/2019 10:35:33 AM) (Source: MsiInstaller) (EventID: 10005) (User: NT AUTHORITY)
Description: Product: Microsoft Excel MUI (Dutch) 2016 -- Fout 2333. Er is een interne fout opgetreden. (32 C:\WINDOWS\Installer\ ) Neem contact op met Microsoft Productondersteuning (PSS). Zie PSS10R.CHM.
Error: (11/14/2019 10:30:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: SUEngine.exe, versie: 3.0.39.0, tijdstempel: 0x5d1aeaee
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17763.802, tijdstempel: 0x86aa4cf5
Uitzonderingscode: 0xe0434352
Foutmarge: 0x0000000000039129
Id van proces met fout: 0x14dcc
Starttijd van toepassing met fout: 0x01d59ace31a6d19d
Pad naar toepassing met fout: C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 2368cab6-172b-42c1-a16f-e965c3ec2f9c
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (11/14/2019 10:30:55 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: SUEngine.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.Management.ManagementException
bij System.Management.ManagementException.ThrowWithExtendedInfo(System.Management.ManagementStatus)
bij System.Management.ManagementScope.InitializeGuts(System.Object)
bij System.Management.ManagementScope.Initialize()
bij System.Management.ManagementObjectSearcher.Initialize()
bij System.Management.ManagementObjectSearcher.Get()
bij SU3.Information.SystemInformation.get_SerialNumber()
bij SU3.Information.SystemInformation.Init(System.String)
bij SU3.SysMon.ORCASvrMon.CheckORCAStatus()
bij SU3.SysMon.ORCASvrMon.Run(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bij System.Threading.ThreadPoolWorkQueue.Dispatch()
Systeemfouten:
=============
Error: (11/15/2019 01:44:25 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/15/2019 01:01:01 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 08:04:44 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (11/14/2019 07:26:32 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 07:06:24 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 07:00:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Windows Search-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.
Error: (11/14/2019 07:00:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Windows Search.
Error: (11/14/2019 07:00:23 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Windows Defender:
===================================
Date: 2019-11-15 13:29:51.360
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {04561491-852E-4FAF-9BF2-F623A7000AD4}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-15 12:58:36.061
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {7CEBEB8B-2BB6-4705-81E8-24D3E7A23B70}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-14 18:59:09.100
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {FCC49520-969A-4DC4-9F6C-6756A26BE1C1}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-12 15:06:33.316
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {D8DEA519-F7A6-4AA7-9662-C7440DB92122}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-12 12:33:47.938
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {B3D17FF4-F782-421F-B0A2-F488B942ED41}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-14 10:50:57.363
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.305.2024.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16500.1
Foutcode: 0x80240016
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
Date: 2019-08-20 22:18:00.217
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.299.2423.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16200.1
Foutcode: 0x80240438
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
Date: 2019-08-14 21:35:37.077
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.299.1999.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16200.1
Foutcode: 0x8024001e
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
CodeIntegrity:
===================================
Date: 2019-11-12 14:02:06.058
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-12 14:02:06.047
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-12 14:02:06.036
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.639
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.632
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.625
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-29 16:17:20.674
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-29 16:17:20.664
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
==================== Geheugen info ===========================
BIOS: Phoenix Technologies Ltd. 04KQ.M007.20100621.KSJ 06/21/2010
Moederbord: SAMSUNG ELECTRONICS CO., LTD. R530/R730/P530
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Percentage geheugen in gebruik: 46%
Totaal fysiek RAM-geheugen: 6004.55 MB
Beschikbaar fysiek RAM-geheugen: 3220.03 MB
Totaal Virtueel geheugen: 6964.55 MB
Beschikbaar Virtueel geheugen: 3990.03 MB
==================== Schijven ================================
Drive c: () (Fixed) (Total:197.58 GB) (Free:134.43 GB) NTFS
Drive d: () (Fixed) (Total:166.8 GB) (Free:135.89 GB) NTFS
Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:410.38 GB) NTFS
\\?\Volume{3a5205a3-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.49 GB) (Free:0.23 GB) NTFS
\\?\Volume{3a5205a3-0000-0000-0000-703d74000000}\ () (Fixed) (Total:0.8 GB) (Free:0.41 GB) NTFS
==================== MBR & Partitietabel ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 3A5205A3)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=166.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=197.6 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=819 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: A58CA089)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Einde van Addition.txt =======================
Daat zijn we weer.
Wil jij eens naar deze laptop kijken?
Sloom en traag bij het openen van de programma's.
Of toch nieuwe laptop kopen.
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 14-11-2019
Gestart door hzand (Beheerder) op LAPTOP (SAMSUNG ELECTRONICS CO., LTD. R530/R730/P530) (15-11-2019 13:43:12)
Gestart vanaf C:\Users\hzand\Desktop
Geladen Profielen: hzand (Beschikbare Profielen: hzand)
Platform: Windows 10 Home Versie 1809 17763.864 (X64) Taal: Nederlands (Nederland)
Standaardbrowser: Chrome
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)
() [Bestand niet getekend] C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.850_none_7e18264b4d00f498\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUService.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe
==================== Register (gefilterd) ===================
(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {81d0ec1e-377a-11e9-881e-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {81d0ec30-377a-11e9-881e-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\MountPoints2: {933702e8-384d-11e9-8821-002454c032b8} - "F:\HTC_Sync_Manager_PC.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.36\Installer\chrmstp.exe [2019-11-14] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [Debugger] rundll32.exe SppExtComObjHook.dll,PatcherMain
IFEO\SppExtComObj.exe: [Debugger] rundll32.exe SppExtComObjHook.dll,PatcherMain
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrictie <==== AANDACHT
==================== Geplande Taken (gefilterd) ============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
Task: {03E8D3F4-40C9-422E-8497-4974D2021640} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {11D98DC2-2387-49E0-AF2E-9A575A31ABF2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2761CC48-6CD2-4EC5-9162-E53A6455B87D} - System32\Tasks\SamsungUpdateServiceUpdate => C:\ProgramData\Samsung\SamsungUpdate3\data\SelfUpdate\SUInst.exe [2115392 2017-11-08] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {3A62BEB0-8189-4CD6-A7E6-012BA16433F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-17] (Google Inc -> Google Inc.)
Task: {3BD94461-B50A-406F-8498-DDAAC6CA91FE} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [3602632 2017-04-26] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {4F6AC421-B51F-4CD5-9D54-78E001F8065B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {67E5F48D-02F7-4FD9-8CE7-968B2306CBB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-17] (Google Inc -> Google Inc.)
Task: {89CA0B7D-F499-4763-9F49-691A5D60095F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A240D818-31D1-443E-AE53-7A5910F1DC83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD80731E-3822-4FCF-B145-50423F703E28} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {B195110D-8B53-4A6F-A0E4-D02BD54C1D46} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAF47D4B-A92E-41EE-B37B-846E47B74A89} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {C3429DF2-0D57-4CC1-AF39-7D1C79672E55} - System32\Tasks\Samsung\SamsungUpdate\UserModeWorker => C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe [21880 2019-07-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {E1A53202-D4E3-46CF-B9C9-2DBE48A3E3D9} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_pepper.exe [1453112 2019-11-13] (Adobe Inc. -> Adobe)
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Flash Player PPAPI Notifier" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2753020900-3500922324-953930212-1001" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\SAgent" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\SamsungUpdateServiceUpdate" /ENABLE
Task: {E20D0A23-7F07-44C6-B372-3D574B7D2C9B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {F20E6BD7-3088-4750-8E0B-A67385B39F61} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {F991C203-35F2-4B70-AB85-DDA20BCEECA9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-13] (Adobe Inc. -> Adobe)
(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{885688fd-ec89-420a-8ad4-2e6bf2530e61}: [DhcpNameServer] 89.101.251.228 89.101.251.229
Tcpip\..\Interfaces\{d75b9295-02e8-4529-9bb5-c412b669c82e}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2753020900-3500922324-953930212-1001 -> {F6E70F4D-EBF8-4815-97E5-A5E67E4BA241} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-08-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\hzand\AppData\Roaming\Mozilla\Firefox\Profiles\AfOW30pP.default [2018-11-26]
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Bestand niet getekend]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-08] (Google Inc -> Google LLC)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://wekelijkse-folders.nl/assets/img/shop_image/lidl/logo_192.png
CHR Notifications: Default -> hxxps://nl.trendingjobs.com; hxxps://www.facebook.com; hxxps://www.miniinthebox.com; hxxps://www.tui.nl
CHR Profile: C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default [2019-11-15]
CHR Extension: (Presentaties) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documenten) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-17]
CHR Extension: (YouTube) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-17]
CHR Extension: (Spreadsheets) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Avira Browser Safety) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-11-14]
CHR Extension: (Offline Documenten) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Avast Online Security) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-19]
CHR Extension: (Lidl) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpjpeemajomapdcbpkjopdmekhefplik [2019-08-27]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\hzand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S4 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2016-09-20] (Nero AG -> Nero AG)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398784 2019-04-22] (Canon Inc. -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Bestand niet getekend]
R2 SamsungUpdateService; C:\Program Files\Samsung\SamsungUpdate\SUService.exe [404344 2019-07-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3305208 2019-07-19] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc [X]
===================== Drivers (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [69656 2018-08-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [179376 2018-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169864 2018-07-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-12-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 htcnprot; C:\WINDOWS\system32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider)
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 ykinw8; C:\WINDOWS\System32\drivers\ykinx64.sys [288768 2018-09-15] (Microsoft Windows -> Marvell)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een maand (aangemaakt) ===================
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-11-15 13:43 - 2019-11-15 13:44 - 000020399 _____ C:\Users\hzand\Desktop\FRST.txt
2019-11-15 13:17 - 2019-11-15 13:17 - 000000000 ____D C:\Users\hzand\Desktop\FRST-OlderVersion
2019-11-15 13:16 - 2019-11-15 13:17 - 002260480 _____ (Farbar) C:\Users\hzand\Desktop\FRST64 (1).exe
2019-11-15 13:15 - 2019-11-15 13:15 - 000024956 _____ C:\Users\hzand\Desktop\download.html
2019-11-15 13:01 - 2019-11-15 13:01 - 000218464 _____ C:\Users\hzand\Desktop\search.html
2019-11-14 10:27 - 2019-11-14 10:27 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-14 10:27 - 2019-11-14 10:27 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-14 10:27 - 2019-11-14 10:27 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-14 10:26 - 2019-11-14 10:26 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-14 10:26 - 2019-11-14 10:26 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-14 10:26 - 2019-11-14 10:26 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-14 10:26 - 2019-11-14 10:26 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-14 10:26 - 2019-11-14 10:26 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-14 10:25 - 2019-11-14 10:25 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-14 10:25 - 2019-11-14 10:25 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-14 10:25 - 2019-11-14 10:25 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-14 10:25 - 2019-11-14 10:25 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-14 10:25 - 2019-11-14 10:25 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-14 10:25 - 2019-11-14 10:25 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-14 10:24 - 2019-11-14 10:24 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-14 10:24 - 2019-11-14 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-14 10:24 - 2019-11-14 10:24 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-14 10:23 - 2019-11-14 10:23 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-14 10:23 - 2019-11-14 10:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-14 10:23 - 2019-11-14 10:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-14 10:22 - 2019-11-14 10:22 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-14 10:22 - 2019-11-14 10:22 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-14 10:22 - 2019-11-14 10:22 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-08 12:38 - 2019-11-08 12:38 - 000489434 _____ C:\Users\hzand\Desktop\ticket-12932503.pdf 08-11-2019 2.pdf
2019-11-08 12:35 - 2019-11-08 12:35 - 000524807 _____ C:\Users\hzand\Desktop\etickets.pdf 08-11-2019.pdf
2019-10-30 15:48 - 2019-10-30 15:48 - 002008832 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 3.pdf
2019-10-30 15:39 - 2019-10-30 15:39 - 000250524 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 1.pdf
2019-10-29 16:27 - 2019-10-29 16:27 - 001613403 _____ C:\Users\hzand\Desktop\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf 2.pdf
2019-10-28 12:52 - 2019-10-28 12:53 - 000657713 _____ C:\Users\hzand\Desktop\ticket-12434617.pdf
2019-10-24 14:21 - 2019-10-24 14:21 - 000154864 _____ C:\Users\hzand\Desktop\IMG_20191018_0001.pdf
2019-10-16 10:49 - 2019-10-16 10:49 - 001873125 _____ C:\Users\hzand\OneDrive\Documenten\Engelstalige-verklaring-voor-medicijnen-op-reis.pdf
==================== Een maand (gewijzigd) ==================
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-11-15 13:44 - 2017-12-24 10:23 - 000000000 ____D C:\FRST
2019-11-15 13:26 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-15 13:24 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-15 13:06 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-15 13:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-15 12:58 - 2019-01-30 17:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-14 18:59 - 2015-10-30 08:24 - 000000167 _____ C:\WINDOWS\win.ini
2019-11-14 15:58 - 2017-07-12 18:02 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-14 10:50 - 2017-07-12 18:02 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-14 10:45 - 2019-01-30 17:25 - 001681094 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 10:45 - 2018-09-15 17:42 - 000749784 _____ C:\WINDOWS\system32\perfh013.dat
2019-11-14 10:45 - 2018-09-15 17:42 - 000146608 _____ C:\WINDOWS\system32\perfc013.dat
2019-11-14 10:44 - 2017-12-06 22:00 - 000000000 ___RD C:\Users\hzand\3D Objects
2019-11-14 10:44 - 2016-04-27 07:37 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 10:39 - 2019-01-30 17:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-14 10:39 - 2019-01-30 17:05 - 000434584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 10:37 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 10:35 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-14 10:34 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-14 10:33 - 2017-07-17 20:21 - 000002355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-14 10:30 - 2019-01-30 17:12 - 000000000 ____D C:\Users\hzand
2019-11-13 19:55 - 2017-12-06 21:38 - 000000000 ____D C:\Users\hzand\AppData\Local\Packages
2019-11-13 19:12 - 2017-08-03 17:44 - 000000000 ____D C:\Users\hzand\AppData\Local\Albelli Fotoboeken
2019-11-13 19:09 - 2017-07-12 16:55 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-13 19:01 - 2017-09-16 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-11-13 18:58 - 2019-06-20 12:07 - 000004650 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-11-13 18:58 - 2019-06-20 12:07 - 000004490 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2019-11-13 18:58 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-11-13 18:58 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-11-13 18:55 - 2017-08-03 17:44 - 000002008 _____ C:\Users\hzand\Desktop\albelli NL.lnk
2019-11-13 18:55 - 2017-08-03 17:44 - 000000000 ____D C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\albelli NL
2019-11-08 12:49 - 2018-06-18 19:00 - 000000000 ____D C:\ProgramData\Packages
2019-11-08 12:48 - 2019-01-30 17:35 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2753020900-3500922324-953930212-1001
2019-11-08 12:47 - 2019-02-10 16:48 - 000002401 _____ C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-08 12:47 - 2017-07-12 12:56 - 000000000 ___RD C:\Users\hzand\OneDrive
2019-11-08 12:40 - 2017-08-16 11:09 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-11-08 12:35 - 2019-01-30 17:35 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-08 12:35 - 2019-01-30 17:35 - 000003454 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-08 12:33 - 2017-07-12 17:54 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-29 16:21 - 2018-03-14 12:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-21 10:43 - 2019-04-22 14:23 - 000000000 ____D C:\Users\hzand\Desktop\Peru
2019-10-17 13:36 - 2019-07-10 21:52 - 000000000 ____D C:\Users\hzand\AppData\Local\CrashDumps
2019-10-17 13:30 - 2017-07-13 20:28 - 000000000 ____D C:\Program Files\CCleaner
==================== Bestanden in de root van sommige mappen ========
2018-12-25 13:29 - 2018-12-25 13:29 - 000005632 _____ () C:\Users\hzand\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-22 14:21 - 2018-08-22 14:21 - 000000017 _____ () C:\Users\hzand\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
==================== Einde van FRST.txt ========================
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 14-11-2019
Gestart door hzand (15-11-2019 13:45:40)
Gestart vanaf C:\Users\hzand\Desktop
Windows 10 Home Versie 1809 17763.864 (X64) (2019-01-30 16:37:08)
Boot Modus: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2753020900-3500922324-953930212-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2753020900-3500922324-953930212-503 - Limited - Disabled)
Gast (S-1-5-21-2753020900-3500922324-953930212-501 - Limited - Enabled)
hzand (S-1-5-21-2753020900-3500922324-953930212-1001 - Administrator - Enabled) => C:\Users\hzand
WDAGUtilityAccount (S-1-5-21-2753020900-3500922324-953930212-504 - Limited - Disabled)
==================== Security Center ========================
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Geïnstalleerde programma's ======================
(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.293 - Adobe)
Albelli Fotoboeken (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: 19.2.2.5008 - albelli NL)
Backup and Sync from Google (HKLM\...\{93EBD8BA-7A14-4636-8F1F-E929ADF2C3A9}) (Version: 3.47.7654.0300 - Google, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.3 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.59 - Piriform)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Gebruikersregistratie voor Canon MG3600 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG3600 series) (Version: - â€Canon Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.36 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - Uw bedrijfsnaam)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.88.3 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: - )
Malwarebytes versie 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Professional Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM-x32\...\{90160000-001F-040C-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PhotoPad Image Editor (HKLM-x32\...\PhotoPad) (Version: 2.81 - NCH Software)
Prism Video File Converter (HKLM-x32\...\Prism) (Version: 4.28 - NCH Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.)
S Agent (HKLM\...\{061881E0-653B-41CA-839E-2BA6569B5FEE}) (Version: 1.1.69 - Samsung Electronics Co., Ltd.) Hidden
Samsung Update (HKLM-x32\...\{07293DB3-A8AB-4861-B5A9-C6A55B5CA7C5}) (Version: 2.2.57 - Samsung Electronics Co., Ltd.)
Samsung Update Service (HKLM\...\{06A23D54-8603-4F81-871D-E4A628251C9D}) (Version: 3.0.39 - Samsung Electronics Co., Ltd.)
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Spotnet (HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\Spotnet) (Version: 2.0.0.276 - Spotnet)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM-x32\...\{90160000-001F-0413-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 32-Bit Edition (HKLM-x32\...\{90160000-012B-0413-0000-0000000FF1CE}_Office16.PROPLUS_{45B1F5CF-EE6B-4C5D-9602-A2B797B741F5}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.151.300.0_x86__kgqvnymyfvs32 [2019-11-08] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-27] (Canon Inc.)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.4.0.5_x86__h6adky7gbf63m [2019-10-16] (Gameloft.)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-24] (Facebook Inc)
Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20368.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Nieuws -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-11-13] (Microsoft Corporation) [MS Ad]
MSN sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
PicsArt - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PicsArt-PhotoStudio_8.8.0.0_x86__crhqpqs3x1ygc [2019-10-16] (PicsArt Inc.) [MS Ad]
Samsung Update -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungUpdate_3.0.42.0_x64__3c1yjt4zspk6g [2019-09-25] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-10-30] (Twitter Inc.)
==================== Aangepaste CLSID (gefilterd): ==============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll -> Geen bestand
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll -> Geen bestand
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (gefilterd) ====================
==================== Snelkoppelingen & WMI ========================
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
ShortcutWithArgument: C:\Users\hzand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Lidl.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kpjpeemajomapdcbpkjopdmekhefplik
==================== Geladen Modules (gefilterd) =============
2017-08-16 11:09 - 2017-12-07 10:25 - 000219648 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJPLM\cnmpu2.dll
2017-08-16 11:29 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL
==================== Alternate Data Streams (gefilterd) ========
==================== Veilige Modus (gefilterd) ==================
==================== Bestandskoppeling (gefilterd) =================
==================== Internet Explorer vertrouwde/beperkte toegang ==========
==================== Hosts inhoud: =========================
(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)
2015-10-30 08:24 - 2018-08-13 15:00 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere gebieden ===========================
(Momenteel is er geen automatische fix voor dit onderdeel.)
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hzand\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG-20180929-WA0000.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is ingeschakeld.
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "WinZip PreLoader"
HKLM\...\StartupApproved\Run: => "WinZip UN"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2753020900-3500922324-953930212-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Firewall regels (gefilterd) ================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
FirewallRules: [{8DA8C56B-BC2E-4B2A-A98D-E39F5282923E}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe (Nero AG -> )
FirewallRules: [{C5267117-630B-4AF8-953C-3D305DA8387D}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{52BB1E88-953E-40C1-8D92-02084817E136}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C34D1A67-C5C0-484D-B7A4-0A3997AE8E1A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BF9C5D3-4AE9-42A2-9FB6-72796CAE0247}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94EC4B4C-26F6-4423-89BA-353439D3ED5C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{847915C3-78CD-46A9-BE99-B68B054924C7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0701A281-7A00-4CAF-A6F3-1E34D2E87820}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1C4C75B4-2981-468E-AFAC-E3821E5F94B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BEC3B630-8A64-4B49-B043-3496FA73A0A0}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [Bestand niet getekend]
FirewallRules: [UDP Query User{3C0374F9-7E2E-42BA-9F16-06310784CDD7}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [Bestand niet getekend]
FirewallRules: [{7F592D3C-E2BD-4415-9041-540A576A19A0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Herstelpunten =========================
13-11-2019 19:28:03 Windows Update
==================== Defecte Apparaatbeheer Apparaten ============
==================== Eventlog fouten: ========================
Applicatiefouten:
==================
Error: (11/14/2019 10:45:50 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fout tijdens bijwerken van status Windows Defender naar SECURITY_PRODUCT_STATE_ON.
Error: (11/14/2019 10:45:50 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fout tijdens bijwerken van status Windows Defender naar SECURITY_PRODUCT_STATE_ON.
Error: (11/14/2019 10:44:11 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Gebruikerscomponent is geladen door een ander proces (Registry Lock). Procesnaam: C:\Windows\System32\svchost.exe, PID: 5688, ProfSvc PID: 2044.
Error: (11/14/2019 10:39:41 AM) (Source: Microsoft-Windows-WMI) (EventID: 28) (User: NT AUTHORITY)
Description: Kan de WMI-kern of het providersubsysteem of gebeurtenissubsysteem niet initialiseren. Foutnummer: 0x80041002. Dit kan het gevolg zijn van een onjuist geïnstalleerde versie van WMI, een mislukte upgrade van de WMI-opslagplaats, onvoldoende schijfruimte of onvoldoende geheugen.
Error: (11/14/2019 10:35:33 AM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Product: Microsoft Excel MUI (Dutch) 2016 - Update 'Security Update for Microsoft Excel 2016 (KB4484144) 32-Bit Edition' kan niet worden geïnstalleerd. Foutcode: 1603. Windows Installer kan logboekbestanden maken om te helpen bij het oplossen van problemen tijdens het installeren van softwarepakketten. Raadpleeg de volgende koppeling voor aanwijzingen over het inschakelen van ondersteuning via logboekregistratie: http://go.microsoft.com/fwlink/?LinkId=23127
Error: (11/14/2019 10:35:33 AM) (Source: MsiInstaller) (EventID: 10005) (User: NT AUTHORITY)
Description: Product: Microsoft Excel MUI (Dutch) 2016 -- Fout 2333. Er is een interne fout opgetreden. (32 C:\WINDOWS\Installer\ ) Neem contact op met Microsoft Productondersteuning (PSS). Zie PSS10R.CHM.
Error: (11/14/2019 10:30:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: SUEngine.exe, versie: 3.0.39.0, tijdstempel: 0x5d1aeaee
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17763.802, tijdstempel: 0x86aa4cf5
Uitzonderingscode: 0xe0434352
Foutmarge: 0x0000000000039129
Id van proces met fout: 0x14dcc
Starttijd van toepassing met fout: 0x01d59ace31a6d19d
Pad naar toepassing met fout: C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 2368cab6-172b-42c1-a16f-e965c3ec2f9c
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (11/14/2019 10:30:55 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: SUEngine.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: System.Management.ManagementException
bij System.Management.ManagementException.ThrowWithExtendedInfo(System.Management.ManagementStatus)
bij System.Management.ManagementScope.InitializeGuts(System.Object)
bij System.Management.ManagementScope.Initialize()
bij System.Management.ManagementObjectSearcher.Initialize()
bij System.Management.ManagementObjectSearcher.Get()
bij SU3.Information.SystemInformation.get_SerialNumber()
bij SU3.Information.SystemInformation.Init(System.String)
bij SU3.SysMon.ORCASvrMon.CheckORCAStatus()
bij SU3.SysMon.ORCASvrMon.Run(System.Object)
bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bij System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bij System.Threading.ThreadPoolWorkQueue.Dispatch()
Systeemfouten:
=============
Error: (11/15/2019 01:44:25 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/15/2019 01:01:01 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 08:04:44 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (11/14/2019 07:26:32 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 07:06:24 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (11/14/2019 07:00:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Windows Search-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.
Error: (11/14/2019 07:00:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Windows Search.
Error: (11/14/2019 07:00:23 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
en APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
aan de gebruiker LAPTOP\hzand SID (S-1-5-21-2753020900-3500922324-953930212-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Windows Defender:
===================================
Date: 2019-11-15 13:29:51.360
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {04561491-852E-4FAF-9BF2-F623A7000AD4}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-15 12:58:36.061
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {7CEBEB8B-2BB6-4705-81E8-24D3E7A23B70}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-14 18:59:09.100
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {FCC49520-969A-4DC4-9F6C-6756A26BE1C1}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-12 15:06:33.316
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {D8DEA519-F7A6-4AA7-9662-C7440DB92122}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-12 12:33:47.938
Description:
Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid.
Scan-id: {B3D17FF4-F782-421F-B0A2-F488B942ED41}
Type scan: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM
Date: 2019-11-14 10:50:57.363
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.305.2024.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16500.1
Foutcode: 0x80240016
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
Date: 2019-08-20 22:18:00.217
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.299.2423.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16200.1
Foutcode: 0x80240438
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
Date: 2019-08-14 21:35:37.077
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie:
Vorige handtekeningversie: 1.299.1999.0
Bron update: Microsoft-updateserver
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie:
Vorige engineversie: 1.1.16200.1
Foutcode: 0x8024001e
Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen.
CodeIntegrity:
===================================
Date: 2019-11-12 14:02:06.058
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-12 14:02:06.047
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-12 14:02:06.036
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.639
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.632
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-11-11 13:21:26.625
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-29 16:17:20.674
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-29 16:17:20.664
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.
==================== Geheugen info ===========================
BIOS: Phoenix Technologies Ltd. 04KQ.M007.20100621.KSJ 06/21/2010
Moederbord: SAMSUNG ELECTRONICS CO., LTD. R530/R730/P530
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Percentage geheugen in gebruik: 46%
Totaal fysiek RAM-geheugen: 6004.55 MB
Beschikbaar fysiek RAM-geheugen: 3220.03 MB
Totaal Virtueel geheugen: 6964.55 MB
Beschikbaar Virtueel geheugen: 3990.03 MB
==================== Schijven ================================
Drive c: () (Fixed) (Total:197.58 GB) (Free:134.43 GB) NTFS
Drive d: () (Fixed) (Total:166.8 GB) (Free:135.89 GB) NTFS
Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:410.38 GB) NTFS
\\?\Volume{3a5205a3-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.49 GB) (Free:0.23 GB) NTFS
\\?\Volume{3a5205a3-0000-0000-0000-703d74000000}\ () (Fixed) (Total:0.8 GB) (Free:0.41 GB) NTFS
==================== MBR & Partitietabel ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 3A5205A3)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=166.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=197.6 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=819 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: A58CA089)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Einde van Addition.txt =======================
