Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 17.01.2018 01 Gestart door **** (Beheerder) op **** (19-01-2018 21:11:36) Gestart vanaf C:\Users\****\Downloads Geladen Profielen: **** (Beschikbare Profielen: **** & sjann_000) Platform: Windows 10 Home Versie 1709 16299.125 (X64) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: FF) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BsSentry.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Hide My IP) C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe () C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe (TorrentsTime) C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe () C:\Program Files\TrueColor\TrueColorALS.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardTray.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe (Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\outlook.exe (BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BgGameMon.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe (Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe (Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1712.3351.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Register (gefilterd) =========================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-11-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-11-27] (Realtek Semiconductor) HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5789512 2014-01-15] (Dell Inc.) HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [410608 2017-02-24] () HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation) HKLM\...\Run: [TrueColor UI] => C:\Program Files\TrueColor\TrueColorUI.exe [18785776 2014-04-30] (Entertainment Expe****ce) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-16] (Synaptics Incorporated) HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuardTray.exe [140216 2018-01-03] (BullGuard Ltd.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632 2015-07-22] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2018-01-08] (Dropbox, Inc.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3237808 2018-01-09] (Dominik Reichl) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-03-11] (CANON INC.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrictie <==== AANDACHT HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd) HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44016 2018-01-08] (Glarysoft Ltd) HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office 15\root\office15\lync.exe [24315568 2017-12-12] (Microsoft Corporation) HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\...\Run: [HideMyIPSh] => C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe [353832 2017-02-24] (HideMyIP) Startup: C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BullGuard.lnk [2017-12-07] ShortcutTarget: BullGuard.lnk -> C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe (BullGuard Ltd.) Startup: C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Firefox.lnk [2017-11-18] ShortcutTarget: Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) Startup: C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\KeePass 2.lnk [2016-03-11] ShortcutTarget: KeePass 2.lnk -> C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe (Dominik Reichl) Startup: C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outlook 2013.lnk [2017-11-18] ShortcutTarget: Outlook 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\outlook.exe (Microsoft Corporation) BootExecute: autocheck autochk * GroupPolicy: Restrictie <==== AANDACHT ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\HMIPCore.dll [364032 2016-04-18] (Hide My IP) Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\HMIPCore.dll [364032 2016-04-18] (Hide My IP) Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\HMIPCore.dll [364032 2016-04-18] (Hide My IP) Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\HMIPCore.dll [364032 2016-04-18] (Hide My IP) Winsock: Catalog9 18 C:\WINDOWS\SysWOW64\HMIPCore.dll [364032 2016-04-18] (Hide My IP) Winsock: Catalog9-x64 01 C:\WINDOWS\system32\HMIPCore64.dll [475136 2016-04-18] (Hide My IP) Winsock: Catalog9-x64 02 C:\WINDOWS\system32\HMIPCore64.dll [475136 2016-04-18] (Hide My IP) Winsock: Catalog9-x64 03 C:\WINDOWS\system32\HMIPCore64.dll [475136 2016-04-18] (Hide My IP) Winsock: Catalog9-x64 04 C:\WINDOWS\system32\HMIPCore64.dll [475136 2016-04-18] (Hide My IP) Winsock: Catalog9-x64 05 C:\WINDOWS\system32\HMIPCore64.dll [475136 2016-04-18] (Hide My IP) Hosts: Er zijn meer dan één item in Hosts. Zie Hosts deel van Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{AD58FE06-A45A-45DE-9E64-E3EE635C183C}: [DhcpNameServer] 95.211.171.165 95.211.171.166 Tcpip\..\Interfaces\{d8179bbb-7140-4674-a83e-49a306a08243}: [NameServer] 208.67.222.222,208.67.220.220 Tcpip\..\Interfaces\{d8179bbb-7140-4674-a83e-49a306a08243}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1414862450&from=cor&uid=WDCXWD5000AADS-67S9B0_WD-WCAV9760544205442 HKU\S-1-5-21-3624284318-2546348150-2017862104-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB SearchScopes: HKU\S-1-5-21-3624284318-2546348150-2017862104-1001 -> DefaultScope {DB7EF8D8-4720-4776-92D7-8D7C1946B712} URL = SearchScopes: HKU\S-1-5-21-3624284318-2546348150-2017862104-1001 -> {DB7EF8D8-4720-4776-92D7-8D7C1946B712} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-12-12] (Microsoft Corporation) BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-12-12] (Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-12-12] (Microsoft Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270 [2018-01-19] FF Homepage: Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270 -> startpage.com FF NewTabOverride: Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270 -> Enabled: newtaboverride@agenedia.com FF NewTabOverride: Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270 -> Enabled: "id":"{66E978CD-981F-47DF-AC42-E3CF417C1467 FF Extension: (Ghostery) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\firefox@ghostery.com.xpi [2018-01-11] FF Extension: (HTTPS Everywhere) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\https-everywhere-eff@eff.org.xpi [2018-01-13] FF Extension: (NO Google Analytics) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\jid1-JcGokIiQyjoBAQ@jetpack.xpi [2017-04-20] [Verouderd] FF Extension: (New Tab Override) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\newtaboverride@agenedia.com.xpi [2018-01-12] FF Extension: (uBlock Origin) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\uBlock0@raymondhill.net.xpi [2018-01-14] FF Extension: (RefControl) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\{455D905A-D37C-4643-A9E2-F6FEFAA0424A}.xpi [2017-04-20] [Verouderd] FF Extension: (New Tab Homepage) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2017-10-25] FF Extension: (Mozilla Archive Format) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\{7f57cf46-4467-4c2d-adfa-0cba7c507e54}.xpi [2017-11-13] [Verouderd] FF Extension: (Adblock Plus) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-13] FF Extension: (Disable JavaScript Shared Memory) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\e5pn7dd0.default-1492609705270\features\{0d2dcd24-8b8e-4163-a4e7-1a95f87e30ff}\disable-js-shared-memory@mozilla.org.xpi [2018-01-06] [Verouderd] FF HKLM-x32\...\Firefox\Extensions: [antiphishing@bullguard] - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard => niet gevonden FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-14] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-14] () FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-18] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-18] (Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-06] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2015-11-11] (Verimatrix, Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin HKU\S-1-5-21-3624284318-2546348150-2017862104-1001: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2015-11-11] (Verimatrix, Inc.) FF Plugin HKU\S-1-5-21-3624284318-2546348150-2017862104-1001: SkypePlugin -> C:\Users\****\AppData\Local\SkypePlugin\7.18.0.51\npGatewayNpapi.dll [2016-04-25] (Skype Technologies S.A.) FF Plugin HKU\S-1-5-21-3624284318-2546348150-2017862104-1001: SkypePlugin64 -> C:\Users\****\AppData\Local\SkypePlugin\7.18.0.51\npGatewayNpapi-x64.dll [2016-04-25] (Skype Technologies S.A.) FF Plugin HKU\S-1-5-21-3624284318-2546348150-2017862104-1001: torrents-time.com/TTPlugin -> C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll [2017-01-17] (Torrents Time) FF Plugin HKU\S-1-5-21-3624284318-2546348150-2017862104-1001: www.mydlink.com/Uplayer -> C:\Users\****\AppData\Roaming\D-Link\mydlink services plugin\1.0.2.7\npUplayer.dll [2015-12-11] (D-Link Corporation) Chrome: ======= CHR StartupUrls: Default -> "hxxps://www.netflix.com/browse" CHR Profile: C:\Users\****\AppData\Local\Google\Chrome\User Data\Default [2018-01-19] CHR Extension: (Slides) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Docs) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11] CHR Extension: (YouTube) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11] CHR Extension: (Sheets) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Docs Offline) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-11] CHR Extension: (mydlink services plugin) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldibdoepbjbkkcbgndfljnphngpglhbb [2017-10-26] CHR Extension: (Chrome Web Store Payments) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23] CHR Extension: (Gmail) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-11] CHR Extension: (Chrome Media Router) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-09] ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated) S3 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [1579960 2018-01-03] (BullGuard Ltd.) R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [275384 2018-01-03] (BullGuard Ltd.) R2 BsFileScan; C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll [515512 2018-01-03] (BullGuard Ltd.) R2 BsMailProxy; C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy\BsMailProxy.dll [6050744 2018-01-03] (BullGuard Ltd.) R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [859064 2018-01-03] (BullGuard Ltd.) R2 BsNet; C:\Program Files\BullGuard Ltd\BullGuard\BsNet.dll [726456 2018-01-03] (BullGuard Ltd.) R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [324024 2018-01-03] (BullGuard Ltd.) R2 BsSentry; C:\Program Files\BullGuard Ltd\BullGuard\BsSentry.exe [455608 2018-01-03] (BullGuard Ltd.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (BlueStack Systems, Inc.) R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [405944 2018-01-13] (BullGuard Ltd.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation) R2 D-Link SharePort Plus Helper; C:\Program Files\D-Link\SharePort Plus\Spnuhelper.exe [49152 2011-03-25] () [Bestand niet getekend] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-11] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-11] (Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2018-01-08] (Dropbox, Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208760 2017-07-27] (Dell Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294584 2017-07-27] (Dell Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-07-27] (Dell Inc.) R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc.) S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Aviata, Inc.) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [232320 2017-11-21] (Dell Inc.) R2 HideMyIpSRV; C:\Program Files (x86)\Hide My IP 6\HideMyIpSRV.exe [3964416 2016-04-18] (Hide My IP) [Bestand niet getekend] R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation) R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [190208 2016-11-11] (Intel Corporation) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [382448 2017-02-24] (Intel Corporation) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-05] () R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Bestand niet getekend] S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-18] (Intel Corporation) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-11-27] (Realtek Semiconductor) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [41432 2017-11-30] (Dell Inc.) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-16] (Synaptics Incorporated) R2 TrueColorALS; C:\Program Files\TrueColor\TrueColorALS.exe [89072 2014-04-30] () R2 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [3278336 2017-01-27] (TorrentsTime) [Bestand niet getekend] R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [Bestand niet getekend] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation) S4 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [656664 2014-08-19] (Wacom Technology, Corp.) S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\Wondershare Video Converter Ultimate\Transfer\DriverInstall.exe" [X] ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) R1 BdAgent; C:\WINDOWS\System32\DRIVERS\BdAgent.sys [174744 2017-09-16] (BullGuard Ltd.) R0 BdNet; C:\WINDOWS\System32\DRIVERS\BdNet.sys [155568 2017-08-25] (BullGuard Ltd.) R1 BdSentry; C:\WINDOWS\System32\DRIVERS\BdSentry.sys [84376 2017-10-18] (BullGuard Ltd.) R1 BdSpy; C:\WINDOWS\System32\DRIVERS\BdSpy.sys [94952 2017-08-25] (BullGuard Ltd.) S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (BlueStack Systems) R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-07-27] (Dell Inc.) R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-07-27] (Dell Computer Corporation) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.) S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-04-29] (Glarysoft Ltd) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [230144 2016-11-11] (Intel Corporation) R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100824 2013-12-18] (Intel Corporation) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83096 2015-11-25] (McAfee, Inc.) R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2017-09-29] (Intel Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [896744 2015-11-27] (Realtek ) R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [435200 2016-09-02] (Realsil Semiconductor Corporation) R2 sxuptp; C:\WINDOWS\System32\drivers\sxuptp.sys [317792 2015-09-03] (silex technology, Inc.) R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57032 2015-07-16] (Synaptics Incorporated) R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [485512 2017-08-25] (BitDefender S.R.L.) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2017-09-29] (Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation) ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Een Maand Aangemaakt bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2018-01-19 21:11 - 2018-01-19 21:12 - 000030254 _____ C:\Users\****\Downloads\FRST.txt 2018-01-19 21:10 - 2018-01-19 21:11 - 000000000 ____D C:\FRST 2018-01-19 21:10 - 2018-01-19 21:10 - 002393088 _____ (Farbar) C:\Users\****\Downloads\FRST64.exe 2018-01-19 12:46 - 2018-01-19 12:47 - 000000000 ____D C:\Users\****\Downloads\Murder on the O****t Express (2017) ENG HDCAM-H264-AC3-Zi$t 2018-01-19 12:46 - 2018-01-19 12:46 - 000000000 ____D C:\Users\****\Downloads\Murder.On.The.O****t.Express.2017.CAM.XViD.V2 26k 2018-01-19 12:43 - 2018-01-19 12:45 - 000000000 ____D C:\Users\****\AppData\LocalLow\BitTorrent 2018-01-19 00:08 - 2018-01-19 00:08 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk 2018-01-19 00:07 - 2018-01-19 00:07 - 011205832 _____ (Piriform Ltd) C:\Users\****\Downloads\CCleaner_v5.39.6399.exe 2018-01-18 17:14 - 2018-01-18 17:15 - 004543471 _____ C:\Users\****\Desktop\Hannah.pdf 2018-01-18 17:09 - 2018-01-18 17:12 - 004558883 _____ C:\Users\****\Documents\IMG_20180118_0001.pdf 2018-01-16 19:46 - 2018-01-16 19:46 - 000013663 _____ C:\Users\****\Desktop\VvE 16-01-2018.xlsx 2018-01-16 19:18 - 2018-01-16 19:18 - 000422699 _____ C:\Users\****\Downloads\bbb15-bedrijfsmiddelen.pdf 2018-01-16 19:18 - 2018-01-16 19:18 - 000283220 _____ C:\Users\****\Downloads\lab15-aansprakelijkheidsverzekering-voor-bedrijven.pdf 2018-01-16 19:17 - 2018-01-16 19:17 - 000157063 _____ C:\Users\****\Downloads\bga15-glasverzekering-vve.pdf 2018-01-16 19:16 - 2018-01-16 19:16 - 000238809 _____ C:\Users\****\Downloads\bgv15-brandverzekering-gebouwen-vve.pdf 2018-01-16 19:15 - 2018-01-16 19:15 - 000142336 _____ C:\Users\****\Downloads\ZAV15-algemene-voorwaarden.pdf 2018-01-14 18:12 - 2018-01-14 18:12 - 000909493 _____ C:\Users\****\Desktop\VvE aanmeldingsformulier.pages 2018-01-13 18:23 - 2018-01-14 08:53 - 000010679 _____ C:\Users\****\Desktop\Map1.xlsx 2018-01-13 10:51 - 2018-01-13 10:52 - 000002401 _____ C:\Users\sjann_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-01-12 15:43 - 2018-01-12 15:43 - 000266565 _____ C:\Users\****\Documents\IMG_20180112_0001.pdf 2018-01-11 23:48 - 2018-01-11 23:48 - 000000000 ____D C:\Program Files (x86)\Dell Update 2018-01-11 23:47 - 2018-01-11 23:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2018-01-11 07:51 - 2018-01-11 07:51 - 003231080 _____ (Dominik Reichl ) C:\Users\****\Downloads\KeePass-2.38-Setup(1).exe 2018-01-10 11:37 - 2018-01-10 11:44 - 004865924 _____ C:\Users\****\Downloads\transavia-seat-confirmation-RMFEIN_HV 322.pdf 2018-01-08 22:15 - 2018-01-08 22:15 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2018-01-08 22:15 - 2018-01-08 22:15 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2018-01-08 22:15 - 2018-01-08 22:15 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2018-01-08 22:15 - 2018-01-08 22:15 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2018-01-02 19:01 - 2018-01-02 19:01 - 005412175 _____ C:\Users\sjann_000\Documents\Taxatierapport.pdf 2017-12-30 13:10 - 2017-12-30 13:10 - 000656609 _____ C:\Users\****\Documents\IMG_20171230_0005.pdf 2017-12-30 13:09 - 2017-12-30 13:09 - 001162019 _____ C:\Users\****\Documents\IMG_20171230_0003.pdf 2017-12-30 13:09 - 2017-12-30 13:09 - 000841890 _____ C:\Users\****\Documents\IMG_20171230_0004.pdf 2017-12-30 13:08 - 2017-12-30 13:08 - 000994197 _____ C:\Users\****\Documents\IMG_20171230_0002.pdf 2017-12-30 13:07 - 2017-12-30 13:07 - 000867284 _____ C:\Users\****\Documents\IMG_20171230_0001.pdf 2017-12-28 16:59 - 2017-12-30 13:11 - 000000000 ____D C:\**** regelt, zorgt en ontzorgt 2017-12-28 16:57 - 2017-12-28 16:57 - 000443609 _____ C:\Users\****\Documents\IMG_20171228_0001.pdf 2017-12-28 16:57 - 2017-12-28 16:57 - 000226759 _____ C:\Users\****\Documents\IMG_20171228_0002.pdf 2017-12-23 15:24 - 2017-12-23 15:24 - 000625904 _____ C:\Users\****\Documents\IMG_20171223_0002.pdf ==================== Een Maand Gewijzigd bestanden en mappen ======== (Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.) 2018-01-19 21:10 - 2016-03-08 20:09 - 000000000 ____D C:\ProgramData\BullGuard 2018-01-19 21:09 - 2016-11-15 20:57 - 000000000 ____D C:\Users\****\AppData\LocalLow\Mozilla 2018-01-19 21:08 - 2017-10-22 16:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2018-01-19 20:25 - 2015-02-06 12:59 - 000000000 ____D C:\Mijn documenten 2018-01-19 19:40 - 2015-02-06 13:46 - 000000000 ____D C:\Users\****\Documents\Outlook-bestanden 2018-01-19 19:31 - 2016-05-12 22:53 - 000000000 ____D C:\Tantiek 2018-01-19 18:07 - 2017-10-22 17:02 - 000000000 ____D C:\Users\****\AppData\Local\Packages 2018-01-19 16:09 - 2015-02-06 12:48 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5 2018-01-19 16:04 - 2017-04-07 19:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2018-01-19 16:04 - 2015-07-29 18:21 - 000000000 __SHD C:\Users\****\IntelGraphicsProfiles 2018-01-19 16:03 - 2017-10-22 17:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-01-19 16:01 - 2017-09-29 09:45 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2018-01-19 16:01 - 2016-04-02 16:53 - 000000000 ____D C:\Users\****\AppData\Roaming\BitTorrent 2018-01-19 16:01 - 2015-08-18 17:39 - 000000000 ____D C:\Users\****\AppData\Roaming\KeePass 2018-01-19 14:37 - 2015-02-06 12:59 - 000000000 ____D C:\Kijkduin 2018-01-19 12:56 - 2015-02-09 20:34 - 000000000 ____D C:\Users\****\AppData\Roaming\vlc 2018-01-19 08:39 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization 2018-01-19 08:38 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps 2018-01-19 08:38 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness 2018-01-19 08:28 - 2016-04-26 06:15 - 000000000 ____D C:\Program Files\Mozilla Firefox 2018-01-19 08:28 - 2015-02-06 12:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-01-19 00:08 - 2017-10-26 22:34 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2018-01-18 18:57 - 2016-11-26 16:10 - 000000000 ____D C:\Users\sjann_000\AppData\LocalLow\Mozilla 2018-01-18 18:56 - 2015-07-29 20:12 - 000000000 __SHD C:\Users\sjann_000\IntelGraphicsProfiles 2018-01-18 15:50 - 2017-11-09 12:38 - 000000843 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2018-01-17 21:27 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-01-17 21:25 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF 2018-01-17 21:24 - 2015-02-06 13:24 - 000000000 ____D C:\Program Files\Microsoft Office 15 2018-01-17 21:13 - 2017-06-30 06:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2018-01-13 10:52 - 2017-10-22 17:21 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3624284318-2546348150-2017862104-1002 2018-01-13 10:52 - 2015-02-09 20:22 - 000000000 ___RD C:\Users\sjann_000\OneDrive 2018-01-13 09:30 - 2017-10-22 17:00 - 000000000 ____D C:\Users\sjann_000\AppData\Local\Packages 2018-01-12 15:51 - 2016-07-16 15:57 - 000000000 ____D C:\ProgramData\CanonIJPLM 2018-01-11 23:48 - 2015-07-18 17:48 - 000000000 ____D C:\Program Files (x86)\Dropbox 2018-01-11 23:48 - 2014-10-22 03:34 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2018-01-11 07:52 - 2015-08-18 16:23 - 000001152 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2018-01-11 07:52 - 2015-08-18 16:23 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2018-01-11 05:47 - 2017-10-22 17:50 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3624284318-2546348150-2017862104-1001 2018-01-11 05:47 - 2017-04-08 07:32 - 000002386 _____ C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-01-11 05:47 - 2015-02-06 12:05 - 000000000 __RDL C:\Users\****\OneDrive 2018-01-10 17:41 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-01-09 05:49 - 2016-10-20 15:48 - 000000000 ____D C:\Users\****\Desktop\anti-virus 2018-01-08 23:37 - 2017-10-22 17:21 - 000003362 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5 2018-01-08 23:37 - 2017-10-22 17:21 - 000003018 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC 2018-01-08 23:37 - 2015-02-06 12:48 - 000001127 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2018-01-07 20:42 - 2017-10-22 16:59 - 000000000 ____D C:\Users\**** 2018-01-06 05:56 - 2017-10-24 19:20 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-01-06 05:56 - 2017-10-24 19:20 - 000002242 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-01-02 08:27 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\rescache 2017-12-31 18:00 - 2015-07-18 17:54 - 000000000 ___RD C:\Users\****\Dropbox 2017-12-22 14:45 - 2017-09-29 14:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-12-22 14:45 - 2017-09-29 14:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bestanden in de root van sommige mappen ======= 2015-08-06 18:27 - 2015-08-07 15:02 - 013545694 _____ () C:\Users\****\AppData\Local\package.nw.new 2017-06-30 08:08 - 2017-06-30 08:08 - 000002755 _____ () C:\Users\****\AppData\Local\recently-used.xbel ==================== Bamital & volsnap ====================== (Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.) C:\WINDOWS\system32\winlogon.exe => Bestand is getekend C:\WINDOWS\system32\wininit.exe => Bestand is getekend C:\WINDOWS\explorer.exe => Bestand is getekend C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend C:\WINDOWS\system32\svchost.exe => Bestand is getekend C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend C:\WINDOWS\system32\services.exe => Bestand is getekend C:\WINDOWS\system32\User32.dll => Bestand is getekend C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend C:\WINDOWS\system32\userinit.exe => Bestand is getekend C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend C:\WINDOWS\system32\rpcss.dll => Bestand is getekend C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend LastRegBack: 2018-01-13 07:10 ==================== Eind van FRST.txt ============================