Opgelost vergrendelingsscherm Windows 10 home

Najsnarf · 6 mei 2018

Kennelijk is dat dus in "home"niet te wijzigen (in andere pc's in huis wèl). Ik zie dan

en dan is de toets : Afbeelding" grijs. Kan dat wijzigen alleen maar met Windows 10 Professional?

Emi · 6 mei 2018

das normaal gezien ook gewoon te wijzigen maar jij zit blijkbaar in een organisatie en dan dien je de beheerder toestemming te vragen … ik heb hier juist een virtuele Windows 10 home opgestart en kon zonder problemen een ander afbeelding geven aan het vergrendelingsscherm .

Najsnarf · 6 mei 2018

nee hoor, ruim 30 jaar een zelfstandig beroep gehad. Die beheerder moet dan fictief zijn, of hoe doen we dat? Och, en eerlijk gezegd: erg belangrijk is het niet...

fredjeh · 6 mei 2018

Kan je gewoon aanpassen, hier bij mij staat windows-spotlight maar je kan evengoed kiezen voor gelijk welke afbeelding.

porrelaar · 6 mei 2018

Normaal is het vergrendelingsscherm inderdaad ook in Windows 10 Home gewoon te wijzigen (ik deed het gisteren nog op mijn pc), maar Najsnarf kan dit nu niet...
Lees het onderstaande eens door:

MELDING 'Sommige instellingen worden door uw organisatie beheerd'

Zijn instellingen ontoegankelijk terwijl tegelijkertijd bovenin het betreffende venster de melding Sommige instellingen worden door uw organisatie beheerd wordt getoond? Meestal verdwijnt dit probleem door via Instellingen, onderdeel Privacy, sub Diagnostische gegevens en feedback de optie Diagnostische gegevens op Volledig te zetten. Het probleem is vaak ook op te lossen door met de registereditor in de registersleutel HKCU\SOFTWARE\Policies\ Microsoft\Windows\ CurrentVersion\ PushNotifications de DWORD-waarde NoToastApplicationNotification te wijzigen in 0 (mogelijk moeten de registersleutel en registerwaarde eerst worden aangemaakt), start de pc vervolgens opnieuw op.

Bron: https://www.schoonepc.nl/windows10/windows_10_instellingen.html

Aarie25 · 6 mei 2018

Ook hier kan ik met mijn home versie de afbeeldingen wijzigen.
Maar ik gebruik net als Fredje Windows spotlight zodat je regelmatig een nieuwe foto krijgt te zien.

Emi · 6 mei 2018

opmerking :
volgens "schoonepc.nl" zou men de map PushNotifications moeten zoeken op de door hen vermelde locatie ...deze is Niet juist!
*zoals je kunt zien in deze afbeelding dient men Niet in Policies te zijn !

5aeef3ac111cb-Ashampoo_Snap_zondag_6_mei_2018_14h16m04s_001_.png

artstudiog · 6 mei 2018

Nasjarf, kijk eens na of je windows (nog) geactiveerd is. Dit is een van de typische instellingen die niet bereikbaar zijn bij een proefversie.

peanut · 7 mei 2018

Sommige anti-virus programma's veroorzaken ook deze melding. In mijn geval was dat Bitdefender. Het had destijds even geduurd voordat ik daar achter kwam... Wellicht dat je de oplossing in die hoek moet zoeken...

Abraham54 · 7 mei 2018

Download

Farbar Recovery Scan Tool 32 of 64 bit van één van de onderstaande links
Farbar Recovery Scan Tool 32 bit (x86)
Farbar Recovery Scan Tool 64 bit (x64)
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen!
Opmerkingen: Alle openstaande programma's en webpagina's dienen afgesloten te zijn.

Antivirusprogramma en actieve malwarescanners dienen al voor je FRST.exe start gedeaktiveert zijn!
Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

FRST opstarten:

Windows 2000 en Windows XP: dubbelklik op FRST.exe.
Windows Vista, Windows 7, Windows 8/8.1 en Windows 10: via rechtsklik op FRST.exe of FRST64.exe en kies voor "Als Administrator uitvoeren".

FRST start op:

Wanneer het programma is geopend klik dan op de knop Yes bij de disclaimer.
Druk vervolgens op de Scan knop.
Aansluitend zal een logbestand - FRST.txt en Addition-txt aangemaakt worden en op het bureaublad opgeslagen worden.
Post de inhoud van beide logbestanden in jouw volgende bericht.

.

In geval de inhoud van een van de logs of van beide logs te groot is om te posten, kijk dan hier: Hoe een bijlage toevoegen?

Najsnarf · 7 mei 2018

Ik kreeg kennelijk al dagen geen email-=bricht ovr een nieuw antwoord. Kwam dit m.o.m. toevallig tegen. Hier alvast wat reacties:
@ fredjeh: op andere pc's in huis geen probleem, maar deze dus wel.
@porrelaar: ik zie daar helaas een grijs veld...

@ aarie: daar kan ik op dit moment weinig mee.
@peanut: heb inderdaad op deze pc Bitdefender. Ik zal hier nog eens induiken, maar ik kan me niet goed voorstellen dat een A.V.programma hier invloed op heeft?
@Abraham54: daar ga ik morgen mee verder. Had vandaag al voldoende andere problemen (wifi, nieuwe switch kopen, kabelklipje vernieuwen, dat soort dingen)

Abraham54 · 7 mei 2018

Prima hoor.
Doe het kalm aan.

Najsnarf · 8 mei 2018

Tussentijds @ Emi: aldus sleutel aangemaakt op jouw aanwijzingen

(stond vanzelf al op 0)
Na herstart: helaas, hetzelfde plaatje als bij # 1 (wel een ander tijdstip..)

Najsnarf · 8 mei 2018

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (Beheerder) op AZERTY (08-05-2018 08:35:17)
Gestart vanaf C:\Users\Gebruiker\Desktop
Geladen Profielen: F.J.Stols (Beschikbare Profielen: F.J.Stols)
Platform: Windows 10 Home Versie 1803 17134.1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(4Team) C:\Program Files (x86)\4Team Corporation\SafePSTBackup Shadow Copy Service\SafePST.ShadowCopySvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(BonSoft) C:\Program Files\ClocX\ClocX.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(eCOSM) C:\Program Files (x86)\MailWasher Pro\MailWasher.exe
(4Team Corporation) C:\Program Files (x86)\4Team Corporation\Safe PST Backup\SafePSTBackup.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588872 2017-02-20] ()
HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [2306448 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [ClocX] => C:\Program Files\ClocX\ClocX.exe [2713600 2013-01-14] (BonSoft)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [145208 2017-04-14] (Check Point Software Technologies Ltd.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2017-03-17] (TomTom)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [495616 2007-08-20] (Gadwin Systems, Inc)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [MailWasher] => C:\PROGRA~2\MAILWA~1\MAILWA~1.EXE* [4393984 2003-11-06] ()
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [Safe PST Backup] => C:\Program Files (x86)\4Team Corporation\Safe PST Backup\SafePSTBackup.exe [15792632 2018-02-01] (4Team Corporation)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66
Tcpip\..\Interfaces\{b759dc05-4683-4f91-beb2-29472251c1ba}: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.nl/
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-6b3d718d&q={searchTerms}
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-6b3d718d&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {1D4B9C1E-025D-41AE-8DEF-B53071ADC0CD} URL = hxxps://search.yahoo.com/search?p={searchTerms}&intl=us&fr=chrf-iryus&type=ypi_znlrm_00_00_ie
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> hxxp://www.google.com

FireFox:
========
FF DefaultProfile: ujuy6qkm.default-1520352159751
FF DefaultProfile: 2ueyth03.default
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\TomTom\HOME\Profiles\qt9tjb9c.default [2017-08-15]
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751 [2018-05-08]
FF Homepage: Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751 -> www.google.nl/
FF Extension: (uBlock Origin) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751\Extensions\uBlock0@raymondhill.net.xpi [2018-05-04]
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\2ueyth03.default [2018-05-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_140.dll [2018-04-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-11] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-04-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1278208 2017-02-20] ()
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2017-09-04] (AOMEI Tech Co., Ltd.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8566440 2018-04-23] (Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2016-07-23] (Macrovision Europe Ltd.) [Bestand niet getekend]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1282232 2018-01-19] (Bitdefender)
R2 SafePSTShadowCopy; C:\Program Files (x86)\4Team Corporation\SafePSTBackup Shadow Copy Service\SafePST.ShadowCopySvc.exe [16392 2018-02-01] (4Team)
S3 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7013704 2016-12-21] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [240696 2018-05-01] (Bitdefender)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4107680 2017-04-14] (Check Point Software Technologies Ltd.)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [240696 2018-05-01] (Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [240696 2018-05-01] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2016-11-01] (Check Point Software Technologies, Ltd.)
R2 ZoneAlarm ICM Service; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe [1058616 2017-04-14] (Check Point Software Technologies Ltd.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] ()
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] ()
R0 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1179248 2018-04-07] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1725800 2018-03-10] (BitDefender)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-12-07] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2017-12-07] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169376 2017-12-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-12-07] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-12-07] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-12-07] (Avira Operations GmbH & Co. KG)
R0 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [154888 2018-03-10] (Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23032 2018-04-07] (Bitdefender)
R3 edrsensor; C:\WINDOWS\System32\DRIVERS\edrsensor.sys [248336 2018-03-10] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [375136 2017-03-13] (Acronis International GmbH)
R0 gzflt; C:\WINDOWS\System32\drivers\gzflt.sys [191784 2018-03-10] (BitDefender LLC)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-04-27] (Malwarebytes)
R1 mtihint; C:\WINDOWS\system32\Drivers\mtihint.sys [18504 2015-07-14] (Micron Technology, Inc.) [Bestand niet getekend]
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [89960 2017-03-17] (Panda Security, S.L.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310560 2017-03-13] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [214360 2017-03-13] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [688864 2017-03-13] (Acronis International GmbH)
R2 trufos; C:\WINDOWS\System32\drivers\trufos.sys [607280 2018-05-01] (Bitdefender)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-21] ()
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-21] ()
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-21] ()
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324448 2017-03-13] (Acronis International GmbH)
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [461240 2017-04-13] (Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
U3 iswSvc; geen ImagePath

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

en dan:
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 08:37:32)
Gestart vanaf C:\Users\Gebruiker\Desktop
Windows 10 Home Versie 1803 17134.1 (X64) (2018-05-01 16:02:31)
Boot Modus: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1916800224-2560957495-3225600593-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1916800224-2560957495-3225600593-503 - Limited - Disabled)
F.J.Stols (S-1-5-21-1916800224-2560957495-3225600593-1001 - Administrator - Enabled) => C:\Users\Gebruiker
Gast (S-1-5-21-1916800224-2560957495-3225600593-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1916800224-2560957495-3225600593-504 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus Free Antimalware (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Antimalware (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {1B8D532F-88B1-B2AD-ED22-AED92687A1D2}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

4Team Safe PST Backup (HKLM-x32\...\{DF6372B1-3687-4C35-8FF3-AF289944A037}) (Version: 2.70.0639 - 4Team Corporation)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Photoshop Elements 7.0 (HKLM-x32\...\Adobe Photoshop Elements 7) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Adres 2000 Versie 1.93 (HKLM-x32\...\Adres 2000_is1) (Version: - H.C.C. Akkerman)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 22.0.10.78 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.10.12 - Bitdefender)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG6600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6600_series) (Version: 1.01 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
CrystalDiskInfo 7.5.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.1 - Crystal Dew World)
CutePDF Writer 3.1 (HKLM\...\CutePDF Writer Installation) (Version: 3.1 - Acro Software Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Easy Rolodex 3.2 (HKLM\...\{48FC3F43-D57D-43A3-B1E6-EE88AFD93DE5}) (Version: 3.2 - Woerdekom Webdesign en Software)
FastStone Capture 4.8 (HKLM-x32\...\FastStone Capture) (Version: 4.8 - FastStone Soft)
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
FastStone Photo Resizer 3.8 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.8 - FastStone Soft.)
Folder Size 3.4.0.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 3.4.0.0 - MindGems, Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 5.4.5.124 - Foxit Corporation)
Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.3 - Gadwin Systems, Inc.)
Gebruikersregistratie voor Canon MG6600 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG6600 series) (Version: - ‭Canon Inc.)
GFExperience.Deployer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.Deployer) (Version: 3.10.0.95 - NVIDIA Corporation) Hidden
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MailWasher Pro (HKLM-x32\...\MailWasher Pro_is1) (Version: - FireTrust Limited)
Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.9226.2114 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.2 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
NVIDIA 3D Vision controllerstuurprogramma 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Panda Devices Agent (HKLM-x32\...\{3F9548B2-0B34-4453-A92E-35056B053F19}) (Version: 1.08.00 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.08 - Panda Security) Hidden
Panda Protection (HKLM\...\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}) (Version: 8.93.00 - Panda Security) Hidden
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
TomTom HOME (HKLM-x32\...\{30E6FC43-C31F-4968-9A06-AA38E3C3CF73}) (Version: 2.10.1 - Uw bedrijfsnaam)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.0 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WhatsApp (HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\WhatsApp) (Version: 0.2.9229 - WhatsApp)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Wise Disk Cleaner 9.73 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 9.73 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 9.5.5 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 9.5.5 - WiseCleaner.com, Inc.)
ZoneAlarm Antivirus (HKLM-x32\...\{1E626920-8C87-4114-BBD0-428B6F4BFB4F}) (Version: 15.0.653.17211 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Firewall (HKLM-x32\...\{3B214EF2-9413-4300-96DB-165ECA1ED736}) (Version: 15.1.504.17269 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM-x32\...\ZoneAlarm Free Firewall) (Version: 15.1.504.17269 - Check Point)
ZoneAlarm Security (HKLM-x32\...\{A51FEF33-C7A2-492E-840B-35A85D1F007E}) (Version: 15.1.504.17269 - Check Point Software Technologies Ltd.) Hidden

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => -> Geen bestand
ContextMenuHandlers1: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => -> Geen bestand
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => -> Geen bestand
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers6: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => -> Geen bestand

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {03A48460-7DE1-483B-B5E6-F0C1E9C65D6A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {07C7DC7C-CFD5-4205-9F90-827910FE6D07} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {28912CB6-DDD4-49E7-AE8E-7F79DEC40FF0} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {32309752-8F3B-4705-B828-99C458485744} - System32\Tasks\S-1-5-21-1916800224-2560957495-3225600593-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {4031BCF8-B131-4C2D-B9DB-C6413139549E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {40DD6017-782F-43B3-AEF3-9AA4634D15C6} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [2018-04-10] (WiseCleaner.com)
Task: {495DDB1E-2354-4A25-A523-0F326C7E717E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {4D7EE024-5645-45C6-A06A-87AF0F3FBFFF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {5F8E209E-4C48-4828-A1D4-4967CF23B3E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-04] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6B31CA1C-C0F9-4F8C-AA6F-AD074AD1565F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {73DBD391-BE80-4FFC-BF4E-2BF6B30205C0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {86A8A05C-DA51-44CB-B60D-1E9E371F987D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {964DCF5A-4676-4E00-8FE3-E455808F97B9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {B023A6D4-5F3D-47BB-8ADA-D2BE786B5CD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-04] (Google Inc.)
Task: {B04A40A7-AD03-4856-AD97-AFDDFE00BA7B} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe [2017-11-09] ()
Task: {B3F76EB7-EF2C-4675-9FD2-B8AF73020F8E} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {D3147D94-0CC0-4C2F-BBB8-2D820098EA1F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {E2C5A62E-7B4E-4367-8D20-5420025AAB75} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {ECF8FDF8-7EAB-4350-A6A6-94186DE17BBF} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [2018-03-14] (WiseCleaner.com)
Task: {F249645E-F3B7-4535-B36F-60A69A64402A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-01-19] (Bitdefender)

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2016-07-23 11:08 - 2016-01-22 16:57 - 000089008 _____ () C:\WINDOWS\System32\cpwmon64.dll
2017-02-20 18:24 - 2017-02-20 18:24 - 001278208 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2018-03-10 11:39 - 2013-06-28 16:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2018-05-01 18:24 - 2018-05-01 18:24 - 000280576 _____ () C:\Program Files\Bitdefender Antivirus Free\txmlutil.dll
2018-02-27 13:18 - 2017-02-07 13:29 - 001008448 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpbr.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 000541952 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpdsp.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 003243920 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpph.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 001544568 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttprbl.mdl
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-04-12 01:35 - 2018-04-12 18:03 - 002184704 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000966512 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000339816 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000266096 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000139112 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000360304 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000495464 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000040808 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000081776 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000114544 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2018-02-27 14:06 - 2017-09-01 17:35 - 002411968 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000089960 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000073584 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000298864 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000978792 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000348008 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2018-02-27 14:06 - 2017-09-04 11:10 - 000126832 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000724848 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000175984 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000114544 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000266088 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000188264 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2016-07-22 10:10 - 2016-06-14 22:03 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2018-04-29 11:49 - 2018-04-30 16:43 - 000164528 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\JitV.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)

==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)

==================== Hosts inhoud: ===============================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.2.254 - 195.121.1.34
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is uitgeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\StartupApproved\Run: => "OneDrive"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{4B900F12-5F53-469E-9D5B-7357696A8C72}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{AAAF11CC-CF22-469C-ABB7-1524B2114B7A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{06826EE2-49A5-4F9A-813A-9C874BB0A015}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{41348984-7DEA-47DB-87AB-CED746CA3BF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6EED48A1-FD4D-4811-A627-DD6DD3120137}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9A626E48-5E9A-452B-B853-D22E6A42B175}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6CDDF7EB-A2D8-48AD-A127-CA89845A05CB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Herstelpunten =========================

02-05-2018 14:06:54 systeemherstel was alweer uitgeschakeld
04-05-2018 11:39:00 de vierde mei

==================== Defecte Apparaatbeheer Apparaten =============

==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: NT AUTHORITY)
Description: Taakplanner kan de taak >> "" met GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: NT AUTHORITY)
Description: Taakplanner kan de taak >> "" met GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:58 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:58 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Systeemfouten:
=============
Error: (05/08/2018 03:57:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
Windows.SecurityCenter.WscBrokerManager
en APPID
Niet beschikbaar
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/08/2018 03:55:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De mmsminisrv-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (05/08/2018 03:55:19 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: mmsminisrv.

Error: (05/08/2018 03:55:14 AM) (Source: Application Popup) (EventID: 875) (User: )
Description: avipbb.sys

Error: (05/08/2018 03:55:12 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (05/07/2018 03:12:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
Windows.SecurityCenter.WscBrokerManager
en APPID
Niet beschikbaar
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/07/2018 03:10:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De mmsminisrv-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (05/07/2018 03:10:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: mmsminisrv.

==================== Geheugen info ===========================

Processor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz
Percentage geheugen in gebruik: 32%
Totaal fysiek RAM-geheugen: 8127.79 MB
Beschikbaar fysiek RAM-geheugen: 5515.02 MB
Totaal Virtueel geheugen: 9407.79 MB
Beschikbaar Virtueel geheugen: 6302.88 MB

==================== Schijven ================================

Drive c: () (Fixed) (Total:221.22 GB) (Free:166.49 GB) NTFS
Drive e: ( 1 TB dikzak) (Fixed) (Total:931.51 GB) (Free:801.14 GB) NTFS
Drive f: (NieuwVolume) (Fixed) (Total:111.66 GB) (Free:74.85 GB) NTFS
Drive i: (Western Dig USB bovenop) (Fixed) (Total:465.63 GB) (Free:281.55 GB) NTFS

\\?\Volume{58bd4e30-ce49-01d3-18a7-5cac24e7e900}\ (Herstel) (Fixed) (Total:1.11 GB) (Free:0.71 GB) NTFS
\\?\Volume{926f9b4d-00dd-4234-bda6-7b0c27252c8e}\ () (Fixed) (Total:0.47 GB) (Free:0.09 GB) NTFS
\\?\Volume{5b7fd410-ce49-01d3-086a-adad24e7e900}\ () (Fixed) (Total:0.65 GB) (Free:0.62 GB) FAT32
\\?\Volume{4ed8ac85-4ff0-11e6-a66f-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 223.6 GB) (Disk ID: 45245DFC)

Partition: GPT.

========================================================
Disk: 2 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 3F00AE48)

Partition: GPT.

==================== Eind van Addition.txt ============================

Najsnarf · 8 mei 2018

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (Beheerder) op AZERTY (08-05-2018 08:35:17)
Gestart vanaf C:\Users\Gebruiker\Desktop
Geladen Profielen: F.J.Stols (Beschikbare Profielen: F.J.Stols)
Platform: Windows 10 Home Versie 1803 17134.1 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(4Team) C:\Program Files (x86)\4Team Corporation\SafePSTBackup Shadow Copy Service\SafePST.ShadowCopySvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(BonSoft) C:\Program Files\ClocX\ClocX.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(eCOSM) C:\Program Files (x86)\MailWasher Pro\MailWasher.exe
(4Team Corporation) C:\Program Files (x86)\4Team Corporation\Safe PST Backup\SafePSTBackup.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe

==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588872 2017-02-20] ()
HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [2306448 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [ClocX] => C:\Program Files\ClocX\ClocX.exe [2713600 2013-01-14] (BonSoft)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (IvoSoft)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [145208 2017-04-14] (Check Point Software Technologies Ltd.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2017-03-17] (TomTom)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [495616 2007-08-20] (Gadwin Systems, Inc)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [MailWasher] => C:\PROGRA~2\MAILWA~1\MAILWA~1.EXE* [4393984 2003-11-06] ()
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\Run: [Safe PST Backup] => C:\Program Files (x86)\4Team Corporation\Safe PST Backup\SafePSTBackup.exe [15792632 2018-02-01] (4Team Corporation)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66
Tcpip\..\Interfaces\{b759dc05-4683-4f91-beb2-29472251c1ba}: [DhcpNameServer] 192.168.2.254 195.121.1.34 195.121.1.66

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.nl/
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-6b3d718d&q={searchTerms}
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-6b3d718d&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {1D4B9C1E-025D-41AE-8DEF-B53071ADC0CD} URL = hxxps://search.yahoo.com/search?p={searchTerms}&intl=us&fr=chrf-iryus&type=ypi_znlrm_00_00_ie
SearchScopes: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (IvoSoft)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-04-30] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-30] (Microsoft Corporation)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1916800224-2560957495-3225600593-1001 -> hxxp://www.google.com

FireFox:
========
FF DefaultProfile: ujuy6qkm.default-1520352159751
FF DefaultProfile: 2ueyth03.default
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\TomTom\HOME\Profiles\qt9tjb9c.default [2017-08-15]
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751 [2018-05-08]
FF Homepage: Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751 -> www.google.nl/
FF Extension: (uBlock Origin) - C:\Users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\ujuy6qkm.default-1520352159751\Extensions\uBlock0@raymondhill.net.xpi [2018-05-04]
FF ProfilePath: C:\Users\Gebruiker\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\2ueyth03.default [2018-05-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_140.dll [2018-04-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-11] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-04-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1278208 2017-02-20] ()
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2017-09-04] (AOMEI Tech Co., Ltd.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8566440 2018-04-23] (Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2016-07-23] (Macrovision Europe Ltd.) [Bestand niet getekend]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Bestand niet getekend]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1282232 2018-01-19] (Bitdefender)
R2 SafePSTShadowCopy; C:\Program Files (x86)\4Team Corporation\SafePSTBackup Shadow Copy Service\SafePST.ShadowCopySvc.exe [16392 2018-02-01] (4Team)
S3 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7013704 2016-12-21] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [240696 2018-05-01] (Bitdefender)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4107680 2017-04-14] (Check Point Software Technologies Ltd.)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [240696 2018-05-01] (Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [240696 2018-05-01] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2016-11-01] (Check Point Software Technologies, Ltd.)
R2 ZoneAlarm ICM Service; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe [1058616 2017-04-14] (Check Point Software Technologies Ltd.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] ()
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] ()
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] ()
R0 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1179248 2018-04-07] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1725800 2018-03-10] (BitDefender)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-12-07] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2017-12-07] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169376 2017-12-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-12-07] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-12-07] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-12-07] (Avira Operations GmbH & Co. KG)
R0 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [154888 2018-03-10] (Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23032 2018-04-07] (Bitdefender)
R3 edrsensor; C:\WINDOWS\System32\DRIVERS\edrsensor.sys [248336 2018-03-10] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [375136 2017-03-13] (Acronis International GmbH)
R0 gzflt; C:\WINDOWS\System32\drivers\gzflt.sys [191784 2018-03-10] (BitDefender LLC)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-04-27] (Malwarebytes)
R1 mtihint; C:\WINDOWS\system32\Drivers\mtihint.sys [18504 2015-07-14] (Micron Technology, Inc.) [Bestand niet getekend]
R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [89960 2017-03-17] (Panda Security, S.L.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310560 2017-03-13] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [214360 2017-03-13] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [688864 2017-03-13] (Acronis International GmbH)
R2 trufos; C:\WINDOWS\System32\drivers\trufos.sys [607280 2018-05-01] (Bitdefender)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-21] ()
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-21] ()
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-21] ()
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324448 2017-03-13] (Acronis International GmbH)
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [461240 2017-04-13] (Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
U3 iswSvc; geen ImagePath

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

en dan:
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 08:37:32)
Gestart vanaf C:\Users\Gebruiker\Desktop
Windows 10 Home Versie 1803 17134.1 (X64) (2018-05-01 16:02:31)
Boot Modus: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1916800224-2560957495-3225600593-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1916800224-2560957495-3225600593-503 - Limited - Disabled)
F.J.Stols (S-1-5-21-1916800224-2560957495-3225600593-1001 - Administrator - Enabled) => C:\Users\Gebruiker
Gast (S-1-5-21-1916800224-2560957495-3225600593-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1916800224-2560957495-3225600593-504 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus Free Antimalware (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Antimalware (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ZoneAlarm Free Firewall Firewall (Disabled) {1B8D532F-88B1-B2AD-ED22-AED92687A1D2}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

4Team Safe PST Backup (HKLM-x32\...\{DF6372B1-3687-4C35-8FF3-AF289944A037}) (Version: 2.70.0639 - 4Team Corporation)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Photoshop Elements 7.0 (HKLM-x32\...\Adobe Photoshop Elements 7) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Adres 2000 Versie 1.93 (HKLM-x32\...\Adres 2000_is1) (Version: - H.C.C. Akkerman)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 22.0.10.78 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.10.12 - Bitdefender)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MG6600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6600_series) (Version: 1.01 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
CrystalDiskInfo 7.5.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.1 - Crystal Dew World)
CutePDF Writer 3.1 (HKLM\...\CutePDF Writer Installation) (Version: 3.1 - Acro Software Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Easy Rolodex 3.2 (HKLM\...\{48FC3F43-D57D-43A3-B1E6-EE88AFD93DE5}) (Version: 3.2 - Woerdekom Webdesign en Software)
FastStone Capture 4.8 (HKLM-x32\...\FastStone Capture) (Version: 4.8 - FastStone Soft)
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
FastStone Photo Resizer 3.8 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.8 - FastStone Soft.)
Folder Size 3.4.0.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 3.4.0.0 - MindGems, Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 5.4.5.124 - Foxit Corporation)
Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.3 - Gadwin Systems, Inc.)
Gebruikersregistratie voor Canon MG6600 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG6600 series) (Version: - ‭Canon Inc.)
GFExperience.Deployer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.Deployer) (Version: 3.10.0.95 - NVIDIA Corporation) Hidden
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MailWasher Pro (HKLM-x32\...\MailWasher Pro_is1) (Version: - FireTrust Limited)
Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.9226.2114 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.2 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
NVIDIA 3D Vision controllerstuurprogramma 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA HD Audio-stuurprogramma 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Panda Devices Agent (HKLM-x32\...\{3F9548B2-0B34-4453-A92E-35056B053F19}) (Version: 1.08.00 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.08 - Panda Security) Hidden
Panda Protection (HKLM\...\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}) (Version: 8.93.00 - Panda Security) Hidden
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
TomTom HOME (HKLM-x32\...\{30E6FC43-C31F-4968-9A06-AA38E3C3CF73}) (Version: 2.10.1 - Uw bedrijfsnaam)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.0 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WhatsApp (HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\WhatsApp) (Version: 0.2.9229 - WhatsApp)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Wise Disk Cleaner 9.73 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 9.73 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 9.5.5 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 9.5.5 - WiseCleaner.com, Inc.)
ZoneAlarm Antivirus (HKLM-x32\...\{1E626920-8C87-4114-BBD0-428B6F4BFB4F}) (Version: 15.0.653.17211 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Firewall (HKLM-x32\...\{3B214EF2-9413-4300-96DB-165ECA1ED736}) (Version: 15.1.504.17269 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM-x32\...\ZoneAlarm Free Firewall) (Version: 15.1.504.17269 - Check Point)
ZoneAlarm Security (HKLM-x32\...\{A51FEF33-C7A2-492E-840B-35A85D1F007E}) (Version: 15.1.504.17269 - Check Point Software Technologies Ltd.) Hidden

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => -> Geen bestand
ContextMenuHandlers1: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => -> Geen bestand
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => -> Geen bestand
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2017-08-13] (IvoSoft)
ContextMenuHandlers6: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => -> Geen bestand

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {03A48460-7DE1-483B-B5E6-F0C1E9C65D6A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {07C7DC7C-CFD5-4205-9F90-827910FE6D07} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {28912CB6-DDD4-49E7-AE8E-7F79DEC40FF0} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {32309752-8F3B-4705-B828-99C458485744} - System32\Tasks\S-1-5-21-1916800224-2560957495-3225600593-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {4031BCF8-B131-4C2D-B9DB-C6413139549E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {40DD6017-782F-43B3-AEF3-9AA4634D15C6} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [2018-04-10] (WiseCleaner.com)
Task: {495DDB1E-2354-4A25-A523-0F326C7E717E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {4D7EE024-5645-45C6-A06A-87AF0F3FBFFF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {5F8E209E-4C48-4828-A1D4-4967CF23B3E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-04] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6B31CA1C-C0F9-4F8C-AA6F-AD074AD1565F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-30] (Microsoft Corporation)
Task: {73DBD391-BE80-4FFC-BF4E-2BF6B30205C0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {86A8A05C-DA51-44CB-B60D-1E9E371F987D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-04-30] (Microsoft Corporation)
Task: {964DCF5A-4676-4E00-8FE3-E455808F97B9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {B023A6D4-5F3D-47BB-8ADA-D2BE786B5CD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-04] (Google Inc.)
Task: {B04A40A7-AD03-4856-AD97-AFDDFE00BA7B} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe [2017-11-09] ()
Task: {B3F76EB7-EF2C-4675-9FD2-B8AF73020F8E} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {D3147D94-0CC0-4C2F-BBB8-2D820098EA1F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {E2C5A62E-7B4E-4367-8D20-5420025AAB75} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {ECF8FDF8-7EAB-4350-A6A6-94186DE17BBF} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [2018-03-14] (WiseCleaner.com)
Task: {F249645E-F3B7-4535-B36F-60A69A64402A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-01-19] (Bitdefender)

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Snelkoppelingen & WMI ========================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2016-07-23 11:08 - 2016-01-22 16:57 - 000089008 _____ () C:\WINDOWS\System32\cpwmon64.dll
2017-02-20 18:24 - 2017-02-20 18:24 - 001278208 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2018-03-10 11:39 - 2013-06-28 16:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2018-05-01 18:24 - 2018-05-01 18:24 - 000280576 _____ () C:\Program Files\Bitdefender Antivirus Free\txmlutil.dll
2018-02-27 13:18 - 2017-02-07 13:29 - 001008448 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpbr.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 000541952 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpdsp.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 003243920 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttpph.mdl
2018-02-27 13:18 - 2017-02-07 13:29 - 001544568 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_000_000\ashttprbl.mdl
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-04-12 01:35 - 2018-04-12 18:03 - 002184704 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000966512 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000339816 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000266096 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000139112 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000360304 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000495464 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000040808 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000081776 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000114544 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2018-02-27 14:06 - 2017-09-01 17:35 - 002411968 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000089960 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000073584 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000298864 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000978792 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000348008 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2018-02-27 14:06 - 2017-09-04 11:10 - 000126832 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000724848 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000175984 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000114544 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000266088 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2018-02-27 14:06 - 2017-09-04 11:11 - 000188264 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2016-07-22 10:10 - 2016-06-14 22:03 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2018-04-29 11:49 - 2018-04-30 16:43 - 000164528 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\JitV.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)

==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)

==================== Hosts inhoud: ===============================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts

==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.2.254 - 195.121.1.34
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is uitgeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-1916800224-2560957495-3225600593-1001\...\StartupApproved\Run: => "OneDrive"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{4B900F12-5F53-469E-9D5B-7357696A8C72}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{AAAF11CC-CF22-469C-ABB7-1524B2114B7A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{06826EE2-49A5-4F9A-813A-9C874BB0A015}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{41348984-7DEA-47DB-87AB-CED746CA3BF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6EED48A1-FD4D-4811-A627-DD6DD3120137}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9A626E48-5E9A-452B-B853-D22E6A42B175}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6CDDF7EB-A2D8-48AD-A127-CA89845A05CB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Herstelpunten =========================

02-05-2018 14:06:54 systeemherstel was alweer uitgeschakeld
04-05-2018 11:39:00 de vierde mei

==================== Defecte Apparaatbeheer Apparaten =============

==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:38:00 AM) (Source: Acronis Scheduler) (EventID: 1) (User: NT AUTHORITY)
Description: Taakplanner kan de taak >> "" met GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:59 AM) (Source: Acronis Scheduler) (EventID: 1) (User: NT AUTHORITY)
Description: Taakplanner kan de taak >> "" met GUID 'A2BB4F95-348C-4590-958E-DF518374D6D4' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:58 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID 'FDE3E71C-2412-4847-928C-AD8BC32C3AE8' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Error: (05/08/2018 08:37:58 AM) (Source: Acronis Scheduler) (EventID: 1) (User: AZERTY)
Description: Taakplanner kan de taak >> "" met GUID '1A7779C8-8294-4740-8160-E7D888EB3738' niet uitvoeren vanwege fout 267> (The directory name is invalid.).

Systeemfouten:
=============
Error: (05/08/2018 03:57:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
Windows.SecurityCenter.WscBrokerManager
en APPID
Niet beschikbaar
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/08/2018 03:55:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De mmsminisrv-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (05/08/2018 03:55:19 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: mmsminisrv.

Error: (05/08/2018 03:55:14 AM) (Source: Application Popup) (EventID: 875) (User: )
Description: avipbb.sys

Error: (05/08/2018 03:55:12 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (05/07/2018 03:12:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
Windows.SecurityCenter.WscBrokerManager
en APPID
Niet beschikbaar
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (05/07/2018 03:10:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De mmsminisrv-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (05/07/2018 03:10:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: mmsminisrv.

==================== Geheugen info ===========================

Processor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz
Percentage geheugen in gebruik: 32%
Totaal fysiek RAM-geheugen: 8127.79 MB
Beschikbaar fysiek RAM-geheugen: 5515.02 MB
Totaal Virtueel geheugen: 9407.79 MB
Beschikbaar Virtueel geheugen: 6302.88 MB

==================== Schijven ================================

Drive c: () (Fixed) (Total:221.22 GB) (Free:166.49 GB) NTFS
Drive e: ( 1 TB dikzak) (Fixed) (Total:931.51 GB) (Free:801.14 GB) NTFS
Drive f: (NieuwVolume) (Fixed) (Total:111.66 GB) (Free:74.85 GB) NTFS
Drive i: (Western Dig USB bovenop) (Fixed) (Total:465.63 GB) (Free:281.55 GB) NTFS

\\?\Volume{58bd4e30-ce49-01d3-18a7-5cac24e7e900}\ (Herstel) (Fixed) (Total:1.11 GB) (Free:0.71 GB) NTFS
\\?\Volume{926f9b4d-00dd-4234-bda6-7b0c27252c8e}\ () (Fixed) (Total:0.47 GB) (Free:0.09 GB) NTFS
\\?\Volume{5b7fd410-ce49-01d3-086a-adad24e7e900}\ () (Fixed) (Total:0.65 GB) (Free:0.62 GB) FAT32
\\?\Volume{4ed8ac85-4ff0-11e6-a66f-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 223.6 GB) (Disk ID: 45245DFC)

Partition: GPT.

========================================================
Disk: 2 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 3F00AE48)

Partition: GPT.

==================== Eind van Addition.txt ============================
(ging wat traag weg, hoop dat het compleet en niet dubbel gepost is)

Abraham54 · 8 mei 2018

Start FRST.exe opnieuw en doe de twee stappen na elkaar:

Stap 1.
Kopieer en plak de volgende tekst in het vak "Search": Panda
Nota bene: plak het precies zoals het nu staat!

Klik daarna op Search Files.
Een Search.txt log wordt opgeslagen op dezelfde plaats waar FRST is opgeslagen plaats dat als bijlage.

Stap 2.
Kopieer en plak de volgende tekst in het vak "Search": Panda
Nota bene: plak het precies zoals het nu staat!

Klik daarna op Search Registry.
Een Registry.txt log wordt opgeslagen op dezelfde plaats waar FRST is opgeslagen plaats dat als bijlage.

Najsnarf · 8 mei 2018

eerste log snel klaar:
Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 11:12:15)
Gestart vanaf C:\Users\Gebruiker\Desktop
Boot Modus: Normal

================== Bestanden Zoeken: "Panda" =============

====== Eind van Zoeken ======
tweede deel duurde wat langer zoals aangegeven was
(alles van Farbar staat bij mij in het Nederlands)
Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 11:28:24)
Gestart vanaf C:\Users\Gebruiker\Desktop
Boot Modus: Normal

================== Zoek in Register: "Panda" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Ada2\panda_url_filtering]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"Plugins"="PandaDevicesAgentFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"PandaDevicesAgentFiles"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"Externals"="PandaDevicesAgentFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391]
"ProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391\SourceList]
"PackageName"="PandaDevicesAgent.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391\SourceList]
"LastUsedSource"="n;1;C:\Users\Gebruiker\AppData\Local\Temp\7zS4186EDAB\Program Files\Panda Security\Panda Cloud Antivirus\Tools\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Provider"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Action"="Scannen met Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"DefaultIcon"="C:\ProgramData\Panda Security\Panda Security Protection\Res\Current\Images\MainIcon.ico"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Downloads\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Logs\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Queue\"="1"
[N1wv!4F!Dk6KNlPT&AgTYSwNk7Ri=Nh]PX]V9@Lx_P)%7-c-q'42@6prx9Zpt=2A8-SO%rWIr^0j39Dbznx_`oNF6T?AZ.k(5=I&ucq3U7Klthp%+`ICB@p82n$=P).RLNMtev%,m8am%xKlNH6%"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"URLInfoAbout"="http://www.pandasecurity.com/redirector/?app=Home&prod=4252&lang=dut&custom=181305"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"DisplayName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ada2\Panda_URL_Filtering]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{096CE0A5-8160-4557-866E-3A80540F34A1}]
"$DLL"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSNCDSEX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB2DE08D-AF76-42f2-80E9-E5EEE624A973}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Provider"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Action"="Scannen met Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"DefaultIcon"="C:\ProgramData\Panda Security\Panda Security Protection\Res\Current\Images\MainIcon.ico"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
"DisplayName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"URLInfoAbout"="http://www.PandaSecurity.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"DisplayName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Nano Av\Live]
"DownloadFolder"="C:\ProgramData\Panda Security\Panda Security Protection\Download\"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Nano Av\Panda Main Service]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Panda Service Host]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"LProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"InitialCompanyName"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"InitialProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"MProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"ProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"SProductName"="Panda Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"LProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"ProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"InitialCompanyName"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"InitialProductName"="Panda Security Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SCompanyName"="Panda"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"MProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"FirewallName"="Panda Firewall"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAConsole.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAMain.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppId"="{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppPath"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"

====== Eind van Zoeken ======

Abraham54 · 8 mei 2018

Waarschuwing: onderstaande bewerking is enkel voor deze computer bedoeld, het toepassen hiervan in een andere computer kan tot schade in Windows leiden.

We gaan

Farbar Recovery Scan Tool (FRST.exe) opnieuw gebruiken.

Open een nieuw kladblok (of anders: notepad) bestand, via "Start\Alle programma’s\Bureau-accessoires\Kladblok (of Notepad)".
Kopieer en plak de tekst in het code-venster vanaf het woord Code in het lege kladblokvenster.

Code:

start
CreateRestorePoint:

C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [89960 2017-03-17] (Panda Security, S.L.)
[HKEY_LOCAL_MACHINE\SOFTWARE\Ada2\panda_url_filtering]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"Plugins"="PandaDevicesAgentFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"PandaDevicesAgentFiles"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\2B8459F343B035449AE25350B650F391]
"Externals"="PandaDevicesAgentFiles"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391]
"ProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391\SourceList]
"PackageName"="PandaDevicesAgent.msi"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2B8459F343B035449AE25350B650F391\SourceList]
"LastUsedSource"="n;1;C:\Users\Gebruiker\AppData\Local\Temp\7zS4186EDAB\Program Files\Panda Security\Panda Cloud Antivirus\Tools\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Provider"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Action"="Scannen met Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"DefaultIcon"="C:\ProgramData\Panda Security\Panda Security Protection\Res\Current\Images\MainIcon.ico"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Downloads\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Logs\"="1"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\ProgramData\Panda Security\Panda Devices Agent\Queue\"="1"
[N1wv!4F!Dk6KNlPT&AgTYSwNk7Ri=Nh]PX]V9@Lx_P)%7-c-q'42@6prx9Zpt=2A8-SO%rWIr^0j39Dbznx_`oNF6T?AZ.k(5=I&ucq3U7Klthp%+`ICB@p82n$=P).RLNMtev%,m8am%xKlNH6%"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"URLInfoAbout"="http://www.pandasecurity.com/redirector/?app=Home&prod=4252&lang=dut&custom=181305"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52F9D0C3-E6CF-4553-9013-8F2E834BD0B1}]
"DisplayName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ada2\Panda_URL_Filtering]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{096CE0A5-8160-4557-866E-3A80540F34A1}]
"$DLL"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSNCDSEX.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB2DE08D-AF76-42f2-80E9-E5EEE624A973}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971}]
"AppPath"="C:\Program Files (x86)\pandasecuritytb"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Provider"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"Action"="Scannen met Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\PSUAScanner]
"DefaultIcon"="C:\ProgramData\Panda Security\Panda Security Protection\Res\Current\Images\MainIcon.ico"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
"DisplayName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Panda Devices Agent]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"Publisher"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"URLInfoAbout"="http://www.PandaSecurity.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F9548B2-0B34-4453-A92E-35056B053F19}]
"DisplayName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Nano Av\Live]
"DownloadFolder"="C:\ProgramData\Panda Security\Panda Security Protection\Download\"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Nano Av\Panda Main Service]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\Panda Service Host]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"LProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"InitialCompanyName"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"InitialProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"MProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"ProductName"="Panda Devices Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Security\SetupEx\DMP Agent]
"SProductName"="Panda Agent"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"LProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"ProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"InitialCompanyName"="Panda Security"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"InitialProductName"="Panda Security Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SCompanyName"="Panda"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"MProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"FirewallName"="Panda Firewall"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAConsole.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAMain.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppId"="{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppPath"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"

EmptyTemp:
CloseProcesses:
cmd: ipconfig /flushdns
cmd: netsh winsock reset
end

Sla nu dit kladblokbestand in de dezelfde locatie waar ook FRST.exe aanwezig is op als Fixlist.txt

Farbar Recovery Scan Tool (FRST.exe) met de fixlist.txt gebruiken

Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op FRST.exe en kies voor "Als Administrator uitvoeren".
Als het programma wordt gestart, klik dan op Ja in de popup.
Druk op de Fix knop.
Na de fix wordt een logbestand - Fixlog.txt - in dezelfde locatie aangemaakt van waaruit FRST.exe is gestart.
Post de inhoud van dit logbestand in jouw volgende bericht.

Start FRST.exe opnieuw en doe de twee stappen na elkaar:

Stap 1.
Kopieer en plak de volgende tekst in het vak "Search": Avira
Nota bene: plak het precies zoals het nu staat!

Klik daarna op Search Files.
Een Search.txt log wordt opgeslagen op dezelfde plaats waar FRST is opgeslagen plaats dat als bijlage.

Stap 2.
Kopieer en plak de volgende tekst in het vak "Search": Avira
Nota bene: plak het precies zoals het nu staat!

Klik daarna op Search Registry.
Een Registry.txt log wordt opgeslagen op dezelfde plaats waar FRST is opgeslagen plaats dat als bijlage.

Najsnarf · 8 mei 2018

Hoop alweer dat het tot nu toe goed ging (en wat vreemd dat die oudere panda en Avira kennelijk dwars liggen)
Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 13:35:19) Run:1
Gestart vanaf C:\Users\Gebruiker\Desktop
Geladen Profielen: F.J.Stols (Beschikbare Profielen: F.J.Stols)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"InitialProductName"="Panda Security Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SCompanyName"="Panda"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"SProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"MProductName"="Panda Protection"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup]
"FirewallName"="Panda Firewall"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\pandasecuritytb]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAConsole.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAMain.exe]
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppId"="{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Panda Security\Panda Security Protection\PSUAConsole.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}]
"AppPath"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe"

EmptyTemp:
CloseProcesses:
cmd: ipconfig /flushdns
cmd: netsh winsock reset
end
*****************

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup] => Fout: Geen automatische fix gevonden voor dit item.
"InitialProductName"="Panda Security Protection" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup] => Fout: Geen automatische fix gevonden voor dit item.
"SCompanyName"="Panda" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup] => Fout: Geen automatische fix gevonden voor dit item.
"SProductName"="Panda Protection" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup] => Fout: Geen automatische fix gevonden voor dit item.
"MProductName"="Panda Protection" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Panda Software\Setup] => Fout: Geen automatische fix gevonden voor dit item.
"FirewallName"="Panda Firewall" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\pandasecuritytb] => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\pandasecuritytb] => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAConsole.exe] => Fout: Geen automatische fix gevonden voor dit item.
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\PSUAMain.exe] => Fout: Geen automatische fix gevonden voor dit item.
"Path"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}] => Fout: Geen automatische fix gevonden voor dit item.
"AppId"="{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Panda Security\Panda Security Protection\PSUAConsole.exe" => Fout: Geen automatische fix gevonden voor dit item.
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Windows\CurrentVersion\Search\RecentApps\{2FF84E18-A082-4733-B494-61785F2B1881}] => Fout: Geen automatische fix gevonden voor dit item.
"AppPath"="C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe" => Fout: Geen automatische fix gevonden voor dit item.
Proces succesvol afgesloten.

========= ipconfig /flushdns =========

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= Eind van CMD: =========

========= netsh winsock reset =========

Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.

========= Eind van CMD: =========

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22099225 B
Java, Flash, Steam htmlcache => 1088 B
Windows/system/drivers => 2976458 B
Edge => 570320 B
Chrome => 0 B
Firefox => 378838161 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 11784 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Gebruiker => 32619682 B

RecycleBin => 25506211 B
EmptyTemp: => 448.2 MB tijdelijke gegevens verwijderd.

================================

Het systeem moest herstart worden.

==== Eind van Fixlog 13:36:57 ====

en dan

Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 13:23:41)
Gestart vanaf C:\Users\Gebruiker\Desktop
Boot Modus: Normal

================== Bestanden Zoeken: "Avira" =============

====== Eind van Zoeken ======
en als laatste:

Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 13:33:04)
Gestart vanaf C:\Users\Gebruiker\Desktop
Boot Modus: Normal

================== Zoek in Register: "Avira" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}]
""="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}]
"System.ApplicationName"="Avira.Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}\Shell\Open\Command]
""="C:\Program Files (x86)\Avira\Antivirus\StartUi.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{305CA226-D286-468e-B848-2B2E8E697B74}]
""="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
"Avira SystrayStartTrigger"="0x020000000000000000000000"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Avira]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Avira\Antivirus]
"AppDataDirectory"="C:\ProgramData\Avira\Antivirus\"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Avira Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Server\Antivirus]
"Name"="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Server\Antivirus]
"MasterKey"="Software\Avira\Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Workstation\Antivirus]
"Name"="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Workstation\Antivirus]
"MasterKey"="Software\Avira\Antivirus"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avdevprot]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avipbb]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avkmgr]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avdevprot]
"Description"="Avira Security Enhancement Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avdevprot]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avgntflt]
"Description"="Avira mini-filter driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"Description"="Avira Security Enhancement Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"AviraRegAcl"="0xE72DA19FB670CCBC63F4DFDB3480E71BB98D8B5E2BAA5FE2C5C9166EE909907B8E4C2098A3CF22B62D5BE8F5B167DB38308499BB38A272473BE1C753F1244F70B6A7158E5B3308CDE93FED105F5CAA93477A731F21B9AB2B4BFB4647947E5765F0091EA32F1508E5B830D067404E8AF1708B09FC18CCB817334EAE34FCD7427108E269B28FFC3F338719CBBC885551C67C96CFE03517DDFCDB9F863867A99A78A6C21DF8AADD5A80FC198789A95815A255D838BD3E60FBF8B568CD371381A6B6399B523E19D6D346E3155F5FB0944679261C75B4D12452F27D3CA2713056BCF77B8F1BFE05CCAA15284ABE2EEACF58676AD657A4FAEC11218905C6A6993D49ACB379C3C168F5D3D83679FD109F7E934B2793A4C63EA91E4A3AE0F84ED21B61638C961479381A19B0441E16EA0132B565594883E75D7D0CEA64B69FFC352F9C11C3B0BC455EB2B57DD0C360F5DDD61175E00A8B76EB411887ADB80399753829CCCB383F034549FA7A765B94F81E8C6DF70AC1E4062437BA17FBB4864748B2AB7BBDBF62EFDBCE156BC9FD8D678A307E7485A37B827D1F4EB15F1B00E3A526CC55B533F3CEAF5F7FC85B90FDD26901D3DE2479E40A9D72FB39037B98A819855F2021B01D182CDE861FE04C9A28CBC1B25058B79A7CEEBC6DE8F7C32C5CFAEAE850F415105586807E5BD8F27C8078E517A9D8E765129CEB4682CB0FE8739C367C74B79D5C76C20C159803FB5BBDADF96A2291F91E8EDC19827BDD3C2E78EE9F5876CE0A0D943EF505B5FCEF33168DEB557EFA07F467D42636609C85425A8EEB50737DD24790CCC872ECD6BF185025D6D1342EF0BD27CC4AA81CD3AB9630A98C95472C7DAA9E416F8AFC498019DB5695D7C957E90DB85D4502C7FF2119D98A0C092BB4F80583C604AB5CC7137A45EB62AA2EDFB7B9368A8CB5412571A98C4557A7DE5F5C7FB189641A9283AB487499F96F7545C89879F0A58ABC27839D074F8163D23C82D8AC39C22487020A0E821DD1577FC3A7BBBA037DA5FC497262BFA86A2C90A9A1716299DFB652469D80460E6AE1795438D6B3A224AB6CF9137A35DB428DFD0676E1E4EC2A3CCEBEEC49F6C2AF4B262C923FD5717717938E9A7751A1C4AA2DB86DEA0C6926062BC5DE394F0BB50EF26E8ED0A491A54256B2C3B326AC60E0F8860B210AEAB744224B8250B9924E3F5ECE59BF03156A5CC64CF94D8BBE97A98E10358298F6F0CD2001AEE2B6B2A97A4CE1ABE9FFF52B11B5E7B9BDA86547E6A2F9F2D31A7FA0CFA0B28B7E26F87DFDC917EC676E036AEA51BFE63B3931814DA0D51D781511F7018886D5A818CE3224AAFA9C85798805174E0F8C5DA1D2148F014FD92260D8A3C0DB09EAA1575F3F1A12F59382D0B903F60D6C753457E824F99F98D6A103F90767693C451D0C1681B6B289D855D58D30340645C62C35A6600A8041773BCBE2998852E7B951DD9DF5DDE4BB3145F85CAA4A0B1B285E3A8B22676867281AD2542B1C405F4AB42A4B686B207EC26C1321207522C0F99E2E8CDCB775A8BC99BFD5B7448616B214583FE853272A22A311F8D6A1F8CB94D51B0D50E1417F27EFE297FAD78CF8093934081B98F50CA6F8B4183C22AE84CD91A81278971E9021B79DEE044E195EE9C3AD6448484088B0CC0B1C140BD8C890D41E8709AE6D42BBBBB6996D6C19369A2F7844CFEF1064FE54A80146DAB93F8962D2FF056DE5A2806B1006756037BE713C95D86603F2F572E8C73E7977A408B8B57914F5FD65EBAA1B4CA3665A6A051B798772E6741B93AB46B40DA6F8455F9F49EC670FDD8D92835C633DEFBF36E570EE7F64EA26CD0F99E61287459C6BBB66BCBC2D8B444324A752C568D6B2BB7CFC0BB51B577EA537AD43A8FE77B5A1A84395CDD404FEF405D7848EB1A0842AFC9C23BA1392A95C26FA39F343649FBC18C02B7ECE2E6DB29090DAE51323A90CF9AEAA427CAA876C10A551C63E927B18668F3FD96C7E0D99909B4849D5AFA407C7320EB7C9B29994612212680D9F4EA99A0DD6E641A736132837284CF5336D74112B03C85C100310BDFF2CC1FEDCC16D29E469066CDFE9A846445539AFA2D3F141EAAF9A283BFFAD047869B8FADDAFABEB31A7A693ECEB8B6C9F0698EC3A629371DB91F3FD64B8499513978507AE44C6A6AE70EE4FA25E3B797C4473A558280E171B3C9B46FFD50BD0CC6C7C3AFB30D18F1A1147941BB8A4FD1B8461B7FD8F0C52FE5897A4E4BA1FF92970892F5BD110396BFF7A0676AF4063605CF1B464E87DD74A4004258B0B6751B4E1E288B5C73CB9AE8BEDC981B485306B12F5BC32C85A034FA597A44F87E7DB24A21315ECB8918789E2F00438A923F0BF9A456297B53B4F4EFD40D9D4571A6A498242278D284631DD4F173301B7D2556E375BDEB4A6EB5AC4F94C9CBBF0F3B47CB7717A446BB7C4D80DE0B2B04BD0595C84C32BCA2D7FF51AA77CFB2D7949DC40FED56E184740A92E586A46107B90A2AD9176762402972457927F2B81EF20756AAB96C7876BC4786987E5CDFDF6BFAA6354CB707EDC97AE8798121A464F5B8932415369D9A6353D2B57C819450B83550A17F4C4B3FC0BB20942E5F681806447AA71C44E75FECA90FCDDEDAD24A1BC89270A2863CC274CDC89760B3FECD59E30E4DDCC5E8F270E0ACF89EE66DD295FDE811C7C94316028947B189CD24E469F6FC7B7A776C78F42F6894860B9D3951CC51C735A71F1A252194130CB38293D3CA18AA630C19E2798432C2C914AA9EFFAA4A1DE0F5A07689646F46804FB4BFFE51144C82A9DA5E6EDBFE4AB11C88FA2CFB9942DEC2C1052E00DE35636C44894DC7702B8EF15870F50906568385F8B756CEE138B61D1DDF6A3F3240C237FAD01FA43EC1B0A6A6F828B652310435224ECA62C51AD4082E3D2FED39FECFDF3FA811DAD813097E5229A2FA0F68859D4DEE6A1EE134EF69A58A0710C231EF387FD7AB39ED695757EC8B2AF79B2A4EB6CCC601851DBE24E1752A06DB0BB4FAD780643D2184A4D4F8467FFAE939493DC8E9440F463DD2FD58DF70CB5B4D0A757A88113301BE9B8C8AA3E030EAC44FB19886DEBC7ED4348514FB32E77E5D402ACF585977A65FCFACD78FBA7BD9BF41F283973C745DE6113D427D6C5480FB0092A64267066AAF69310199417092F899884B8BDE542814A74B6F60CCC672A38DB40F38D3557D47EA888C691FB0948B23D99E4F52AA810383EBF50AEB1C6F11622D4C6E19CC3629642C9721F79A4459012C3E0C378AC77ED11493ECC55AE1BCFDDB56C7C89928EBADF0217A0617546072D70CC202FD9F8A8C2C4360FCE0DAFD8E2E1E9EA3001D85B3AD98501EFED140E0925663F149284FE100B96D1C3C12A9D90719C744F87362F028686FBA851AF9424FB8766785BF0F3489FCC20C58234FC9C6E365EDEE57B744BCB77F7E62F81527EE66806921FA5F34690A32BFAA4628128DB04220217BBC5EF6426D3D297B1CAA9DBF28CF3E8422708272D6DBE1349882E8DEB2E00A180C58220E7CB95359B1F4895E2CC92A4C2A2F5DFADCA362594F9E87E72937CBCBE13F5060756B40E1664C2376F0C64FBE673FC35F34CE2ED61F8A3F05FF0E465DB1027FB0B5DCE14ACA3D425C007A7094A3743C52192AB222D8E2C44DB0410D86AF6853CBA2EDCE4A8CC4FA7637FD68839A1594ECEA60B184363009121D73A1429CAD0126B59945EFE2C42F7D39DCEA1F71C367A9E7A9A2772B544029A8F537632235E556916CD99E4BC65039983CEAAC8377F34DDD3A9F24915D2510E146C1CAB71F248BC7D4193B4A09A1135A4AF62E67E65D5E4E84DCF6BF56219CD426DA48E1B3C29BEE31AB67B6053E88481CD084CFDED77A3E093F601C201767EEDE2A8EDBD3397ADF2F6D7257866B071FFEC7BD28E38F599B7C007B7BE3F5E63FB14FFD62784794F28840D16A8960EA4A8E33327B5485F9B0BA8384FFB61BD603AC17721A56898D0A058017DC361106588CBB00B9DC59FBAF878B45DFA426C228E497537718FC4BE798AB89B23553FA31F64151D62E811174A39AEF9C23E9B238988CE8675AAA6CA039F10E3E1B2C73A066AA6A5CF8F244D2ADFF3BDD1520847A089C1B50EA50BE2CCD6A29FCF8D5ECE771DBBC0AF6E6851361D5B0BE145F1C82C4F18E2C7FA8BA9A69223182A655C513ECFE3D89DADAEDC21391E6246391EC8B90E69D4701BD867CADCE6C0B24A4342E87EE48D410228653A6BFB2A804E1A340B635DF5387C3E89F22F6B4DF877DCAB2157EFB1E7D18FB0FAD57AF6514D89C94A7E368FD0692F8AA1DF6A3F948A477525AAB1910182654D20A93B7EDFD7AD532B456C58C1986C05783E0D8FCB3A39396AABAEF649494573C93B774ED4B7F333276EB1319BD70EE5AA78F55E04D626419E19760FD63060BF98FC9361A2EB07C5CBC718DE8E67B3A49A71952DE5DC9501CD362FFA3F2B1205F7BB32EDCCDAEE3A3AC2346DF030BFF7E30167417389A78B89212E12E5EDF1065D6751D66DD73745C3B6616255ADA72C81B983E2334EA5BD29A502093AF0F803DF69745ECA8832B1EE3E0AFBAC8476F7ED852676718410290EEE92AD3E3C9733B1E8DC115CFD3ACE9ED72A4063925C3C67BEC58381B8C3A62D4944BD1B9903073F33D878F79C3D6A30D6E2E1A596BBAC2F15297D4A7C171CA32D4033304C7DF94F084867EC425092C3F88952ACE5542C23B09CD4D4441D43B8D0AFE12B91CC13196825F44079AD397608C31A36ED531E2FDA1AA556BEEDF709D84AF43569DE6E961B9F7704EEEB1EF77FADDF211DA32876B8A34154F62923A70EE2922BD8C451B87C2F3EC9BC0CCC0C6E1A0A77D22EA2673EC3F9C718881E56EC730FE96FE1ACFBAABD6D3CB9C6829FF5D19184235A6ED77E10FC541BE6C7D0DC3BBBC72CFA2EE815E1D028AAC6E8E47F243A0A8EA98953674BB4994C67D055E8E8C5356F8C5C300C2AEAA2A03A2E77616D286C9AB69456F97403B1E392952B83CC84B8DCF963B8E3954A16264EAA8DE21787F4B04E82C553DF90AF79871DA8401DA20D191A33C8F32C35965749C44EAFCD826841A45F95078BBAC8FD57AF601C847548D6BF6C3B70FD8A105D9C0E428A86D67DBA7719B71D475D4FE76FFA2D429D860FE8C551CA0F4629D98609C4E986CA55EFAC61D9496448ACE1612BE3743DFFD2D6D622DD83857E022803D01DB950ED2694994F0AA32CA4F7A298DF8466EF5F626B690F015EAFA8E0319F02AE43BB95967D0B10339D6F67A57782F56984E9A7437328383338657DFD2F8DEEE541383B842CBE56B7C3069C898187F7E1137525E46EE6F858ECBDEAF578DFA943CE932987C30FC55DD0616949A3C4CE452E13CB49CED5D7E06CCFA04AC4CE1AC6AB15A08999A71CB83C5C4AD787F0FD77D5C8AF2B11580E00F5CB0AD356950159ACC6DB09A30A541E307E416BAE29191D06C588C5F002819844EA61357957116A3C8D4A4C7E3EE10C9BD44D707CA13BACDAB09C2F8B23CE18071AB929F8A315325217B8906F6619DF3978E35468B6091ED04AE587E8D45FD55DEB32A5202C31D88CCDD2D188A1C15ECEE9F00832C6BABB2A6E072D63B28E3ECB2724DFBF853E4D260B8964B8B3F43B4885DAAA4C6B231A71808621A573D72044388C0734024FC72DAF100802382A60299B82C54AE8D033571FE76FA9783DE2279E7A1587AF8F4F9C3ED546DB9C32D4EDEB5D24C33929DDB5AB09ECA880A6865396F07E88C7418BBB637C6E9633591507DEA82265E7DDC795B7A0864EABE09D6004F5EA400EC432951A03824EA3808EC0D5AF44D1E03947370A0CB2C00C7CFCDFFB6EF33C37989CC3C8C7BFCB6C703539033959BF170EAF2D3845FEF4D3BFC8B9A932C76B086D775FC4E0F675D6311963C64C5FF5C5853E9C6ABEC6FD9CA9D10435160606FF73E8E112648E4A8ED4950C8D180C980E104992ED6D10E226FA55DC07282B61D79996202437A2E5055343201CCE3A719C57A9C185B811630361913589F101E519524140B8D4D6AF725598D65283929B3E28F94F98AFADCCA0B880C2A42BE1FA9956F1DEA116880FC818F5715C23B353B0A0D88EF92F73D1ECB4CFE0E17C20273E63B24273139C15525193EBD884F09EC54B7AD9CA880D60BC867B9A051E8D23D0F732DB22D6B30E68220593BF733F11EFAB1D4AF6130AA4528097B792982D63521F1BF055768E321A3652CF353D9086E7D0FDB9B5C3DDFF53BBBA36207792A22957E91606F08E33E51E6FB77924F802DBD255A619CA587EF9C76ECB5C283C5E197E9FD4EBA00CE898D032F6C0DB55907961398C2F185E29895BB93013B87E405F06C00F8F7FB1F37EEDE47C07EC5C7C0331492FB7123B5B771A7B9AB619909C1A48D0B8B46DFB764920B2A6A40F0D7E478F93C11325B005B79E98F5482FDFE58E989957CE6DA117B159B4567CAA6FD432E22C20E3C9A2E2088E5C681FEE6930037717FF60CDE603BD3B10F46F3D4A5F78961BE56B6FACCD097F6592A24F2CF29B7E8315225198AF613E4E46A502117521C0037D472AE1D2D1BF512D061DECAF8B7DF505AE5209AC473B2D9B5542D0037D2D00F96353BCE0993FACE450A4F0CC7C98C6F05C7DFFDB1D80D83F686793321F8A36174375FE1974D7BDFD6CC7A41ED8A98C06DCA9B166228C955533AB61361392583539F1B31618DEB233EFBC8417D0B8B5732897815E36B2603B139541363CF0911331D9832CC4B3BE0CFCAB83641886984B349D7524507C671B3AD3ADF342B7EE08C88DF2E33580FA374B57E61A436A82ED6843BCDE4194FFB29C73FAC157443398733337E7A5042DC4B811EA92CCE4487DF2305C4CEB0B4557F2D6A927D2BE916F1089B6462E90620F4A5F8FF40AA4E8BC8577FEBF503C3E8A621F27CD93E35D9DCBE3315E1BAA453D18E999FD41B5B4F91072F1BC554DF6F7920A13C0B9031D7AE4C23551F0F9A80A32BEA2FE0273EDB9534612EC98FA70ACCEEA2D5D43A17B2C24D0A8DC328CA2C86E39727B810332A583AFBD5C3A964C055445F6CAA4693071F01C7E5499BF86FB357EE91B5D2118C99CFD28662DA04B2103BBF5BDBF623D9442FA5632EDAF844670461AE88D17F67AEDAE50293EBDD4B990580184B8E38014E98BD51C7F1637B2C6DA6437726582D8A065145BF6F38618F271119B650C5B96D088CB1D6F3FD694FCBA472726ADC79BF62C474ACF9BFDBD4C2665A8D292DD1F7739FE86A3A44B095E87146DEEF59B0A1E53276DBBCC88450D270AABD2BB6DFF9E14166FE9E3BBBF863E724AC189129992EE6A5E28363CB0D6B67DF082FA2E4B37B5E387F8FBB8FB38304636FB81E5E5B1B194207F1C004B4F4BCC90F9EEADB4B61D5813193C4F36A0751CCDCA8DB4EFB0DD52FF83F1672A0A7C02367A92027AC3955B818DB2E7FC89AEF303ABE37AF783DB7A065F4A4BF5BA425F1C1D294E07192A68666A0A55507B222F27B9FB1416594A4EE58D22B0EA78E6F7B29BC3D5EDDF7F1AB3F173C766502A12337E5546DEA609BDBF8BA81C62EE61387910F8AA198AC5ACA42954F3495C577BCCD6E2CC84DE594CFE4EE8B5EAE5545F6074F776C1205BCB3A7932B9900B90201C17DAC968E03B6327A2796F6D59EC799E282058E6C6C42A0AB0F0F7621E078F7BC0348A05EC3D6F17D77BEC12C078D923A3E5150FBDD91A2F41B7380F66AB175F91795235B37B1AF3F33B5CC7256B8E754021C35733BF3AF6BB716B0516FED19873BDC014F03A55A41C26EB0EC69622A9F3ED1201CA5888C6509B5711A211DE42E242268665E139A20D0435EFEB0C35F78126EE6CEA18CE64EC3AA041C6179630E760E1F5242B33EAD0DA6D990E9B55B4A532DB50C7F7C8CF50767160FB60D6C569CA685997183FA52A75B55B17A69190CD04CEA8981AC5CE7C99CCC86397C5EE1D76AFCB0163CC114E241AD5940FF279F1B0402A3EB9DEAC873E5E59C8A3EEBA761445830A5637C7FAC07CE9B3DE55167E6313145E63573A15407D1375275F5076DCA806ADB7969728441A327D35B19A589D1D2831E1E666E82C9806F2437E1EE27FD00FDF6A1106CEB542C72E7668ACB410F33F57AE2B31B9168897599F4CD434D4AC14BE67E51CF36D8D444449D6188426C147D2C96CE7758B7D5CD9F6D8CF6CBB900817F0525EBBF74B5BABFC73B0E6C4AF733CA746084932C299F9129FEA625E3856CB792D65DD8EECC8F9620596354E15319BDB6CC3F1BB28139B048E78CA17ED7DDB209BD226E3E78D66BAC711E12F61894BF22BB9341909FAD50532D6FBE213FD7B76B686DE18D5D26753C90E14D78BFC54B9ADF6465C24878AEB615E5D2D48920177D3833454FC5E697568E7B8EED675E023A494CC3E8BF32804D5A95ACDCC17E82491689BB76061AF9EC259623A03DCE7B525998BD549A586F110626B9420FC496E1E380194366CEE6766230114A20DF75D703F939BD91AEA5803CA2E44EB14E7748E4E594AD804F2F01EE3562C37044C558EC590F211520CB7EE7000B7E776D0547DEE68B9F5884FAA3759B47E30C155BFFFEC121D2B9F25ADAE30EACFB028E5AFA1386D125176314EE8417CEC45C4F49C58C309739F951DD152C4D2E21BFF426AA35CE7BF593B656C92C6BA1E86C1D0EA8983DF33AE96F222A4A9787B72D14F952E6ECBF8ACA9AF54394817BECBA0B595343B2F0695C829D1005BAB4F7D55CF09D6DF41ACD7BDCB4D5846F24E7E0308D8A4A171AD6836D625E32145C73A8C98437E3B12ADC583E76448EDAE921928D2FBCF47D3F4D3AA8306377CDFDFEE7E36931108488340A12DD61DF66150CA1D6247C374024218258DEF1FF0E462CE2EB9FA426595E1AA435BD9D4DC1137429091833486AE6B5481EA02B6D65DA60C0E728263D56656C83E3F77A6A7296CF73A86E33FB75EEF46759BEEB5F809098EF11901FA71A02BE4D5A10D034759568B8713163DEAF7ABA2F5393E475880905722EBF5F6B1E9F21E2E6A37BD5A92D14A8774225B3ED44F4529D419F859E1D2312C3E034CCA0055C0F16ED9DAF56AEDA45D39B930D4C8FB466A66094E7EAC65593431BCD34C4F1ECE1A94E6B020333C4C0D32DF06ED4D212C2092863FC863B9F2A6F5C9300C9814177EA6BDC1A557849C92C0B9849F52E1C3F256A6184A6818DAF7D98FEA7CF032AC83C8BDA01ABE827B9C8004352EA7EB008BA04654067A70A220F08A0181A452D7375B195A9D975F8CD3AECC6098BB6F3A3B5CA1973DCE837646D1D263624FDDD6E929241BFFE14E075E37689754ABC8F1612892BD2DC37F5CC2A5DD8877BF2CF36F581339642F9B44A1441C80A608B4BD18D91FE102F3A8E0B8B2CD805B9D34C6A469E5D1DE973668889847E3454FCF2B1E601A5068C3A3913FF30E905C84620F0999F4A5C0EEE0B626D6DE4E429738F966BB67A4AE080E5FD23E336419B8287EFC96087A1E0E89F682A4F0677AC4B9AE212083AE2B6852C5DE6576CCB3D4095A49D2BE92A19DD9810C5AD4D8A3084B2318C34175AE5004FCDC73AA993EC1E490D496F5B7ECD454819E619C5299DDCC751E773227A26EE035BD2485E36FA8625A03EEEA418BD3B5ABB43DC00BBF9655351D9E874665AF01AF9207FF07EC7BF3D8854E738D07A27856AD914929E60CF554474726EAC86215BFAE382F2A08F6084D7A5495193F0B1BC1C1F9A37F91ABD412A4A4E5C43C23419664CC751ABEFD757280CC81B61197A0B3FDA5732F38A13059FE033B9A56271F96DE3ACA54C8607A51783D32F676238E3DAF96BD7B5C77238380C143A3B47D0A842790ADCE35372EA3655624CE9E24B8C3148E486CC4B955C0442DC567BCB4C99C84FF5CF21E1F126C6CFB0FA69B33A824A42B5C79183E0B4F1861DFA0F6E6CC282E92620A9CE9BE2069D13279874034A37F0B9C016D9791CC9E760256871C74FAFA86E87E7A24989DE99E0C0F75F1F781E1636F19898FD6FDF43B590ED7A4BDFF467B5CEEA59ABF50203B9AA07CC601AA123557176D9BC8B33D771B659BC9A75FE790F71B4E27BEE996E6114A193754146093B18B1CBAEE51640366FD9BDEA1BBECA051621F5A8F1F8BACBAC7BA660160615A294E9321898EB2F4AC6AEC92457207626B215B887E287292ABEEFD92B7B41485FC34199806393949850039258F1D71C4860E6CD697F9DBF487C3D5DCAF90BCFE9A86BD99F9849DF5E3D7B596BAB39090ABDBDFC17B15B9F883C9803C4EE0613B8D6E21575757193B0EB7D260DCA5FEC98826B41E6CEB574E132A14972D88ADF9CFA27D875E40103B078916EA8C4FA43748551F97C5F2B0B2B43D20512EACC6A091042D060EBC07FC671D6943F65FB62D462B1BA708E05C7D5247D3B486650A69D2E6B219F99EE1CB5536FBE171DA2CBEFEFB386114C47AED13C67BE6288EEC0D1886E4283C54C60F2043BE18748E90384EC196C111F05B06E9D98F789C3D4AA78216EC192669A41B3ACA3692D226F98852BB7A06E6DA6A9F5498DE39F3B53AD65015AA071C16F3E76BBE6D63A154A407EA1248C20CEF70A25E437E8C6C539E01E779966AE535BE16C84CA109BD46F0688963C265855679AB3B9140C05CF3DD64FE26A92B85AD2FFF1C47201E89D391BE23C0E53E76444ACF3416839171D5E82B90ED06C8BE5D8DC2C04B93F1EE337ADDD3106FE821613833EDA82BD199E3D41F522DE599DC56733792A9E091FB0B5912CCDDA3D5197B1804465441E37DD8CEF783E0D6DDB196BBFA92A1AAECD7B7681297364E2134B8E562D8C8DFFE4A4E5365E38AA1032C2FF7B7D61C198CF8F45F08F4CF5517F6C2AB4EC31D7863B4851EE1532FC80751DB3CFCC37FD1D30D1A148C5A90B37D6F9EC64AA408AF2985079A7DC28A4BD370DA1BADF241946175AC68FCBC63ACB321DDC2922DDBD66192ECAEC86516A16A0A773C8EABF12C470E138A0D8ADCB5BCA9A6DA881DA3BFFDFB82BBBEA63B5AD94B724DA9ADCAA7172575CD3C3D05E9E8A56EC02B74ACAAD80BC8334A97670B2DDC3C46E932A547E9238E3ACF60E8E321FE4E9B5461F0ECFCB2A786C0B7917FFAC85A3A2A7195E18C5F653A1EABC09CB9B4D191A0A7EACAF049545E77F279AD0A2C24E3D6A65DC412776EA9FC01221CB76E91CB418360CF40996E8896398F21161456608D3F1B9B611C485EB0D5805648302D9CEE84A98F455BDA5C316664C7F7B90E2743B73C075F8B5017F7F8FC6AB2567A64D430C72FF7352490867ABFDD666120A22C16448F6F5C4AB7CE8A937C012B120B94EED025B1E82523577CAA8F26D217191CB16AD55D6F47260A967C3535D588C5A7407E30233B4FFE63EE82DE241EACE61F226F789D8434BC4AF35F78BB84C102D098F8E330591ACCC28BE2D0EA85D95123D1AE79791ECC0DE58096616E58EC01C1D0799AEAAC80415043FF585E1E2609B3EB151596BF74D4CAFA36CFE0C744B6EBE9659CF4B761E2A5B9D1B1CF9E4ACEE07B9B8E2AAF7C7B4466D8432061AEF9A4F54AFDBCADB97A5338DC34BCA8547F515FE3E40484DE1294DBAF1BA9BAAD60D6A9F20BED58FDDE1FD8C32FCC8A4686BB97789105C229648560645EE7F9C7A7863B4904503BAEC88C54917B14B267CCA7171CCD86D758DDFD7BDC269FB04D698889EFFA33640B63E36B1F509B5F95D24994414B0A938AE0B607CB55650525FEE0E87261B0DB8D2B8B9E1C6F81866D8B871AF5A7E1068684205C93764F7AD304E988ECD9C6466809F00AB1EF7257A8B4C1DA26188CA6696F6B194240EB580F35E824C15FFDCF591CD7E0BE914B032082AF484B3F190DCE4E4977BC5A73460A746CCDDEF757907D0C613DA9704DE0467699D7C0A1DC48BC9EABF1177C60274C98856B63160E6A2EB50F3143C64C1CF1CDF64F9274D78AD0CA351EA62B098EBFBADE83BA36D10DB0EF4785B6694D11574EAB6DB2A894E878D422088EF670737FCB2E383CA2B3AF0AFC8BFC598359DD0D441BA099975FC618A0C9F7CF1ACA41275516FB0CD037484635EBE3098D161BA332086FE445AC86E2801A6CB132C9785ADAF7CB8C1EDF20FB0A84C3C1F277343BFA361864DAFF79D4DD7FAD0084BBD4F371F1A7C4AF3A729C9454B22E3F7C0D386804899258AE7B618E3D049CADA6D7B6BB6242ED101AC06AC605F3B89440E296C4DEE085D1EB0B565FAB192772D351885C862EB73AB25122C01CBFD0368CC9C515EC8B0FFDA6B701F2859517465A9F7B138772180AD8129E714CCD19C042BD7C957B9481F10F959624073973467C1C6F07E43E67A951EC13A2BC3D038EB4E0C96C2B19E78A585BFBFC45401B7147C7E029ED3BA897C2AFC55460D1655EB4E0AFFCB44DD144E3B180DFD207CA0E3798E33FA174BC083846B564B7490B990AED23B7B2C6E866F7CD6AE2E148FE9843448E1B0F689A61B6ECBDAD503E760FF1EE2A288BF10C31AC89B4934FC09DDEA6393107932C5C4CB8FEACB4413E31E429DDCA0E631AF6986FF9150D8B1CDC5CB2B245C18D2166429BF1BB793410DE996BB7CB0251E91F3B5041A62F15EA57153D46E2ECD4D6A14D7E869264DF89918C9FDC07484918DB7F07625D624316F4EBF2B0FEAD4A17B9CF277881A7AFCB54B259A3EAD1BB20B630AE97A2C382819619F4BD3E51CF743FBC2D9778D143B1066A60DE88AC206BCB87F4CCEE81E0D8D9B2849B62C45BEE851FAF6F943F7F1368F5D217083A5D6475AD0E7608420B1DDD371E52307468B55B76263A090D841F2E32514C9B84953C64F74EC127CA54D4DDE4EB14EDC3EE75F236B0364137783FA165B10BF2B3E96AA160AE574F55EA71F90D91AB9758994434314425E637C8C8D15C28FE21DF44C1D6A977B05837A5BF80568A2C0C0380DF2BDA725551D28C5D912717F1FEC11CB0491FA18FF10E09CB8D883F4CAB2E1D8F46F2B2639E134DC3EE798E4DFCA04BF5995897F94D9B0543F1090B4E9794F0E8327B180ED2A67D5DC2927AC9DD0E2D91E214D59C98422D67A28D06C1683441A6211E50B39FC62BDBDCFD595E67BE162415A7A1A878AB02BB840981568EA889180C073FF6C8F26A2D6A6787A5B40178DB66B60D9ED7C3EBE73D115758201D18E2E1B4AEC3ECD14AE4771538C33C72702E4B27B21E081A4B3369C97560DB0367E3F3C170A489A34520029D1C276EED88B1D5792F5E7EC0A722DA903D3B9BE348902E59409FEFE41C364DC4005032DFF58A75B2F2D96B0D807CA4E8455973E5D1EDA3F41008FB57EAA3E0F2C65D8E445B2B071DB14AF7740BA139E934ADD770F23EBF47E74D5B5698799618F8B5835D89403520B002FDFE257651EC956CB62748DECB976C6BDDB922069C5CDCEC85787E072AAFB0D132F1AD1B397F48DE373FEDB9BCAD7D9F419A86CEE7FD1D2E3878023CFAFCCCC5BAC711C406C29AD8CD68D4F4EA8910579A1F15E783C7F5214C779CD4C76A85F957891131BF513D6DAF907EEB7D40639437FFF6E2A6C0D5A578C255D8FFECFD1887BB5E592CFD28D8BEAB307DB065E1C4371E417E811449A2062EC6CFBBE629F78E0E0A5B729F7FE0473774041FC92793F5920688B67AC38101FD67729AEAB397513B01DACF8D50B5D1D45FF7EE4EF99AC8E1F93CA50B8FD08E985594E684136FA26C9EDCC14348AC784838D71A60D8FA6B082A0BB70F4845676E8B8FDEC1DF65F8FDC696E660991C3DD0DE946DC996F1221ABA72B4BB9FFBE94BB10BB2BDB86E9B4E051F8FE536BA94FDAB335C67D8C8DF19C95FFDB2DF73CC259ED3B5AE3C78CD364C01D5384C5FC28158CF440B6B3AD673D018FBABDD39DEF19B95672CBDCCA2D67CCEFABFDDD9B5DE62D48FD2E03A1F8EB3D9F74DE3AAE7F6F34A9B0680AC8049FF0D57B92253E3F250F838E7F3CBAED4CEC44CA1CB8204C881F50817975CE0861F9B51B3632FBB90F2E35F5924B24DF47D387CDD7E6785E0DB7A9BF57A5965BC1E7F092563B9796C31FED576CEEB87BE6B73621573D3086FF0EEC569864078F66097665300EAC463C5D5BDA18C4ABEDBE385430A4A6E44C9217C190A487EAE0893698CA7B8DAB463E3C45F0AA4639891329A5596ABE40409BA0F4127A91106D3DF854888095EF613A7D6BB697ED26E293CCDC541E1916EED3617FD13B6F9692BF02AA5024FE3318EE7099C6BB1159E8925D35C24AE3BD51F5AE7D8F39BC6A16C8A155F8248B894CECA267A42C22DEA1768C13F312A7E01094B54D96A657CD74A93D978434EE64C46F16D7D8CD7637DF851632E04585D98795789F94DABCA401A749BC2CF65C328A6DC39BD81CB963BD8BEC99E75B00C9F4EDA416DFCDCDFCF6D3FB1B8DAE3AAF5269E65D7C724CF1E884F22C15D443FC7DE869BB2F83902E6E684668B87A8614B5469E1BF145D1DDDBBA9F40CE056DF4F73ABA625A9CB3CA4640339A11AB8894E92FD64A1BFC0A92A3A0AD08DED239E8211D4071A8577A28EBD485A85825A660CC57CA52B1DDB8C5F754CE2D3035B985BA6C744F7D111D0384C5274C608390DB999540EC0EB393D9C32778BAC4C618DAEAC832C15180D9E337FF0BF43763203ACE68B2C5204032D8BABC996564EF85392B01C9527C1B539B01465B1D891E1BFD56ADB52B77B39FC3C350BA6B45AFA8090D7C6653D40D7C64D7AA965D2B6662EBACF8AB14734F6D73FA6A0CE3D11A5710306212E2F6A10C4AB6BF21FA2E330CEB23F78B73640BD08AACEC697EC798AD27E25587A0AFF6075C7DE6C529A2EDDF352ACE986FB41C5E0637A426DE93958E8A0A89D39319EB4EC328398E2B214B146793841ECAF78DE3B50B508EF751828ED787397BE6D2E1A425504D9A076D60EA9732F81C4AAE9F6A8402FFE3BE5CF4F02153048D9030743E6A4357CF7BF41477184069009ECA7629FC0F25CB7874ABE2B0163721FFC1C255D0FF69D45C6C9FE8B8FB7A70C9A8B474ABFA4E31A34B33D9C6293D69912C3106E551931CBE7B17489F6542827E75D6776E579BA92F27F7D420FEDA6DD9E91FD11EB88D0B32494D23E610E6B81D39EAF9137183F3389F42EB979FF09CD404F3641DFA31489FE4E9E709EF55E0ABE6978145A1DAFDEF7D6CA0C83A9D76AC84F956A69179DD100A05BAE0DB638B8E1C6483C70951AD72A2D8D515B445B177724B7E61565C3C9B5CDB271DCC66B27980E0E81FAA9D341754861CEFB2D32E0F6EC537BFC46414C999C5891FAA523DDE2618AEA48781214DFE7019C8DD7FC2F02F754830D1DD7EE0BA177DBF53102F771810419E4E81F999BD0F7243AE82F700006F0D3308287B7560906CB885040E316AE435BCE8E25DD799DAF20D3B00E798F23F55478A1B75EEFDEC36CA732C5D94508A052EC0D588B3017C1DA707FBFAA1CF143A9EB24C8AC6B6DD50F1E38F07C8D310CA9252FFFEC2A8BAAB034F177A39218BD9A785599F006138B51C9FF527172F03DA77940C65F5C9A8E450BB32B2FF4E20C778F9218C9B870E1DAC252A402139397AA35DD6E81E3E7F05B8A0716948DA731D69175FED7E947E7EE2A7790866EB1944C2BAA1916E6B9483EE749866FC50673606DC73066BEE541EBFC0D739FE5F3C255AFEE3A69CA6A2F87E014766472C15D56E2CB4AC711DE9F650EAF13070F96960628FCF50E0890DAD4F826E3AF7F1A370BC9175D93C9D1F11DE8A065052EEFFDF4616A47A235E72A64A1C1DAA401A3E11234449982E9F7764EDE2BEF23758BC4B515EC035BE0AA887F577025D089F2D422C18996D0B59D6686CEDE92F8C420337F96BEB2835D6424B4F2C624E5613CC473FE30D1087750575A8370ACBD60EB7F9F416E31ACE6AC50B96CFD2E224ACC3691A4C5EDBB1CBE54F874135CB3556E2E981484627DB5ACB3BBAE50CCFF941E98FEEFEB44101815699F65444658412ECF10692911224EA06F397341290BC4E06BEC71D8B549D0D4DECEE68A9652105152306794991295FED1AC7A67E2580129467FBEEED5CC176CA81852FA23BCC00332644034FDC42561253405E6B01D5C6E052E8DAEAD3A0DFCB99D3FC3AA03E7B11E21339CFD4D0ADDECF15C208FBC071A14833A224FA034A289BD1D479B9190E699710ADBDDC9BFD02946AD7CCBBDD7347E8A4E641B5786B75FD8A504B6655EA523690A46AB908F9AC3AFA1F9F122EACE9B9345C656B9B1B60EE8C7F8E68C0D39C953C62D5912B82BB122CA9C122FD42F3BEEB3B702B5329162F0E267F44BE9EEBC9B5C7D2F3DE17F3BD973A0A5268CB53079921A1D3E9C79862177883CF8039C661E0922A83D29C4960ACE59A2DB493B071DC0160C7B159E38CA422A5866B024F7F8CB386C37C63EAA78E98EF226D1D4FDEDF5C413A48EB68DA4FB14329A218B073AE2F05AD9A49DC8E2623EA604FA87971258CF99676D80EFAE0647909C8AF8A18604EFC9D89CD60B3FC664E9900AEDCF259BDC8EA874DE55D0BCC8E5F1D2F40F777A0F271006CCE58E76816F4EC89912F853C08B4360CC008564181529A14D04D98F20BC6C8BE70D3C010FF8F493414C49FB55E690A5A3DE34F8D796E1E2A56E6EF2651C345480B2DDF0A12B1F02A0854F0AD5EDD78CEAE8648E96D3CBD92EA1677A1D7DE3270F10F281D7FEE9F5D1243563A98681C31181A20160B9F238FFC01C159DA6D42F0D5771B7A9C95BF11C5541411CD3F660FB52D497263A861049B0C055387AD9874D483A0734F58FB59EF7AC2AE3C8EC3B6D0AFA18E8498A262AEEF1348A859972B4A52F485D8D87B1D86EFA61929D346436A8E81A97D96C1C11812A3B4D9FCD38FE022B4D7D159D73315BCD50C68D6E3F11C6D73B6BC271477FEAE8ABFFE610304417442BB5562DB8FECE7DA7F3898B14EE80C1809967CB4CA9C47D07724331E85E758FCC186D4C9A74AEBB98CABF4780C6C29C321C108FEE206E784D3C4B01361B16DCAB8F465FADF348F2E5F09A42513BD724302828EFB51F224DC7CC20F07104AF30FE1EA97364C4CB6519A951DA0D23012C7F9AAD02FDB80210125364AB3EC1113B53ADA46BC0C8380F2569E37FCBF60D64421DFC72EFAEC0FBE103D66A72C5A6682AA614C959FB4EE5B02C16656CE42BFB66F5CCFBE4B752CE3AD4BE1E98FD0ABDBB870A05C8DAF79CB29F87365EAB5F28035510D758449DEE1B2A3341545D9C26F24293452D843B51DBF5A79B35ECE48D0C1335D1BA1A9B383C55191A832B271EB246CDF5B0768DF25F14627FB5C70C42C341550F86D40E3B2FE73D6E4324C55A005B785188E369B85D64553BB18EDBA806B36E58FD3BCDF0A5CC4122783BA140F2DA63AF21533B1AF855354FB331E1A4814DF4C0385292541111C4B149DE9C3C2C60AA9D964642A5BEE25EA8219ADA4DD3154F449D2379DCE518DE7B719ADBC81658EE9326A3473128E0594685B57F810EF21B3327EBC6BFC14400CDDAAC762C2B755C3038013F7C63F53EBEFB211D4735D8137935BE92FACA80D599336FA4A9CFEC6DCD439FD5B372545DAA215EEA144160A295A806F1FB6E9F7F99AF8D8E10C875D50EC32435E0C0EA2EE73C6B26C94B5380512BEDCACF609C85E612034643CDEEBF2FD0ADC50D44E26A803D3848538DF956D4EC8761A6BF84A67202BA95844779953C2061EC3B631C104CADF372BB0B47B52ABBB7AB40860EB049FF9935A234F7AAEB1ED0D9EEA66EB0F7B52E48A6F7B169A105BE8531EBA1C1B2E1F7B0C364689C2D8D3BE53A81CC2A8644BAECB882C952176548E6FE6ACE960AAA03E001B02C232C8CA36826E306A093E61756B93621A4F0F5BB37D4C48BE3293ED53337A3F036956B785BE8DA2E41729F5A9989A592C2C74979C8EE30505E452F6F4A619F6C41E1C2088F084888EB2A568146DEBC911AE2A7F8747BCB0CB63DB66050C50BB3085251485337D3B091067388A47DDD0D3EDD139054B76EA404A6600559E676F004C5FEF632D518B14FD1AF5BC0F54E4282D1ABF45AFB9A2C95AD1025F9346B6C991D2096F61EA6DADE7156843BA3BD1F0B476661B692B280D8CC250896825F8AB9652B3A8BAC605EA2DE867E5A8CAD4D77E71EFE5B34F91890F90C27B5E5415B052CDCF7F94E618086D9F2A0BAF99E89BDEF31BC5D3F54C460915ACAA613F90CF744BD0A7CAB916BD86F305BD3CD6556E243F7E0DD7322200E89744ED7FC44E30D4FB28344A4B8543B3272CC1070576A41FDAF4D34FC56A939E15FF20A2813C594EC4841FD6058D75DF334FF533F41D4A0604181C1C316746BDD772E81237BB30CB5EB88D4A740FE543DD920299E328EAF4F185CE3A0EBCBDC9BD106FBE2988FEC8855B98CD0298C33E2CCAAD0430E28D8441147AEED8E2E94E094633732D5380425EEB52ADF367B0AE7999EA68CC76183D9F6EB056F2FC3DF62DD384CF40554584E9AB815F2A077DE3377D5321BCEF94B49B16863D2547309F92E23C5E53B19A41CB269E4ECE255CD619406281CDC01DD30269512DF6ACC2F52F648B60DCB1C04614C8BD757D0BB8A8F283386206F43BF4A0FF332352CE624668B2F7A2E93116E96A7B2B63EFB986B3C6015F4D1912F1C25548AA3BC663894E76B7B2EB0AC7C17B791BF6711D796B9FEB5087EA955B8A894B8B82F11614D322A459D627E0B2C4122BE4B3957A8039245A0F490703F34C12B7E05D67E658D5B0A945277E160A3C047F88A6F638CA80BB930117A9B31070D12D4B150BD159461B1F3FFC22F07FD1060FD2FD0C83DA7F3B730A8E1372B5A05E85241CEDEC4AC6F5B3CA7EA8638D056E4773DA4C57B2E8C3341CBF2CDB498CEA77BE66F05C2BFEA0CDBC2C64153043FF5B8C42530832DCC9337C1B4322ED1CD4EC4668B0F4321F0F9D9147A5D6683C443EB93D34BDDC92A894676A03F4FA2BB94E5ED4A0D366D69F91E61716228F1DEE699A0D99A3AC086C03E595380640DB45D23EC55A6CD3AF165861D033AFC1AA1383B8043A1E958959BE842A5AB6D522122A9C9EA064DCEEAF850E45D0DCF5DD284634041867A2E4696C239C603A0A242D52691AEAD1889639FEBDA3EEA5F8D80B78941DC89A00A98AF4F29943352C4FAB3DD5F1E43C14A2B24DC8D667CB9C71DCEE70C406C749DBB5CC09F9B3EDA97AE25B8D36A525D5E29ECDFD4AB75124AD83E60011D4F9E1E0C46B625A5365865A5603AE573EA84461E58F39A12F86222A2D3CD03F6886FC1D7292BAB0DF653C8531742B9670E038F2B29518A017027D0038237E4A771C215927E996A92CE8082B7E43A704B1175756A5A46B52B5E40B3FD2F01BD040D68DB511E4CAC96E31240DBAC88D7477F33991AFC8F07E0346E6F416735D848B9CFE0A6AC9398A78FDD41E56AACFF7FD90C568BEFE59192EAF8B8DEF0326A62846AB897F1C3DFB03F1907860D41B0C46AD7278A95B872BFB3AD300F470972AF9CF47582B9285FFB3DCAB1623797B8C9E4CD79796C8D935C4EA61691D6543F9F0CB433C58B78736B65344CDED6C8C1F203E372436D596E3860A4F1D9DFDE20888A757C70702351C9CDAEA235C5450EC1D902A21F54E29D2A3B8422142ABEB05B30A193D8896DCF3D5AEC0130220D37E02B7DAD8279CF850DA888407AC79128CF12774244AC2128A913F0E7D990A7BC3E29CDCAA377C48EDB8987537F9BD31D44CEAF8522A03C99085BBB941D02DC98812E2A2230ED0A7B417A3EA6CAF4363C88DA684A8075310B1FC7A99E10686D825D6660FE69F92A142A43775D15BF05E3B1B49BE00425FF7630AADE1F974E42232F4BA3828BBDD1D3F722A02384C0AFA87398BB832C41A12EC2C427EE905A39C4DB21E147CD93CF7FD4F504A43C48F7D48A2060895688220863B68A4E31C54EF1133077FA283BA99F16E367FBECBD1B87ACD15F87795662F920650C7040779BF212CD15B518669FD3FAD3E1C3481D01C922767ADF50F8FC97781A35F8521D1E35EAFB7765D24735FEE804E7424766622BF7841D4890D2B59CDC90E85B20B8209BE6D9D0CF74F66938224131CCF6CDB11AA50F0B251645231C77655314A5FCBA7CB50CED9457C25D51A534FF4063D12B60AAD53ADE5E36B2CEDE7DA79E23AA7F8AAEE96384104D7719CE434D44FB0415301F8255EDD14633E8364C135A21BE0C3330ABBDFACA7D21AB536DC46E1C69A050CAF7C2BAF511F8E342DDA4B88967F9BE201984ED4C25636BA67803409095EAD39D717F58F63270B9DBDE9476C0DB7985785BE108DF457705F81A94DEEEC9C0C24575AB9AE92349E3A9343A8DACD4D6B583E84F6061EEA3ECB0D1AF8489AF1C0CA38AA9FC17BD8542FF726FF79289371A057BEF066E3131E160C10F898A29847376C1458889AD7BDB33C97D687D894185E1D0915137B198A7222463F8847C81251ED84F3F0A10893A4A8F5F67103694E03D10C47B32115FA26E863431E087A7311EE535924409B29F80C9246CEA2F73C81526551888F4922F00AC4913131891958DF5C8E4C510512E33132A16DD91FEEFDFDCD70655222A0515063E7FDFDB31C639EDAB0616E667E4235B01B5259E2BC3AED940B747B35D284C806967738AE79EAB7987728AE39938A51CBB3C554EE227221EF58DD4DF2BC024DDB8EB58C16EB5512255727B519E6B4677E44AE33BC5A4D2F0ECCB18E2BEEA55BAA3A7250E2D58DB30E644604AD71722021D6506AB58804B91DB93885CEB43DFA2DFE411B537C2C2C0B585AA68BEC3B802E2CF1ED8A6D25494B773ADCA8D05D4CE00D3B6C996869E6197B4F6EA3BAF19B0C2A29E5BD032D381C5B378744971025FCC1402E612317B5FB21BFD13AEFB6AABA1789CBDF7E53B9C768F2473CA1E18E60227664B97FCA0E9FDC7DD6CAC2FA56A58885435FC1D89F51995E052FB872F9F5F4693284EFB4F95EB4CCC7B378D592EF40AA4D6B069D81A20437D4F86E82CBDC683E41047BA72DCADE03C73AB4155016D87D52A00454B43DECE3B95254D0FCB8966DE792C6FB7F203B12D6115D79B6AF6751E63A9DE25953A3D3FABDE360039731FA092574174E0894533C797C0F49C9D0605AB3741739D98167907EBD96D3AF6D5E9612DB3CD223509BAD17828CDB91A3B4183F6E775C3E281BACC6E536BCAD2077761F6329AE44025D3A02E0C8C3D6F8BED5060F74C2CEC9B1CFAB21F4061371A85B4B3DB663E999037A8D0DCAF8761151530398553CAF7D4FFFA52980B181425316CB9A2369E2AB6FD45B5B58DB2A2E931119EFD8C06318611E736D537FD5C15ECF1EEE9E1589DA8BE858C9C49A30F6F775706B576F451C0B4C567BA3274724A669656C3847CDB6F9C51B6F7E2B9CCF13B0B7FB1CD90985E9EF0FB9E37C26CC7C258292307DC0A5A9BF2C00120F0BA6B0D2013C3392BD4AD08A5A87D32E1B97EE50ACE5ABFC41DA48A6445B0F13516A87DDF77319FF7479E30D0C53B34949AB07EE70B939F1FE236CB85A9C226C37CDE326EE9DDF1D7FA0A752B1C0F010DC27FE7D014AC26C0D3C19985B76384B5D7E602A24E960E77F21B25D87F0A991AFBB467861E4534C69760CF6E135BECD1097F0D1A4977DDEC50D5E69CABEC0F7467E88E1E4A6DC82FBFCE5EF71657B0A23BAFDDD48F6C4EE23AE12A17AD38CD1AC4143D8143CBE69DC8A515996A4E581BA759947429186AF11AB5183A85D5CEE21ECCE03E71E56777BCC80531970B14C1D4FE8670EDCC5CE8251BCDBE853DB443BD7DF0A19584A27D88E69D2BCDF6D7F5B0DD6885C742E66F31778A05D7C6F4700DD8BA55CF42700A2B57D1D6F73E4764239ECB47D3C9A5D07E0BFD2D970CBCFE865F8299D25833499B21F0B5695D1573896110D3BA76C2FF0345A49D5163C101F9229C73F7AA8A9C8BA07B12565BAA26AD216602519DB149FE612850E2C04A606DE484225F71E42BABBA86CA550AC02DBF0980F48F4A9775382168FA08B6072BFEAE389BB85C679D250B6E5BF162EB77A2F45B469816E712ABEE3E829323542C36087C61F9E4DF48116231888B159273D64E2253F9379ECF3B73667D82577EADD52C0E89AA99B6B373330F82584CAA3D590C7F8DF0173205BCC071F5265189880F7178623CB540D5B96D092B01C34A0CC65B9F0B58875F7A5491EE81CB2017C461C8E896BED96540B67E396A505A48A840BFDD4A24F61079B7A760D8326618BB2383746B2728408FC9F626B95B425A3C58549E3FB3D217656952EC03DB238F5F036DDC223BD46ADEC0AA97E34138B75C5A26B4EAD80515E0DD279786FAB3A083DE4DEF6B1448D28EB0EA0D13BDDCCC9D34B0488007B72B03541900CDB076F56F79231F3C2D678559B8E72A695F3929C036AA0CA432633DBCE906219B00E5D78FBE475DC11FD37AD3021C7D187271E4D43DF7FFAF13534E3D33D62DCA38C6CC7F26CAE5FDB473B496C112BE92E2CC429686452234A2CC88B9A6A8834EA7808D94A2E492DB5A251C6D956863EC1A4FABEAB829F0B64E3FAC774035B7CD1B9B9709F0C14B7141CDD0AA3D5F64461EC82A91774E8CB2E594674AAF2D2CA857668513D3644B2FB1C81D8BF6E16D76EDF5B4158CA96E09C38DF2A08BEC5A20E2EE012DD532C95751075EEB84B0BB0C21D3855B30FEE727698030B5EB7B1EA71A8F068DA70BE7B34133FF3EBAA963CB41FD96A9947A391D7B463DC9E3FCAF3ACEECCDBD765AA87648E70D031D23B4B0F05668C1F5A5E3D7FCAD5181A8BC2A0A0D167894E1593BBB88141CCD6791DE0CD9F2381912D5B180B484128C43448A5FB7B25894885DA7777F8D544B9664A1ADB37CFD2BF723AA0EF7986476857BF2FDA456E2EF1873C08DBBF179753B6D54337230330E98782D249CE4301035FFDD1CB110F487B63535EE8008B6DBBCD1859409D0E039BFA2C9613CCF6456D49ED654262C6DF90B1137CC699426130CF3CEE8F6C71DE5449B8551B6B1B2673C278BC34B92D4EB6F3906248B5766879786F2AA164C75D4C9EB263E067F1A82929BE8240585CB6772764065C207B8B07EBA6D8DA8D18C33AA659C3B4A0A3529E1012C3B63826289892386A4A765FDCEBD88673FDBA4D28BAD48763455B65877A422D569F320F59AF030014A7B909FACA152F65476071FC1ABEAA62C323140AB446D49CA841A57C5387331CE1089CE76F8E83038E5CCB44DF86539C67D43C92E92DE03BCA86F9EA1F505376CA029B7939812664E34EF13A8E74B322B2E9E130C151CF67732CF81F5743ED1FE999D6BC329199C4F3B3833262C6F037AF0ED6173BDBB2298795CB25C05FF15EC1FCC7D50DA48F1074AE29B402BC7A72022FB412A57FD83CA40F8C82DFB110854C6C687B9C383B189B971F1E36890E3478559A11CA0F49388997FA189EC7676976B41A0D71E016D6530B224B8BEC7C835406673FE10A5F40AFFFB59CA37CA36609B3044E128227EC1620FB25E4F14BCD3AA43A212E70E2C87E0CFBF4B2E9FEA70DC6C35624BA0"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"AviraFileAcl"="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
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avkmgr]
"Description"="Avira Manager Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avkmgr]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avnetflt]
"Description"="Avira WFP Network Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\Avira Service Host]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.Systray.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.OE.Setup.Bundle.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira_en____fm.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Avira]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\avgnt.exe]
"Path"="C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\Avira.Systray.exe]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\Avira.Systray.exe]
"Path"="C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira_en_av_5a36764ca748c__ws.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.Systray.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.OE.Setup.Bundle.exe"="11001"

====== Eind van Zoeken ======
Farbar Recovery Scan Tool (x64) Versie: 06.05.2018 01
Gestart door F.J.Stols (08-05-2018 13:33:04)
Gestart vanaf C:\Users\Gebruiker\Desktop
Boot Modus: Normal

================== Zoek in Register: "Avira" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}]
""="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}]
"System.ApplicationName"="Avira.Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}\Shell\Open\Command]
""="C:\Program Files (x86)\Avira\Antivirus\StartUi.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{305CA226-D286-468e-B848-2B2E8E697B74}]
""="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
"Avira SystrayStartTrigger"="0x020000000000000000000000"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Avira]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Avira\Antivirus]
"AppDataDirectory"="C:\ProgramData\Avira\Antivirus\"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Avira Antivirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Server\Antivirus]
"Name"="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Server\Antivirus]
"MasterKey"="Software\Avira\Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Workstation\Antivirus]
"Name"="Avira Antivirus"
[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\X-AVCSD\Workstation\Antivirus]
"MasterKey"="Software\Avira\Antivirus"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avdevprot]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avipbb]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\Setup\FirstBoot\Services\avkmgr]
"LoadOrderGroup"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avdevprot]
"Description"="Avira Security Enhancement Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avdevprot]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avgntflt]
"Description"="Avira mini-filter driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"Description"="Avira Security Enhancement Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"AviraRegAcl"="0xE72DA19FB670CCBC63F4DFDB3480E71BB98D8B5E2BAA5FE2C5C9166EE909907B8E4C2098A3CF22B62D5BE8F5B167DB38308499BB38A272473BE1C753F1244F70B6A7158E5B3308CDE93FED105F5CAA93477A731F21B9AB2B4BFB4647947E5765F0091EA32F1508E5B830D067404E8AF1708B09FC18CCB817334EAE34FCD7427108E269B28FFC3F338719CBBC885551C67C96CFE03517DDFCDB9F863867A99A78A6C21DF8AADD5A80FC198789A95815A255D838BD3E60FBF8B568CD371381A6B6399B523E19D6D346E3155F5FB0944679261C75B4D12452F27D3CA2713056BCF77B8F1BFE05CCAA15284ABE2EEACF58676AD657A4FAEC11218905C6A6993D49ACB379C3C168F5D3D83679FD109F7E934B2793A4C63EA91E4A3AE0F84ED21B61638C961479381A19B0441E16EA0132B565594883E75D7D0CEA64B69FFC352F9C11C3B0BC455EB2B57DD0C360F5DDD61175E00A8B76EB411887ADB80399753829CCCB383F034549FA7A765B94F81E8C6DF70AC1E4062437BA17FBB4864748B2AB7BBDBF62EFDBCE156BC9FD8D678A307E7485A37B827D1F4EB15F1B00E3A526CC55B533F3CEAF5F7FC85B90FDD26901D3DE2479E40A9D72FB39037B98A819855F2021B01D182CDE861FE04C9A28CBC1B25058B79A7CEEBC6DE8F7C32C5CFAEAE850F415105586807E5BD8F27C8078E517A9D8E765129CEB4682CB0FE8739C367C74B79D5C76C20C159803FB5BBDADF96A2291F91E8EDC19827BDD3C2E78EE9F5876CE0A0D943EF505B5FCEF33168DEB557EFA07F467D42636609C85425A8EEB50737DD24790CCC872ECD6BF185025D6D1342EF0BD27CC4AA81CD3AB9630A98C95472C7DAA9E416F8AFC498019DB5695D7C957E90DB85D4502C7FF2119D98A0C092BB4F80583C604AB5CC7137A45EB62AA2EDFB7B9368A8CB5412571A98C4557A7DE5F5C7FB189641A9283AB487499F96F7545C89879F0A58ABC27839D074F8163D23C82D8AC39C22487020A0E821DD1577FC3A7BBBA037DA5FC497262BFA86A2C90A9A1716299DFB652469D80460E6AE1795438D6B3A224AB6CF9137A35DB428DFD0676E1E4EC2A3CCEBEEC49F6C2AF4B262C923FD5717717938E9A7751A1C4AA2DB86DEA0C6926062BC5DE394F0BB50EF26E8ED0A491A54256B2C3B326AC60E0F8860B210AEAB744224B8250B9924E3F5ECE59BF03156A5CC64CF94D8BBE97A98E10358298F6F0CD2001AEE2B6B2A97A4CE1ABE9FFF52B11B5E7B9BDA86547E6A2F9F2D31A7FA0CFA0B28B7E26F87DFDC917EC676E036AEA51BFE63B3931814DA0D51D781511F7018886D5A818CE3224AAFA9C85798805174E0F8C5DA1D2148F014FD92260D8A3C0DB09EAA1575F3F1A12F59382D0B903F60D6C753457E824F99F98D6A103F90767693C451D0C1681B6B289D855D58D30340645C62C35A6600A8041773BCBE2998852E7B951DD9DF5DDE4BB3145F85CAA4A0B1B285E3A8B22676867281AD2542B1C405F4AB42A4B686B207EC26C1321207522C0F99E2E8CDCB775A8BC99BFD5B7448616B214583FE853272A22A311F8D6A1F8CB94D51B0D50E1417F27EFE297FAD78CF8093934081B98F50CA6F8B4183C22AE84CD91A81278971E9021B79DEE044E195EE9C3AD6448484088B0CC0B1C140BD8C890D41E8709AE6D42BBBBB6996D6C19369A2F7844CFEF1064FE54A80146DAB93F8962D2FF056DE5A2806B1006756037BE713C95D86603F2F572E8C73E7977A408B8B57914F5FD65EBAA1B4CA3665A6A051B798772E6741B93AB46B40DA6F8455F9F49EC670FDD8D92835C633DEFBF36E570EE7F64EA26CD0F99E61287459C6BBB66BCBC2D8B444324A752C568D6B2BB7CFC0BB51B577EA537AD43A8FE77B5A1A84395CDD404FEF405D7848EB1A0842AFC9C23BA1392A95C26FA39F343649FBC18C02B7ECE2E6DB29090DAE51323A90CF9AEAA427CAA876C10A551C63E927B18668F3FD96C7E0D99909B4849D5AFA407C7320EB7C9B29994612212680D9F4EA99A0DD6E641A736132837284CF5336D74112B03C85C100310BDFF2CC1FEDCC16D29E469066CDFE9A846445539AFA2D3F141EAAF9A283BFFAD047869B8FADDAFABEB31A7A693ECEB8B6C9F0698EC3A629371DB91F3FD64B8499513978507AE44C6A6AE70EE4FA25E3B797C4473A558280E171B3C9B46FFD50BD0CC6C7C3AFB30D18F1A1147941BB8A4FD1B8461B7FD8F0C52FE5897A4E4BA1FF92970892F5BD110396BFF7A0676AF4063605CF1B464E87DD74A4004258B0B6751B4E1E288B5C73CB9AE8BEDC981B485306B12F5BC32C85A034FA597A44F87E7DB24A21315ECB8918789E2F00438A923F0BF9A456297B53B4F4EFD40D9D4571A6A498242278D284631DD4F173301B7D2556E375BDEB4A6EB5AC4F94C9CBBF0F3B47CB7717A446BB7C4D80DE0B2B04BD0595C84C32BCA2D7FF51AA77CFB2D7949DC40FED56E184740A92E586A46107B90A2AD9176762402972457927F2B81EF20756AAB96C7876BC4786987E5CDFDF6BFAA6354CB707EDC97AE8798121A464F5B8932415369D9A6353D2B57C819450B83550A17F4C4B3FC0BB20942E5F681806447AA71C44E75FECA90FCDDEDAD24A1BC89270A2863CC274CDC89760B3FECD59E30E4DDCC5E8F270E0ACF89EE66DD295FDE811C7C94316028947B189CD24E469F6FC7B7A776C78F42F6894860B9D3951CC51C735A71F1A252194130CB38293D3CA18AA630C19E2798432C2C914AA9EFFAA4A1DE0F5A07689646F46804FB4BFFE51144C82A9DA5E6EDBFE4AB11C88FA2CFB9942DEC2C1052E00DE35636C44894DC7702B8EF15870F50906568385F8B756CEE138B61D1DDF6A3F3240C237FAD01FA43EC1B0A6A6F828B652310435224ECA62C51AD4082E3D2FED39FECFDF3FA811DAD813097E5229A2FA0F68859D4DEE6A1EE134EF69A58A0710C231EF387FD7AB39ED695757EC8B2AF79B2A4EB6CCC601851DBE24E1752A06DB0BB4FAD780643D2184A4D4F8467FFAE939493DC8E9440F463DD2FD58DF70CB5B4D0A757A88113301BE9B8C8AA3E030EAC44FB19886DEBC7ED4348514FB32E77E5D402ACF585977A65FCFACD78FBA7BD9BF41F283973C745DE6113D427D6C5480FB0092A64267066AAF69310199417092F899884B8BDE542814A74B6F60CCC672A38DB40F38D3557D47EA888C691FB0948B23D99E4F52AA810383EBF50AEB1C6F11622D4C6E19CC3629642C9721F79A4459012C3E0C378AC77ED11493ECC55AE1BCFDDB56C7C89928EBADF0217A0617546072D70CC202FD9F8A8C2C4360FCE0DAFD8E2E1E9EA3001D85B3AD98501EFED140E0925663F149284FE100B96D1C3C12A9D90719C744F87362F028686FBA851AF9424FB8766785BF0F3489FCC20C58234FC9C6E365EDEE57B744BCB77F7E62F81527EE66806921FA5F34690A32BFAA4628128DB04220217BBC5EF6426D3D297B1CAA9DBF28CF3E8422708272D6DBE1349882E8DEB2E00A180C58220E7CB95359B1F4895E2CC92A4C2A2F5DFADCA362594F9E87E72937CBCBE13F5060756B40E1664C2376F0C64FBE673FC35F34CE2ED61F8A3F05FF0E465DB1027FB0B5DCE14ACA3D425C007A7094A3743C52192AB222D8E2C44DB0410D86AF6853CBA2EDCE4A8CC4FA7637FD68839A1594ECEA60B184363009121D73A1429CAD0126B59945EFE2C42F7D39DCEA1F71C367A9E7A9A2772B544029A8F537632235E556916CD99E4BC65039983CEAAC8377F34DDD3A9F24915D2510E146C1CAB71F248BC7D4193B4A09A1135A4AF62E67E65D5E4E84DCF6BF56219CD426DA48E1B3C29BEE31AB67B6053E88481CD084CFDED77A3E093F601C201767EEDE2A8EDBD3397ADF2F6D7257866B071FFEC7BD28E38F599B7C007B7BE3F5E63FB14FFD62784794F28840D16A8960EA4A8E33327B5485F9B0BA8384FFB61BD603AC17721A56898D0A058017DC361106588CBB00B9DC59FBAF878B45DFA426C228E497537718FC4BE798AB89B23553FA31F64151D62E811174A39AEF9C23E9B238988CE8675AAA6CA039F10E3E1B2C73A066AA6A5CF8F244D2ADFF3BDD1520847A089C1B50EA50BE2CCD6A29FCF8D5ECE771DBBC0AF6E6851361D5B0BE145F1C82C4F18E2C7FA8BA9A69223182A655C513ECFE3D89DADAEDC21391E6246391EC8B90E69D4701BD867CADCE6C0B24A4342E87EE48D410228653A6BFB2A804E1A340B635DF5387C3E89F22F6B4DF877DCAB2157EFB1E7D18FB0FAD57AF6514D89C94A7E368FD0692F8AA1DF6A3F948A477525AAB1910182654D20A93B7EDFD7AD532B456C58C1986C05783E0D8FCB3A39396AABAEF649494573C93B774ED4B7F333276EB1319BD70EE5AA78F55E04D626419E19760FD63060BF98FC9361A2EB07C5CBC718DE8E67B3A49A71952DE5DC9501CD362FFA3F2B1205F7BB32EDCCDAEE3A3AC2346DF030BFF7E30167417389A78B89212E12E5EDF1065D6751D66DD73745C3B6616255ADA72C81B983E2334EA5BD29A502093AF0F803DF69745ECA8832B1EE3E0AFBAC8476F7ED852676718410290EEE92AD3E3C9733B1E8DC115CFD3ACE9ED72A4063925C3C67BEC58381B8C3A62D4944BD1B9903073F33D878F79C3D6A30D6E2E1A596BBAC2F15297D4A7C171CA32D4033304C7DF94F084867EC425092C3F88952ACE5542C23B09CD4D4441D43B8D0AFE12B91CC13196825F44079AD397608C31A36ED531E2FDA1AA556BEEDF709D84AF43569DE6E961B9F7704EEEB1EF77FADDF211DA32876B8A34154F62923A70EE2922BD8C451B87C2F3EC9BC0CCC0C6E1A0A77D22EA2673EC3F9C718881E56EC730FE96FE1ACFBAABD6D3CB9C6829FF5D19184235A6ED77E10FC541BE6C7D0DC3BBBC72CFA2EE815E1D028AAC6E8E47F243A0A8EA98953674BB4994C67D055E8E8C5356F8C5C300C2AEAA2A03A2E77616D286C9AB69456F97403B1E392952B83CC84B8DCF963B8E3954A16264EAA8DE21787F4B04E82C553DF90AF79871DA8401DA20D191A33C8F32C35965749C44EAFCD826841A45F95078BBAC8FD57AF601C847548D6BF6C3B70FD8A105D9C0E428A86D67DBA7719B71D475D4FE76FFA2D429D860FE8C551CA0F4629D98609C4E986CA55EFAC61D9496448ACE1612BE3743DFFD2D6D622DD83857E022803D01DB950ED2694994F0AA32CA4F7A298DF8466EF5F626B690F015EAFA8E0319F02AE43BB95967D0B10339D6F67A57782F56984E9A7437328383338657DFD2F8DEEE541383B842CBE56B7C3069C898187F7E1137525E46EE6F858ECBDEAF578DFA943CE932987C30FC55DD0616949A3C4CE452E13CB49CED5D7E06CCFA04AC4CE1AC6AB15A08999A71CB83C5C4AD787F0FD77D5C8AF2B11580E00F5CB0AD356950159ACC6DB09A30A541E307E416BAE29191D06C588C5F002819844EA61357957116A3C8D4A4C7E3EE10C9BD44D707CA13BACDAB09C2F8B23CE18071AB929F8A315325217B8906F6619DF3978E35468B6091ED04AE587E8D45FD55DEB32A5202C31D88CCDD2D188A1C15ECEE9F00832C6BABB2A6E072D63B28E3ECB2724DFBF853E4D260B8964B8B3F43B4885DAAA4C6B231A71808621A573D72044388C0734024FC72DAF100802382A60299B82C54AE8D033571FE76FA9783DE2279E7A1587AF8F4F9C3ED546DB9C32D4EDEB5D24C33929DDB5AB09ECA880A6865396F07E88C7418BBB637C6E9633591507DEA82265E7DDC795B7A0864EABE09D6004F5EA400EC432951A03824EA3808EC0D5AF44D1E03947370A0CB2C00C7CFCDFFB6EF33C37989CC3C8C7BFCB6C703539033959BF170EAF2D3845FEF4D3BFC8B9A932C76B086D775FC4E0F675D6311963C64C5FF5C5853E9C6ABEC6FD9CA9D10435160606FF73E8E112648E4A8ED4950C8D180C980E104992ED6D10E226FA55DC07282B61D79996202437A2E5055343201CCE3A719C57A9C185B811630361913589F101E519524140B8D4D6AF725598D65283929B3E28F94F98AFADCCA0B880C2A42BE1FA9956F1DEA116880FC818F5715C23B353B0A0D88EF92F73D1ECB4CFE0E17C20273E63B24273139C15525193EBD884F09EC54B7AD9CA880D60BC867B9A051E8D23D0F732DB22D6B30E68220593BF733F11EFAB1D4AF6130AA4528097B792982D63521F1BF055768E321A3652CF353D9086E7D0FDB9B5C3DDFF53BBBA36207792A22957E91606F08E33E51E6FB77924F802DBD255A619CA587EF9C76ECB5C283C5E197E9FD4EBA00CE898D032F6C0DB55907961398C2F185E29895BB93013B87E405F06C00F8F7FB1F37EEDE47C07EC5C7C0331492FB7123B5B771A7B9AB619909C1A48D0B8B46DFB764920B2A6A40F0D7E478F93C11325B005B79E98F5482FDFE58E989957CE6DA117B159B4567CAA6FD432E22C20E3C9A2E2088E5C681FEE6930037717FF60CDE603BD3B10F46F3D4A5F78961BE56B6FACCD097F6592A24F2CF29B7E8315225198AF613E4E46A502117521C0037D472AE1D2D1BF512D061DECAF8B7DF505AE5209AC473B2D9B5542D0037D2D00F96353BCE0993FACE450A4F0CC7C98C6F05C7DFFDB1D80D83F686793321F8A36174375FE1974D7BDFD6CC7A41ED8A98C06DCA9B166228C955533AB61361392583539F1B31618DEB233EFBC8417D0B8B5732897815E36B2603B139541363CF0911331D9832CC4B3BE0CFCAB83641886984B349D7524507C671B3AD3ADF342B7EE08C88DF2E33580FA374B57E61A436A82ED6843BCDE4194FFB29C73FAC157443398733337E7A5042DC4B811EA92CCE4487DF2305C4CEB0B4557F2D6A927D2BE916F1089B6462E90620F4A5F8FF40AA4E8BC8577FEBF503C3E8A621F27CD93E35D9DCBE3315E1BAA453D18E999FD41B5B4F91072F1BC554DF6F7920A13C0B9031D7AE4C23551F0F9A80A32BEA2FE0273EDB9534612EC98FA70ACCEEA2D5D43A17B2C24D0A8DC328CA2C86E39727B810332A583AFBD5C3A964C055445F6CAA4693071F01C7E5499BF86FB357EE91B5D2118C99CFD28662DA04B2103BBF5BDBF623D9442FA5632EDAF844670461AE88D17F67AEDAE50293EBDD4B990580184B8E38014E98BD51C7F1637B2C6DA6437726582D8A065145BF6F38618F271119B650C5B96D088CB1D6F3FD694FCBA472726ADC79BF62C474ACF9BFDBD4C2665A8D292DD1F7739FE86A3A44B095E87146DEEF59B0A1E53276DBBCC88450D270AABD2BB6DFF9E14166FE9E3BBBF863E724AC189129992EE6A5E28363CB0D6B67DF082FA2E4B37B5E387F8FBB8FB38304636FB81E5E5B1B194207F1C004B4F4BCC90F9EEADB4B61D5813193C4F36A0751CCDCA8DB4EFB0DD52FF83F1672A0A7C02367A92027AC3955B818DB2E7FC89AEF303ABE37AF783DB7A065F4A4BF5BA425F1C1D294E07192A68666A0A55507B222F27B9FB1416594A4EE58D22B0EA78E6F7B29BC3D5EDDF7F1AB3F173C766502A12337E5546DEA609BDBF8BA81C62EE61387910F8AA198AC5ACA42954F3495C577BCCD6E2CC84DE594CFE4EE8B5EAE5545F6074F776C1205BCB3A7932B9900B90201C17DAC968E03B6327A2796F6D59EC799E282058E6C6C42A0AB0F0F7621E078F7BC0348A05EC3D6F17D77BEC12C078D923A3E5150FBDD91A2F41B7380F66AB175F91795235B37B1AF3F33B5CC7256B8E754021C35733BF3AF6BB716B0516FED19873BDC014F03A55A41C26EB0EC69622A9F3ED1201CA5888C6509B5711A211DE42E242268665E139A20D0435EFEB0C35F78126EE6CEA18CE64EC3AA041C6179630E760E1F5242B33EAD0DA6D990E9B55B4A532DB50C7F7C8CF50767160FB60D6C569CA685997183FA52A75B55B17A69190CD04CEA8981AC5CE7C99CCC86397C5EE1D76AFCB0163CC114E241AD5940FF279F1B0402A3EB9DEAC873E5E59C8A3EEBA761445830A5637C7FAC07CE9B3DE55167E6313145E63573A15407D1375275F5076DCA806ADB7969728441A327D35B19A589D1D2831E1E666E82C9806F2437E1EE27FD00FDF6A1106CEB542C72E7668ACB410F33F57AE2B31B9168897599F4CD434D4AC14BE67E51CF36D8D444449D6188426C147D2C96CE7758B7D5CD9F6D8CF6CBB900817F0525EBBF74B5BABFC73B0E6C4AF733CA746084932C299F9129FEA625E3856CB792D65DD8EECC8F9620596354E15319BDB6CC3F1BB28139B048E78CA17ED7DDB209BD226E3E78D66BAC711E12F61894BF22BB9341909FAD50532D6FBE213FD7B76B686DE18D5D26753C90E14D78BFC54B9ADF6465C24878AEB615E5D2D48920177D3833454FC5E697568E7B8EED675E023A494CC3E8BF32804D5A95ACDCC17E82491689BB76061AF9EC259623A03DCE7B525998BD549A586F110626B9420FC496E1E380194366CEE6766230114A20DF75D703F939BD91AEA5803CA2E44EB14E7748E4E594AD804F2F01EE3562C37044C558EC590F211520CB7EE7000B7E776D0547DEE68B9F5884FAA3759B47E30C155BFFFEC121D2B9F25ADAE30EACFB028E5AFA1386D125176314EE8417CEC45C4F49C58C309739F951DD152C4D2E21BFF426AA35CE7BF593B656C92C6BA1E86C1D0EA8983DF33AE96F222A4A9787B72D14F952E6ECBF8ACA9AF54394817BECBA0B595343B2F0695C829D1005BAB4F7D55CF09D6DF41ACD7BDCB4D5846F24E7E0308D8A4A171AD6836D625E32145C73A8C98437E3B12ADC583E76448EDAE921928D2FBCF47D3F4D3AA8306377CDFDFEE7E36931108488340A12DD61DF66150CA1D6247C374024218258DEF1FF0E462CE2EB9FA426595E1AA435BD9D4DC1137429091833486AE6B5481EA02B6D65DA60C0E728263D56656C83E3F77A6A7296CF73A86E33FB75EEF46759BEEB5F809098EF11901FA71A02BE4D5A10D034759568B8713163DEAF7ABA2F5393E475880905722EBF5F6B1E9F21E2E6A37BD5A92D14A8774225B3ED44F4529D419F859E1D2312C3E034CCA0055C0F16ED9DAF56AEDA45D39B930D4C8FB466A66094E7EAC65593431BCD34C4F1ECE1A94E6B020333C4C0D32DF06ED4D212C2092863FC863B9F2A6F5C9300C9814177EA6BDC1A557849C92C0B9849F52E1C3F256A6184A6818DAF7D98FEA7CF032AC83C8BDA01ABE827B9C8004352EA7EB008BA04654067A70A220F08A0181A452D7375B195A9D975F8CD3AECC6098BB6F3A3B5CA1973DCE837646D1D263624FDDD6E929241BFFE14E075E37689754ABC8F1612892BD2DC37F5CC2A5DD8877BF2CF36F581339642F9B44A1441C80A608B4BD18D91FE102F3A8E0B8B2CD805B9D34C6A469E5D1DE973668889847E3454FCF2B1E601A5068C3A3913FF30E905C84620F0999F4A5C0EEE0B626D6DE4E429738F966BB67A4AE080E5FD23E336419B8287EFC96087A1E0E89F682A4F0677AC4B9AE212083AE2B6852C5DE6576CCB3D4095A49D2BE92A19DD9810C5AD4D8A3084B2318C34175AE5004FCDC73AA993EC1E490D496F5B7ECD454819E619C5299DDCC751E773227A26EE035BD2485E36FA8625A03EEEA418BD3B5ABB43DC00BBF9655351D9E874665AF01AF9207FF07EC7BF3D8854E738D07A27856AD914929E60CF554474726EAC86215BFAE382F2A08F6084D7A5495193F0B1BC1C1F9A37F91ABD412A4A4E5C43C23419664CC751ABEFD757280CC81B61197A0B3FDA5732F38A13059FE033B9A56271F96DE3ACA54C8607A51783D32F676238E3DAF96BD7B5C77238380C143A3B47D0A842790ADCE35372EA3655624CE9E24B8C3148E486CC4B955C0442DC567BCB4C99C84FF5CF21E1F126C6CFB0FA69B33A824A42B5C79183E0B4F1861DFA0F6E6CC282E92620A9CE9BE2069D13279874034A37F0B9C016D9791CC9E760256871C74FAFA86E87E7A24989DE99E0C0F75F1F781E1636F19898FD6FDF43B590ED7A4BDFF467B5CEEA59ABF50203B9AA07CC601AA123557176D9BC8B33D771B659BC9A75FE790F71B4E27BEE996E6114A193754146093B18B1CBAEE51640366FD9BDEA1BBECA051621F5A8F1F8BACBAC7BA660160615A294E9321898EB2F4AC6AEC92457207626B215B887E287292ABEEFD92B7B41485FC34199806393949850039258F1D71C4860E6CD697F9DBF487C3D5DCAF90BCFE9A86BD99F9849DF5E3D7B596BAB39090ABDBDFC17B15B9F883C9803C4EE0613B8D6E21575757193B0EB7D260DCA5FEC98826B41E6CEB574E132A14972D88ADF9CFA27D875E40103B078916EA8C4FA43748551F97C5F2B0B2B43D20512EACC6A091042D060EBC07FC671D6943F65FB62D462B1BA708E05C7D5247D3B486650A69D2E6B219F99EE1CB5536FBE171DA2CBEFEFB386114C47AED13C67BE6288EEC0D1886E4283C54C60F2043BE18748E90384EC196C111F05B06E9D98F789C3D4AA78216EC192669A41B3ACA3692D226F98852BB7A06E6DA6A9F5498DE39F3B53AD65015AA071C16F3E76BBE6D63A154A407EA1248C20CEF70A25E437E8C6C539E01E779966AE535BE16C84CA109BD46F0688963C265855679AB3B9140C05CF3DD64FE26A92B85AD2FFF1C47201E89D391BE23C0E53E76444ACF3416839171D5E82B90ED06C8BE5D8DC2C04B93F1EE337ADDD3106FE821613833EDA82BD199E3D41F522DE599DC56733792A9E091FB0B5912CCDDA3D5197B1804465441E37DD8CEF783E0D6DDB196BBFA92A1AAECD7B7681297364E2134B8E562D8C8DFFE4A4E5365E38AA1032C2FF7B7D61C198CF8F45F08F4CF5517F6C2AB4EC31D7863B4851EE1532FC80751DB3CFCC37FD1D30D1A148C5A90B37D6F9EC64AA408AF2985079A7DC28A4BD370DA1BADF241946175AC68FCBC63ACB321DDC2922DDBD66192ECAEC86516A16A0A773C8EABF12C470E138A0D8ADCB5BCA9A6DA881DA3BFFDFB82BBBEA63B5AD94B724DA9ADCAA7172575CD3C3D05E9E8A56EC02B74ACAAD80BC8334A97670B2DDC3C46E932A547E9238E3ACF60E8E321FE4E9B5461F0ECFCB2A786C0B7917FFAC85A3A2A7195E18C5F653A1EABC09CB9B4D191A0A7EACAF049545E77F279AD0A2C24E3D6A65DC412776EA9FC01221CB76E91CB418360CF40996E8896398F21161456608D3F1B9B611C485EB0D5805648302D9CEE84A98F455BDA5C316664C7F7B90E2743B73C075F8B5017F7F8FC6AB2567A64D430C72FF7352490867ABFDD666120A22C16448F6F5C4AB7CE8A937C012B120B94EED025B1E82523577CAA8F26D217191CB16AD55D6F47260A967C3535D588C5A7407E30233B4FFE63EE82DE241EACE61F226F789D8434BC4AF35F78BB84C102D098F8E330591ACCC28BE2D0EA85D95123D1AE79791ECC0DE58096616E58EC01C1D0799AEAAC80415043FF585E1E2609B3EB151596BF74D4CAFA36CFE0C744B6EBE9659CF4B761E2A5B9D1B1CF9E4ACEE07B9B8E2AAF7C7B4466D8432061AEF9A4F54AFDBCADB97A5338DC34BCA8547F515FE3E40484DE1294DBAF1BA9BAAD60D6A9F20BED58FDDE1FD8C32FCC8A4686BB97789105C229648560645EE7F9C7A7863B4904503BAEC88C54917B14B267CCA7171CCD86D758DDFD7BDC269FB04D698889EFFA33640B63E36B1F509B5F95D24994414B0A938AE0B607CB55650525FEE0E87261B0DB8D2B8B9E1C6F81866D8B871AF5A7E1068684205C93764F7AD304E988ECD9C6466809F00AB1EF7257A8B4C1DA26188CA6696F6B194240EB580F35E824C15FFDCF591CD7E0BE914B032082AF484B3F190DCE4E4977BC5A73460A746CCDDEF757907D0C613DA9704DE0467699D7C0A1DC48BC9EABF1177C60274C98856B63160E6A2EB50F3143C64C1CF1CDF64F9274D78AD0CA351EA62B098EBFBADE83BA36D10DB0EF4785B6694D11574EAB6DB2A894E878D422088EF670737FCB2E383CA2B3AF0AFC8BFC598359DD0D441BA099975FC618A0C9F7CF1ACA41275516FB0CD037484635EBE3098D161BA332086FE445AC86E2801A6CB132C9785ADAF7CB8C1EDF20FB0A84C3C1F277343BFA361864DAFF79D4DD7FAD0084BBD4F371F1A7C4AF3A729C9454B22E3F7C0D386804899258AE7B618E3D049CADA6D7B6BB6242ED101AC06AC605F3B89440E296C4DEE085D1EB0B565FAB192772D351885C862EB73AB25122C01CBFD0368CC9C515EC8B0FFDA6B701F2859517465A9F7B138772180AD8129E714CCD19C042BD7C957B9481F10F959624073973467C1C6F07E43E67A951EC13A2BC3D038EB4E0C96C2B19E78A585BFBFC45401B7147C7E029ED3BA897C2AFC55460D1655EB4E0AFFCB44DD144E3B180DFD207CA0E3798E33FA174BC083846B564B7490B990AED23B7B2C6E866F7CD6AE2E148FE9843448E1B0F689A61B6ECBDAD503E760FF1EE2A288BF10C31AC89B4934FC09DDEA6393107932C5C4CB8FEACB4413E31E429DDCA0E631AF6986FF9150D8B1CDC5CB2B245C18D2166429BF1BB793410DE996BB7CB0251E91F3B5041A62F15EA57153D46E2ECD4D6A14D7E869264DF89918C9FDC07484918DB7F07625D624316F4EBF2B0FEAD4A17B9CF277881A7AFCB54B259A3EAD1BB20B630AE97A2C382819619F4BD3E51CF743FBC2D9778D143B1066A60DE88AC206BCB87F4CCEE81E0D8D9B2849B62C45BEE851FAF6F943F7F1368F5D217083A5D6475AD0E7608420B1DDD371E52307468B55B76263A090D841F2E32514C9B84953C64F74EC127CA54D4DDE4EB14EDC3EE75F236B0364137783FA165B10BF2B3E96AA160AE574F55EA71F90D91AB9758994434314425E637C8C8D15C28FE21DF44C1D6A977B05837A5BF80568A2C0C0380DF2BDA725551D28C5D912717F1FEC11CB0491FA18FF10E09CB8D883F4CAB2E1D8F46F2B2639E134DC3EE798E4DFCA04BF5995897F94D9B0543F1090B4E9794F0E8327B180ED2A67D5DC2927AC9DD0E2D91E214D59C98422D67A28D06C1683441A6211E50B39FC62BDBDCFD595E67BE162415A7A1A878AB02BB840981568EA889180C073FF6C8F26A2D6A6787A5B40178DB66B60D9ED7C3EBE73D115758201D18E2E1B4AEC3ECD14AE4771538C33C72702E4B27B21E081A4B3369C97560DB0367E3F3C170A489A34520029D1C276EED88B1D5792F5E7EC0A722DA903D3B9BE348902E59409FEFE41C364DC4005032DFF58A75B2F2D96B0D807CA4E8455973E5D1EDA3F41008FB57EAA3E0F2C65D8E445B2B071DB14AF7740BA139E934ADD770F23EBF47E74D5B5698799618F8B5835D89403520B002FDFE257651EC956CB62748DECB976C6BDDB922069C5CDCEC85787E072AAFB0D132F1AD1B397F48DE373FEDB9BCAD7D9F419A86CEE7FD1D2E3878023CFAFCCCC5BAC711C406C29AD8CD68D4F4EA8910579A1F15E783C7F5214C779CD4C76A85F957891131BF513D6DAF907EEB7D40639437FFF6E2A6C0D5A578C255D8FFECFD1887BB5E592CFD28D8BEAB307DB065E1C4371E417E811449A2062EC6CFBBE629F78E0E0A5B729F7FE0473774041FC92793F5920688B67AC38101FD67729AEAB397513B01DACF8D50B5D1D45FF7EE4EF99AC8E1F93CA50B8FD08E985594E684136FA26C9EDCC14348AC784838D71A60D8FA6B082A0BB70F4845676E8B8FDEC1DF65F8FDC696E660991C3DD0DE946DC996F1221ABA72B4BB9FFBE94BB10BB2BDB86E9B4E051F8FE536BA94FDAB335C67D8C8DF19C95FFDB2DF73CC259ED3B5AE3C78CD364C01D5384C5FC28158CF440B6B3AD673D018FBABDD39DEF19B95672CBDCCA2D67CCEFABFDDD9B5DE62D48FD2E03A1F8EB3D9F74DE3AAE7F6F34A9B0680AC8049FF0D57B92253E3F250F838E7F3CBAED4CEC44CA1CB8204C881F50817975CE0861F9B51B3632FBB90F2E35F5924B24DF47D387CDD7E6785E0DB7A9BF57A5965BC1E7F092563B9796C31FED576CEEB87BE6B73621573D3086FF0EEC569864078F66097665300EAC463C5D5BDA18C4ABEDBE385430A4A6E44C9217C190A487EAE0893698CA7B8DAB463E3C45F0AA4639891329A5596ABE40409BA0F4127A91106D3DF854888095EF613A7D6BB697ED26E293CCDC541E1916EED3617FD13B6F9692BF02AA5024FE3318EE7099C6BB1159E8925D35C24AE3BD51F5AE7D8F39BC6A16C8A155F8248B894CECA267A42C22DEA1768C13F312A7E01094B54D96A657CD74A93D978434EE64C46F16D7D8CD7637DF851632E04585D98795789F94DABCA401A749BC2CF65C328A6DC39BD81CB963BD8BEC99E75B00C9F4EDA416DFCDCDFCF6D3FB1B8DAE3AAF5269E65D7C724CF1E884F22C15D443FC7DE869BB2F83902E6E684668B87A8614B5469E1BF145D1DDDBBA9F40CE056DF4F73ABA625A9CB3CA4640339A11AB8894E92FD64A1BFC0A92A3A0AD08DED239E8211D4071A8577A28EBD485A85825A660CC57CA52B1DDB8C5F754CE2D3035B985BA6C744F7D111D0384C5274C608390DB999540EC0EB393D9C32778BAC4C618DAEAC832C15180D9E337FF0BF43763203ACE68B2C5204032D8BABC996564EF85392B01C9527C1B539B01465B1D891E1BFD56ADB52B77B39FC3C350BA6B45AFA8090D7C6653D40D7C64D7AA965D2B6662EBACF8AB14734F6D73FA6A0CE3D11A5710306212E2F6A10C4AB6BF21FA2E330CEB23F78B73640BD08AACEC697EC798AD27E25587A0AFF6075C7DE6C529A2EDDF352ACE986FB41C5E0637A426DE93958E8A0A89D39319EB4EC328398E2B214B146793841ECAF78DE3B50B508EF751828ED787397BE6D2E1A425504D9A076D60EA9732F81C4AAE9F6A8402FFE3BE5CF4F02153048D9030743E6A4357CF7BF41477184069009ECA7629FC0F25CB7874ABE2B0163721FFC1C255D0FF69D45C6C9FE8B8FB7A70C9A8B474ABFA4E31A34B33D9C6293D69912C3106E551931CBE7B17489F6542827E75D6776E579BA92F27F7D420FEDA6DD9E91FD11EB88D0B32494D23E610E6B81D39EAF9137183F3389F42EB979FF09CD404F3641DFA31489FE4E9E709EF55E0ABE6978145A1DAFDEF7D6CA0C83A9D76AC84F956A69179DD100A05BAE0DB638B8E1C6483C70951AD72A2D8D515B445B177724B7E61565C3C9B5CDB271DCC66B27980E0E81FAA9D341754861CEFB2D32E0F6EC537BFC46414C999C5891FAA523DDE2618AEA48781214DFE7019C8DD7FC2F02F754830D1DD7EE0BA177DBF53102F771810419E4E81F999BD0F7243AE82F700006F0D3308287B7560906CB885040E316AE435BCE8E25DD799DAF20D3B00E798F23F55478A1B75EEFDEC36CA732C5D94508A052EC0D588B3017C1DA707FBFAA1CF143A9EB24C8AC6B6DD50F1E38F07C8D310CA9252FFFEC2A8BAAB034F177A39218BD9A785599F006138B51C9FF527172F03DA77940C65F5C9A8E450BB32B2FF4E20C778F9218C9B870E1DAC252A402139397AA35DD6E81E3E7F05B8A0716948DA731D69175FED7E947E7EE2A7790866EB1944C2BAA1916E6B9483EE749866FC50673606DC73066BEE541EBFC0D739FE5F3C255AFEE3A69CA6A2F87E014766472C15D56E2CB4AC711DE9F650EAF13070F96960628FCF50E0890DAD4F826E3AF7F1A370BC9175D93C9D1F11DE8A065052EEFFDF4616A47A235E72A64A1C1DAA401A3E11234449982E9F7764EDE2BEF23758BC4B515EC035BE0AA887F577025D089F2D422C18996D0B59D6686CEDE92F8C420337F96BEB2835D6424B4F2C624E5613CC473FE30D1087750575A8370ACBD60EB7F9F416E31ACE6AC50B96CFD2E224ACC3691A4C5EDBB1CBE54F874135CB3556E2E981484627DB5ACB3BBAE50CCFF941E98FEEFEB44101815699F65444658412ECF10692911224EA06F397341290BC4E06BEC71D8B549D0D4DECEE68A9652105152306794991295FED1AC7A67E2580129467FBEEED5CC176CA81852FA23BCC00332644034FDC42561253405E6B01D5C6E052E8DAEAD3A0DFCB99D3FC3AA03E7B11E21339CFD4D0ADDECF15C208FBC071A14833A224FA034A289BD1D479B9190E699710ADBDDC9BFD02946AD7CCBBDD7347E8A4E641B5786B75FD8A504B6655EA523690A46AB908F9AC3AFA1F9F122EACE9B9345C656B9B1B60EE8C7F8E68C0D39C953C62D5912B82BB122CA9C122FD42F3BEEB3B702B5329162F0E267F44BE9EEBC9B5C7D2F3DE17F3BD973A0A5268CB53079921A1D3E9C79862177883CF8039C661E0922A83D29C4960ACE59A2DB493B071DC0160C7B159E38CA422A5866B024F7F8CB386C37C63EAA78E98EF226D1D4FDEDF5C413A48EB68DA4FB14329A218B073AE2F05AD9A49DC8E2623EA604FA87971258CF99676D80EFAE0647909C8AF8A18604EFC9D89CD60B3FC664E9900AEDCF259BDC8EA874DE55D0BCC8E5F1D2F40F777A0F271006CCE58E76816F4EC89912F853C08B4360CC008564181529A14D04D98F20BC6C8BE70D3C010FF8F493414C49FB55E690A5A3DE34F8D796E1E2A56E6EF2651C345480B2DDF0A12B1F02A0854F0AD5EDD78CEAE8648E96D3CBD92EA1677A1D7DE3270F10F281D7FEE9F5D1243563A98681C31181A20160B9F238FFC01C159DA6D42F0D5771B7A9C95BF11C5541411CD3F660FB52D497263A861049B0C055387AD9874D483A0734F58FB59EF7AC2AE3C8EC3B6D0AFA18E8498A262AEEF1348A859972B4A52F485D8D87B1D86EFA61929D346436A8E81A97D96C1C11812A3B4D9FCD38FE022B4D7D159D73315BCD50C68D6E3F11C6D73B6BC271477FEAE8ABFFE610304417442BB5562DB8FECE7DA7F3898B14EE80C1809967CB4CA9C47D07724331E85E758FCC186D4C9A74AEBB98CABF4780C6C29C321C108FEE206E784D3C4B01361B16DCAB8F465FADF348F2E5F09A42513BD724302828EFB51F224DC7CC20F07104AF30FE1EA97364C4CB6519A951DA0D23012C7F9AAD02FDB80210125364AB3EC1113B53ADA46BC0C8380F2569E37FCBF60D64421DFC72EFAEC0FBE103D66A72C5A6682AA614C959FB4EE5B02C16656CE42BFB66F5CCFBE4B752CE3AD4BE1E98FD0ABDBB870A05C8DAF79CB29F87365EAB5F28035510D758449DEE1B2A3341545D9C26F24293452D843B51DBF5A79B35ECE48D0C1335D1BA1A9B383C55191A832B271EB246CDF5B0768DF25F14627FB5C70C42C341550F86D40E3B2FE73D6E4324C55A005B785188E369B85D64553BB18EDBA806B36E58FD3BCDF0A5CC4122783BA140F2DA63AF21533B1AF855354FB331E1A4814DF4C0385292541111C4B149DE9C3C2C60AA9D964642A5BEE25EA8219ADA4DD3154F449D2379DCE518DE7B719ADBC81658EE9326A3473128E0594685B57F810EF21B3327EBC6BFC14400CDDAAC762C2B755C3038013F7C63F53EBEFB211D4735D8137935BE92FACA80D599336FA4A9CFEC6DCD439FD5B372545DAA215EEA144160A295A806F1FB6E9F7F99AF8D8E10C875D50EC32435E0C0EA2EE73C6B26C94B5380512BEDCACF609C85E612034643CDEEBF2FD0ADC50D44E26A803D3848538DF956D4EC8761A6BF84A67202BA95844779953C2061EC3B631C104CADF372BB0B47B52ABBB7AB40860EB049FF9935A234F7AAEB1ED0D9EEA66EB0F7B52E48A6F7B169A105BE8531EBA1C1B2E1F7B0C364689C2D8D3BE53A81CC2A8644BAECB882C952176548E6FE6ACE960AAA03E001B02C232C8CA36826E306A093E61756B93621A4F0F5BB37D4C48BE3293ED53337A3F036956B785BE8DA2E41729F5A9989A592C2C74979C8EE30505E452F6F4A619F6C41E1C2088F084888EB2A568146DEBC911AE2A7F8747BCB0CB63DB66050C50BB3085251485337D3B091067388A47DDD0D3EDD139054B76EA404A6600559E676F004C5FEF632D518B14FD1AF5BC0F54E4282D1ABF45AFB9A2C95AD1025F9346B6C991D2096F61EA6DADE7156843BA3BD1F0B476661B692B280D8CC250896825F8AB9652B3A8BAC605EA2DE867E5A8CAD4D77E71EFE5B34F91890F90C27B5E5415B052CDCF7F94E618086D9F2A0BAF99E89BDEF31BC5D3F54C460915ACAA613F90CF744BD0A7CAB916BD86F305BD3CD6556E243F7E0DD7322200E89744ED7FC44E30D4FB28344A4B8543B3272CC1070576A41FDAF4D34FC56A939E15FF20A2813C594EC4841FD6058D75DF334FF533F41D4A0604181C1C316746BDD772E81237BB30CB5EB88D4A740FE543DD920299E328EAF4F185CE3A0EBCBDC9BD106FBE2988FEC8855B98CD0298C33E2CCAAD0430E28D8441147AEED8E2E94E094633732D5380425EEB52ADF367B0AE7999EA68CC76183D9F6EB056F2FC3DF62DD384CF40554584E9AB815F2A077DE3377D5321BCEF94B49B16863D2547309F92E23C5E53B19A41CB269E4ECE255CD619406281CDC01DD30269512DF6ACC2F52F648B60DCB1C04614C8BD757D0BB8A8F283386206F43BF4A0FF332352CE624668B2F7A2E93116E96A7B2B63EFB986B3C6015F4D1912F1C25548AA3BC663894E76B7B2EB0AC7C17B791BF6711D796B9FEB5087EA955B8A894B8B82F11614D322A459D627E0B2C4122BE4B3957A8039245A0F490703F34C12B7E05D67E658D5B0A945277E160A3C047F88A6F638CA80BB930117A9B31070D12D4B150BD159461B1F3FFC22F07FD1060FD2FD0C83DA7F3B730A8E1372B5A05E85241CEDEC4AC6F5B3CA7EA8638D056E4773DA4C57B2E8C3341CBF2CDB498CEA77BE66F05C2BFEA0CDBC2C64153043FF5B8C42530832DCC9337C1B4322ED1CD4EC4668B0F4321F0F9D9147A5D6683C443EB93D34BDDC92A894676A03F4FA2BB94E5ED4A0D366D69F91E61716228F1DEE699A0D99A3AC086C03E595380640DB45D23EC55A6CD3AF165861D033AFC1AA1383B8043A1E958959BE842A5AB6D522122A9C9EA064DCEEAF850E45D0DCF5DD284634041867A2E4696C239C603A0A242D52691AEAD1889639FEBDA3EEA5F8D80B78941DC89A00A98AF4F29943352C4FAB3DD5F1E43C14A2B24DC8D667CB9C71DCEE70C406C749DBB5CC09F9B3EDA97AE25B8D36A525D5E29ECDFD4AB75124AD83E60011D4F9E1E0C46B625A5365865A5603AE573EA84461E58F39A12F86222A2D3CD03F6886FC1D7292BAB0DF653C8531742B9670E038F2B29518A017027D0038237E4A771C215927E996A92CE8082B7E43A704B1175756A5A46B52B5E40B3FD2F01BD040D68DB511E4CAC96E31240DBAC88D7477F33991AFC8F07E0346E6F416735D848B9CFE0A6AC9398A78FDD41E56AACFF7FD90C568BEFE59192EAF8B8DEF0326A62846AB897F1C3DFB03F1907860D41B0C46AD7278A95B872BFB3AD300F470972AF9CF47582B9285FFB3DCAB1623797B8C9E4CD79796C8D935C4EA61691D6543F9F0CB433C58B78736B65344CDED6C8C1F203E372436D596E3860A4F1D9DFDE20888A757C70702351C9CDAEA235C5450EC1D902A21F54E29D2A3B8422142ABEB05B30A193D8896DCF3D5AEC0130220D37E02B7DAD8279CF850DA888407AC79128CF12774244AC2128A913F0E7D990A7BC3E29CDCAA377C48EDB8987537F9BD31D44CEAF8522A03C99085BBB941D02DC98812E2A2230ED0A7B417A3EA6CAF4363C88DA684A8075310B1FC7A99E10686D825D6660FE69F92A142A43775D15BF05E3B1B49BE00425FF7630AADE1F974E42232F4BA3828BBDD1D3F722A02384C0AFA87398BB832C41A12EC2C427EE905A39C4DB21E147CD93CF7FD4F504A43C48F7D48A2060895688220863B68A4E31C54EF1133077FA283BA99F16E367FBECBD1B87ACD15F87795662F920650C7040779BF212CD15B518669FD3FAD3E1C3481D01C922767ADF50F8FC97781A35F8521D1E35EAFB7765D24735FEE804E7424766622BF7841D4890D2B59CDC90E85B20B8209BE6D9D0CF74F66938224131CCF6CDB11AA50F0B251645231C77655314A5FCBA7CB50CED9457C25D51A534FF4063D12B60AAD53ADE5E36B2CEDE7DA79E23AA7F8AAEE96384104D7719CE434D44FB0415301F8255EDD14633E8364C135A21BE0C3330ABBDFACA7D21AB536DC46E1C69A050CAF7C2BAF511F8E342DDA4B88967F9BE201984ED4C25636BA67803409095EAD39D717F58F63270B9DBDE9476C0DB7985785BE108DF457705F81A94DEEEC9C0C24575AB9AE92349E3A9343A8DACD4D6B583E84F6061EEA3ECB0D1AF8489AF1C0CA38AA9FC17BD8542FF726FF79289371A057BEF066E3131E160C10F898A29847376C1458889AD7BDB33C97D687D894185E1D0915137B198A7222463F8847C81251ED84F3F0A10893A4A8F5F67103694E03D10C47B32115FA26E863431E087A7311EE535924409B29F80C9246CEA2F73C81526551888F4922F00AC4913131891958DF5C8E4C510512E33132A16DD91FEEFDFDCD70655222A0515063E7FDFDB31C639EDAB0616E667E4235B01B5259E2BC3AED940B747B35D284C806967738AE79EAB7987728AE39938A51CBB3C554EE227221EF58DD4DF2BC024DDB8EB58C16EB5512255727B519E6B4677E44AE33BC5A4D2F0ECCB18E2BEEA55BAA3A7250E2D58DB30E644604AD71722021D6506AB58804B91DB93885CEB43DFA2DFE411B537C2C2C0B585AA68BEC3B802E2CF1ED8A6D25494B773ADCA8D05D4CE00D3B6C996869E6197B4F6EA3BAF19B0C2A29E5BD032D381C5B378744971025FCC1402E612317B5FB21BFD13AEFB6AABA1789CBDF7E53B9C768F2473CA1E18E60227664B97FCA0E9FDC7DD6CAC2FA56A58885435FC1D89F51995E052FB872F9F5F4693284EFB4F95EB4CCC7B378D592EF40AA4D6B069D81A20437D4F86E82CBDC683E41047BA72DCADE03C73AB4155016D87D52A00454B43DECE3B95254D0FCB8966DE792C6FB7F203B12D6115D79B6AF6751E63A9DE25953A3D3FABDE360039731FA092574174E0894533C797C0F49C9D0605AB3741739D98167907EBD96D3AF6D5E9612DB3CD223509BAD17828CDB91A3B4183F6E775C3E281BACC6E536BCAD2077761F6329AE44025D3A02E0C8C3D6F8BED5060F74C2CEC9B1CFAB21F4061371A85B4B3DB663E999037A8D0DCAF8761151530398553CAF7D4FFFA52980B181425316CB9A2369E2AB6FD45B5B58DB2A2E931119EFD8C06318611E736D537FD5C15ECF1EEE9E1589DA8BE858C9C49A30F6F775706B576F451C0B4C567BA3274724A669656C3847CDB6F9C51B6F7E2B9CCF13B0B7FB1CD90985E9EF0FB9E37C26CC7C258292307DC0A5A9BF2C00120F0BA6B0D2013C3392BD4AD08A5A87D32E1B97EE50ACE5ABFC41DA48A6445B0F13516A87DDF77319FF7479E30D0C53B34949AB07EE70B939F1FE236CB85A9C226C37CDE326EE9DDF1D7FA0A752B1C0F010DC27FE7D014AC26C0D3C19985B76384B5D7E602A24E960E77F21B25D87F0A991AFBB467861E4534C69760CF6E135BECD1097F0D1A4977DDEC50D5E69CABEC0F7467E88E1E4A6DC82FBFCE5EF71657B0A23BAFDDD48F6C4EE23AE12A17AD38CD1AC4143D8143CBE69DC8A515996A4E581BA759947429186AF11AB5183A85D5CEE21ECCE03E71E56777BCC80531970B14C1D4FE8670EDCC5CE8251BCDBE853DB443BD7DF0A19584A27D88E69D2BCDF6D7F5B0DD6885C742E66F31778A05D7C6F4700DD8BA55CF42700A2B57D1D6F73E4764239ECB47D3C9A5D07E0BFD2D970CBCFE865F8299D25833499B21F0B5695D1573896110D3BA76C2FF0345A49D5163C101F9229C73F7AA8A9C8BA07B12565BAA26AD216602519DB149FE612850E2C04A606DE484225F71E42BABBA86CA550AC02DBF0980F48F4A9775382168FA08B6072BFEAE389BB85C679D250B6E5BF162EB77A2F45B469816E712ABEE3E829323542C36087C61F9E4DF48116231888B159273D64E2253F9379ECF3B73667D82577EADD52C0E89AA99B6B373330F82584CAA3D590C7F8DF0173205BCC071F5265189880F7178623CB540D5B96D092B01C34A0CC65B9F0B58875F7A5491EE81CB2017C461C8E896BED96540B67E396A505A48A840BFDD4A24F61079B7A760D8326618BB2383746B2728408FC9F626B95B425A3C58549E3FB3D217656952EC03DB238F5F036DDC223BD46ADEC0AA97E34138B75C5A26B4EAD80515E0DD279786FAB3A083DE4DEF6B1448D28EB0EA0D13BDDCCC9D34B0488007B72B03541900CDB076F56F79231F3C2D678559B8E72A695F3929C036AA0CA432633DBCE906219B00E5D78FBE475DC11FD37AD3021C7D187271E4D43DF7FFAF13534E3D33D62DCA38C6CC7F26CAE5FDB473B496C112BE92E2CC429686452234A2CC88B9A6A8834EA7808D94A2E492DB5A251C6D956863EC1A4FABEAB829F0B64E3FAC774035B7CD1B9B9709F0C14B7141CDD0AA3D5F64461EC82A91774E8CB2E594674AAF2D2CA857668513D3644B2FB1C81D8BF6E16D76EDF5B4158CA96E09C38DF2A08BEC5A20E2EE012DD532C95751075EEB84B0BB0C21D3855B30FEE727698030B5EB7B1EA71A8F068DA70BE7B34133FF3EBAA963CB41FD96A9947A391D7B463DC9E3FCAF3ACEECCDBD765AA87648E70D031D23B4B0F05668C1F5A5E3D7FCAD5181A8BC2A0A0D167894E1593BBB88141CCD6791DE0CD9F2381912D5B180B484128C43448A5FB7B25894885DA7777F8D544B9664A1ADB37CFD2BF723AA0EF7986476857BF2FDA456E2EF1873C08DBBF179753B6D54337230330E98782D249CE4301035FFDD1CB110F487B63535EE8008B6DBBCD1859409D0E039BFA2C9613CCF6456D49ED654262C6DF90B1137CC699426130CF3CEE8F6C71DE5449B8551B6B1B2673C278BC34B92D4EB6F3906248B5766879786F2AA164C75D4C9EB263E067F1A82929BE8240585CB6772764065C207B8B07EBA6D8DA8D18C33AA659C3B4A0A3529E1012C3B63826289892386A4A765FDCEBD88673FDBA4D28BAD48763455B65877A422D569F320F59AF030014A7B909FACA152F65476071FC1ABEAA62C323140AB446D49CA841A57C5387331CE1089CE76F8E83038E5CCB44DF86539C67D43C92E92DE03BCA86F9EA1F505376CA029B7939812664E34EF13A8E74B322B2E9E130C151CF67732CF81F5743ED1FE999D6BC329199C4F3B3833262C6F037AF0ED6173BDBB2298795CB25C05FF15EC1FCC7D50DA48F1074AE29B402BC7A72022FB412A57FD83CA40F8C82DFB110854C6C687B9C383B189B971F1E36890E3478559A11CA0F49388997FA189EC7676976B41A0D71E016D6530B224B8BEC7C835406673FE10A5F40AFFFB59CA37CA36609B3044E128227EC1620FB25E4F14BCD3AA43A212E70E2C87E0CFBF4B2E9FEA70DC6C35624BA0"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"AviraFileAcl"="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
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avipbb]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avkmgr]
"Description"="Avira Manager Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avkmgr]
"Group"="Avira"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avnetflt]
"Description"="Avira WFP Network Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application\Avira Service Host]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.Systray.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.OE.Setup.Bundle.exe"="11001"
[HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira_en____fm.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Avira]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\avgnt.exe]
"Path"="C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\Avira.Systray.exe]
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\IntelliType Pro\AppSpecific\Avira.Systray.exe]
"Path"="C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"avira_en_av_5a36764ca748c__ws.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.Systray.exe"="11001"
[HKEY_USERS\S-1-5-21-1916800224-2560957495-3225600593-1001\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"Avira.OE.Setup.Bundle.exe"="11001"

====== Eind van Zoeken ======

Abraham54 · 8 mei 2018

We pakken het nu anders aan:

Waarschuwing: onderstaande bewerking is enkel voor deze computer bedoeld, het toepassen hiervan in een andere computer kan tot schade in Windows leiden.

We gaan

Farbar Recovery Scan Tool (FRST.exe) opnieuw gebruiken.

Open een nieuw kladblok (of anders: notepad) bestand, via "Start\Alle programma’s\Bureau-accessoires\Kladblok (of Notepad)".
Kopieer en plak de tekst in het code-venster vanaf het woord Code in het lege kladblokvenster.

Code:

start
CreateRestorePoint:

C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys
C:\WINDOWS\System32\DRIVERS\avdevprot.sys
C:\WINDOWS\System32\DRIVERS\avgntflt.sys
C:\WINDOWS\system32\DRIVERS\avipbb.sys
C:\WINDOWS\system32\DRIVERS\avkmgr.sys
C:\WINDOWS\system32\DRIVERS\avnetflt.sys
C:\WINDOWS\System32\Drivers\avusbflt.sys

EmptyTemp:
CloseProcesses:
cmd: ipconfig /flushdns
cmd: netsh winsock reset
end

Sla nu dit kladblokbestand in de dezelfde locatie waar ook FRST.exe aanwezig is op als Fixlist.txt

Farbar Recovery Scan Tool (FRST.exe) met de fixlist.txt gebruiken

Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op FRST.exe en kies voor "Als Administrator uitvoeren".
Als het programma wordt gestart, klik dan op Ja in de popup.
Druk op de Fix knop.
Na de fix wordt een logbestand - Fixlog.txt - in dezelfde locatie aangemaakt van waaruit FRST.exe is gestart.
Post de inhoud van dit logbestand in jouw volgende bericht.

Opgelost vergrendelingsscherm Windows 10 home

Elite lid

NCF Goeroe

Elite lid

Enthousiast

Senior

NCF Goeroe

NCF Goeroe

pc-aholic

Junior lid

Abraham54

Gast

Elite lid

Abraham54

Gast

Elite lid

Elite lid

Elite lid

Abraham54

Gast

Elite lid

Abraham54

Gast

Elite lid

Abraham54

Gast

Wij waarderen jouw privacy