Dit zijn de 2 bestanden:
Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 19-05.2019
Gestart door Theo (23-05-2019 20:52:15)
Gestart vanaf C:\Users\Theo\Desktop\programma
Windows 10 Home Versie 1803 17134.765 (X64) (2018-09-11 14:36:08)
Boot Modus: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2650061105-3536443594-2735580568-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2650061105-3536443594-2735580568-503 - Limited - Disabled)
Gast (S-1-5-21-2650061105-3536443594-2735580568-501 - Limited - Disabled)
Theo (S-1-5-21-2650061105-3536443594-2735580568-1000 - Administrator - Enabled) => C:\Users\Theo
WDAGUtilityAccount (S-1-5-21-2650061105-3536443594-2735580568-504 - Limited - Disabled)
==================== Security Center ========================
(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)
AV: KPN Veilig by F-Secure (Disabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: KPN Veilig by F-Secure (Disabled - Up to date) {31A9D001-F96D-024E-EACB-7693DE78B727}
==================== Geïnstalleerde programma's ======================
(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)
Adblock Plus voor IE (32-bit en 64-bit) (HKLM\...\{2B2310B1-FBC0-4933-8C73-1CBAD0D7CA28}) (Version: 1.6 - Eyeo GmbH)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
Easy Photo Scan (HKLM-x32\...\{89860B23-2202-433F-A751-AA16864CD9CB}) (Version: 1.00.0016 - Seiko Epson Corporation)
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{B1765501-59E8-4395-BF00-8A2C1F1FC1E0}) (Version: 3.10.0091 - Seiko Epson Corporation)
Epson Photo+ (HKLM-x32\...\{DA0C1EA8-166F-4EA0-9B1F-332588273C13}) (Version: 1.2.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation)
EPSON XP-630 Series Printer Uninstall (HKLM\...\EPSON XP-630 Series) (Version: - Seiko Epson Corporation)
EPSON-handleidingen (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.54.0.0 - Seiko Epson Corporation)
FotoQuelle Fotoservice 2.7 (HKLM-x32\...\FotoQuelle Fotoservice_is1) (Version: - )
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.51.713 - Digital Wave Ltd)
F-Secure Ultralight 1.1.24.0 (release) (HKLM-x32\...\{9FAE989F-A043-4017-B60F-9134E992BB55}) (Version: 1.1.24.0 - F-Secure Corporation) Hidden
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
KPN Veilig (HKLM-x32\...\{4DA7D88D-BAE1-4FC3-B268-B2E64E8334F1}) (Version: 17.6 - F-Secure Corporation)
Malwarebytes versie 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.11601.20204 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 (HKLM-x32\...\SharePointDesigner) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{4B4DF6E2-5E40-422B-82DD-205FD7E79226}) (Version: - Microsoft)
Microsoft OneDrive (HKU\S-1-5-21-2650061105-3536443594-2735580568-1000\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11601.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.11601.20204 - Microsoft Corporation) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.11.0 - Prolific Technology INC)
Printer EPSON XP-255 257 Series verwijderen (HKLM\...\EPSON XP-255 257 Series) (Version: - Seiko Epson Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Video Power (HKLM-x32\...\{17DB3734-EAB4-4717-954B-C860EE162FBA}) (Version: 1.0.24 - Video Power)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
web control version 3.0.5.9 (HKLM-x32\...\{F88ED86C-0010-4943-BA16-72E4184E31ED}_is1) (Version: 3.0.5.9 - )
Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22514 - Microsoft Corporation)
Packages:
=========
Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.15.0_neutral__d55gg7py3s0m0 [2019-05-01] (eyeo GmbH)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.139.500.0_x86__kgqvnymyfvs32 [2019-05-17] (king.com)
KPN iTV Online -> C:\Program Files\WindowsApps\89BE6D5D.KPNiTVOnline_4.2.1.0_x64__j9c080ve9enp0 [2016-08-06] (KPN B.V.)
Media Player -> C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2 [2016-11-27] (Digital Cloud Technologies Global)
Microsoft Telefoon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-08] (Microsoft Corporation)
Microsoft Telefoonassistent -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-14] (Microsoft Corporation)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x64__8wekyb3d8bbwe [2017-03-21] (Microsoft Platform Extensions)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x86__8wekyb3d8bbwe [2017-03-21] (Microsoft Platform Extensions)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-02-22] (Microsoft Corporation)
==================== Aangepaste CLSID (gefilterd): ==========================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\KPN Veilig\FsShellExtension64.dll [2019-03-25] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
==================== Snelkoppelingen & WMI ========================
(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)
ShortcutWithArgument: C:\Users\Theo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Persoon 2 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Geladen Modules (gefilterd) ==============
2014-02-11 06:08 - 2014-02-11 06:08 - 000817152 _____ () [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2015-11-04 16:43 - 2015-11-04 16:43 - 000214528 _____ () [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 003650560 _____ () [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2019-02-22 18:01 - 2019-02-22 18:01 - 000704512 _____ (Seiko Epson Corporation) [Bestand niet getekend] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll
2019-02-22 16:09 - 2019-02-22 16:09 - 000475136 _____ (Seiko Epson Corporation) [Bestand niet getekend] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll
2014-03-14 00:21 - 2011-04-20 04:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Bestand niet getekend] C:\WINDOWS\System32\E_ILMIJE.DLL
==================== Alternate Data Streams (gefilterd) =========
(Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.)
==================== Veilige Modus (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Bestandskoppeling (gefilterd) ===============
(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.)
==================== Internet Explorer vertrouwde/beperkte toegang ===============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.)
==================== Hosts inhoud: ===============================
(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)
2016-02-21 10:29 - 2017-03-13 12:41 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere gebieden ============================
(Momenteel is er geen automatische fix voor dit onderdeel.)
HKU\S-1-5-21-2650061105-3536443594-2735580568-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Theo\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.2.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.
==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==
Als een item is opgenomen in de fixlist, zal het worden verwijderd.
==================== Firewall regels (gefilterd) ===============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
FirewallRules: [{536CD858-416C-418F-BBEF-75ABE7E9A5A9}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe Geen bestand
FirewallRules: [{35FB012D-2A57-4456-93A2-1E1EAE373AE7}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe Geen bestand
FirewallRules: [{A468D659-2A2E-4328-9623-24F73186580B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe Geen bestand
FirewallRules: [{9379AABC-A30C-4D53-B712-89CDF47ACD05}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe Geen bestand
FirewallRules: [{95FFB1F8-05E5-4DBA-B426-F07FEF9828F9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe Geen bestand
FirewallRules: [{44F1A334-0791-4D0E-AF3A-DAC79907885A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe Geen bestand
FirewallRules: [{2663AF03-DAD8-498B-85D7-F525A72BA409}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe Geen bestand
FirewallRules: [{6104BB08-F4D1-4C37-A24F-5168F96E5026}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe Geen bestand
FirewallRules: [{567F8CFA-2BE7-48B8-B2DC-9770B9FF5311}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll Geen bestand
FirewallRules: [{A5ABA6AE-2662-4EB8-84F2-EC15C8C7D38A}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll Geen bestand
FirewallRules: [{9821012F-D3D7-4FEB-92D9-4B263C6AA695}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll Geen bestand
FirewallRules: [{B346A41F-A980-4A55-A475-67F0A519E03C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll Geen bestand
FirewallRules: [{08734E84-74FE-4A40-936F-90872AF149BF}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll Geen bestand
FirewallRules: [{FC30D020-6B87-4166-85DC-A54ABE09475B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftPlayer.dll Geen bestand
FirewallRules: [{5D047ADB-4384-4A2F-BEB1-EF104213436D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll Geen bestand
FirewallRules: [{4CD80FFC-B6DC-4A65-9EDF-287D7D6EC73D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftAC.dll Geen bestand
FirewallRules: [{35597455-A2F6-4308-B528-1258EBE2817C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll Geen bestand
FirewallRules: [{B1AD55AE-33C7-4D9F-BD3C-513BCB15B7F5}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDump.dll Geen bestand
FirewallRules: [{A485E6B3-719B-46DC-B723-3E8A9D671F4B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll Geen bestand
FirewallRules: [{2084E33D-0148-4017-A046-4A6E4C5F8319}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftSrv.dll Geen bestand
FirewallRules: [{2146D4B5-F0A4-4A12-93CB-890C20752CB9}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe Geen bestand
FirewallRules: [{393ABEBC-2A1F-4559-AE97-DF87E468CE34}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture\Video Download Capture.exe Geen bestand
FirewallRules: [{2430B48C-8D84-4C4D-B43A-FA8B2DA106D4}] => (Allow) C:\Windows\syswow64\muzapp.exe (Musiccity Co.Ltd.) [Bestand niet getekend]
FirewallRules: [{1CB391B1-9ADB-43D9-9B7F-575754C47106}] => (Allow) C:\Windows\syswow64\muzapp.exe (Musiccity Co.Ltd.) [Bestand niet getekend]
FirewallRules: [{F8624E2E-B159-4006-BF5D-AC1D579BEC1A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{724999F4-3AA3-44FF-BE2C-1A128B6B8A1C}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{3A08B158-81A2-4737-986C-C93EDDF6E37B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe Geen bestand
FirewallRules: [{0BC01063-C315-44EE-BAA8-80A622C801F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe Geen bestand
FirewallRules: [{837F1E61-7B50-4FB0-AA49-9E19B1683A43}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe Geen bestand
FirewallRules: [{11AEA265-EB3C-46FD-AC27-F96070C546F6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe Geen bestand
FirewallRules: [{2097F68A-00FB-4301-8819-B80BB4CC1ECB}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe Geen bestand
FirewallRules: [{12087442-5E9F-4B74-BDB7-C9D66CFDFB56}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe Geen bestand
FirewallRules: [{477883B5-861A-4D6D-B10E-C7CE8BF915EA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{387F1AF8-DB87-4F3A-A7C2-6DB160CE9840}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{35F208BF-448A-4BB9-A0C0-458DBBEC2FCD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A86F3470-D52F-40F7-991D-4F5F63611768}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe Geen bestand
FirewallRules: [UDP Query User{D3115CC3-86A6-430F-9259-017D520B3934}C:\program files (x86)\hip2p client\p2pclient.exe] => (Allow) C:\program files (x86)\hip2p client\p2pclient.exe Geen bestand
FirewallRules: [TCP Query User{62FE8E3D-4EF2-4F58-AC22-37FA9639C1F0}C:\program files (x86)\ip camera\ipcamclient.exe] => (Allow) C:\program files (x86)\ip camera\ipcamclient.exe Geen bestand
FirewallRules: [UDP Query User{21656E33-C09F-4653-8A08-9130049C20CB}C:\program files (x86)\ip camera\ipcamclient.exe] => (Allow) C:\program files (x86)\ip camera\ipcamclient.exe Geen bestand
FirewallRules: [TCP Query User{256CE376-C7EA-419A-A597-F84C63CDAB8C}C:\program files (x86)\ipcamsetup\ipcamera.exe] => (Allow) C:\program files (x86)\ipcamsetup\ipcamera.exe Geen bestand
FirewallRules: [UDP Query User{ADACEBF1-8E0B-41AC-8005-8D4090843AC1}C:\program files (x86)\ipcamsetup\ipcamera.exe] => (Allow) C:\program files (x86)\ipcamsetup\ipcamera.exe Geen bestand
FirewallRules: [TCP Query User{9A78F6A9-1F8E-4CAC-988E-ED00967201B1}C:\nieuwe map\ipcamclient.exe] => (Allow) C:\nieuwe map\ipcamclient.exe Geen bestand
FirewallRules: [UDP Query User{6A865EAD-7902-4A4B-A1F9-466A3851C364}C:\nieuwe map\ipcamclient.exe] => (Allow) C:\nieuwe map\ipcamclient.exe Geen bestand
FirewallRules: [TCP Query User{D1791FAF-5858-4D89-B808-C84BB64E17B0}C:\camera\p2pclient.exe] => (Allow) C:\camera\p2pclient.exe Geen bestand
FirewallRules: [UDP Query User{F3B3B717-245B-44FF-BBA5-3B824FDA0C5A}C:\camera\p2pclient.exe] => (Allow) C:\camera\p2pclient.exe Geen bestand
FirewallRules: [TCP Query User{D598A6E7-C391-4624-8C44-28CF45F96CAD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe Geen bestand
FirewallRules: [UDP Query User{AA083763-13ED-4A74-9090-04B5603F663F}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe Geen bestand
FirewallRules: [{28AC0175-18DA-4095-A288-E1CF5DE552C6}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe Geen bestand
FirewallRules: [{133B7B64-0A8C-42CD-967D-277A2D1CEEB1}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe Geen bestand
FirewallRules: [{69297FEE-2177-4CF2-AD62-93720874762D}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe Geen bestand
FirewallRules: [{71A1228E-A118-4C33-B364-5E347AC85DD4}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe Geen bestand
FirewallRules: [{83B38A20-4783-4EE9-8F41-3C1F5330234C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E6D7D3C5-9E96-432E-8D5A-BBA75F70123B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6727BFFE-8F9C-43F3-93CF-17BCBE1098E7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
==================== Herstelpunten =========================
AANDACHT: Systeemherstel is uitgeschakeld
==================== Defecte Apparaatbeheer Apparaten =============
==================== Eventlog fouten: =========================
Applicatiefouten:
==================
Error: (05/23/2019 08:45:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x2410
Starttijd van toepassing met fout: 0x01d51197a4830284
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 84d89d37-bb14-4aa1-98fd-90bf3c1b0cf7
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 08:45:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0xf98
Starttijd van toepassing met fout: 0x01d51197907c2b4b
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 6819d665-40a5-451a-a22d-405f40ce1d40
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 08:44:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x2bf0
Starttijd van toepassing met fout: 0x01d511973789a5e8
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 1cb2eaec-b797-44df-afce-ee1635df9563
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 08:42:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x2910
Starttijd van toepassing met fout: 0x01d51196f44aa78f
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 2ff50d6b-2d85-45fd-bac1-6e95e5ebfe5e
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 08:40:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x2a20
Starttijd van toepassing met fout: 0x01d51196c95ccc3c
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: 6b8e38f2-3915-4294-9439-cbcd9c42e484
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 08:39:35 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: THEO-HOOFDPC)
Description: brave hendrikbrave hendrik-2147467263
Error: (05/23/2019 08:38:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: Explorer.EXE, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x1c84
Starttijd van toepassing met fout: 0x01d51196c24b4f3b
Pad naar toepassing met fout: C:\WINDOWS\Explorer.EXE
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: c2b639b2-b95f-41d4-8a0b-6d1d1448b32e
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Error: (05/23/2019 07:20:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff
Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.753, tijdstempel: 0xcdfe5b92
Uitzonderingscode: 0xc06d007e
Foutmarge: 0x000000000003a388
Id van proces met fout: 0x24e4
Starttijd van toepassing met fout: 0x01d5118a4a310bdd
Pad naar toepassing met fout: C:\WINDOWS\explorer.exe
Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll
Rapport-id: a8a2a082-af65-48f2-9d5c-b6047d153119
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:
Systeemfouten:
=============
Error: (05/23/2019 07:23:21 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server {995C996E-D918-4A8C-A302-45719A6F4EA7} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (05/23/2019 07:23:21 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: De server {995C996E-D918-4A8C-A302-45719A6F4EA7} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (05/23/2019 06:55:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
Windows.SecurityCenter.WscDataProtection
en APPID
Niet beschikbaar
aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (05/23/2019 06:52:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x8024001e: Definitie-update voor Windows Defender Antivirus - KB2267602 (definitie 1.293.2199.0).
Error: (05/23/2019 06:48:49 PM) (Source: DCOM) (EventID: 10016) (User: THEO-HOOFDPC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
en APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
aan de gebruiker Theo-HoofdPC\Theo SID (S-1-5-21-2650061105-3536443594-2735580568-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (05/23/2019 06:48:46 PM) (Source: DCOM) (EventID: 10016) (User: THEO-HOOFDPC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
en APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
aan de gebruiker Theo-HoofdPC\Theo SID (S-1-5-21-2650061105-3536443594-2735580568-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.
Error: (05/23/2019 06:48:23 PM) (Source: DCOM) (EventID: 10010) (User: THEO-HOOFDPC)
Description: De server {D63B10C5-BB46-4990-A94F-E40B9D520160} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.
Error: (05/23/2019 11:22:46 AM) (Source: LsaSrv) (EventID: 6041) (User: )
Description: Het onderhandelen over een gemeenschappelijke protocolversie voor CredSSP-authenticatie bij TERMSRV/192.168.16.2 is mislukt. Door de externe host is versie 2 aangeboden, maar deze wordt niet toegestaan door Encryption Oracle-herstel.
Zie
https://go.microsoft.com/fwlink/?linkid=866660 voor meer informatie.
Windows Defender:
===================================
Date: 2018-12-12 14:50:45.506
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie: 1.283.413.0
Vorige handtekeningversie: 1.281.111.0
Bron update: Gebruiker
Type handtekening: AntiSpyware
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie: 1.1.15500.2
Vorige engineversie: 1.1.15500.2
Foutcode: 0x80004004
Foutbeschrijving: De bewerking is afgebroken
Date: 2018-12-12 14:50:45.505
Description:
Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen.
Nieuwe handtekeningversie: 1.283.413.0
Vorige handtekeningversie: 1.281.111.0
Bron update: Gebruiker
Type handtekening: AntiVirus
Type update: Volledig
Gebruiker: NT AUTHORITY\SYSTEM
Huidige engineversie: 1.1.15500.2
Vorige engineversie: 1.1.15500.2
Foutcode: 0x80004004
Foutbeschrijving: De bewerking is afgebroken
CodeIntegrity:
===================================
Date: 2019-05-23 11:33:21.222
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-23 10:06:37.742
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KPN Veilig\apps\Ultralight\ulcore\1558345349\fshook64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-11-14 16:04:44.645
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KPN Veilig\apps\Ultralight\ulcore\1542199162\fshook64.dll that did not meet the Store signing level requirements.
Date: 2018-11-14 16:04:44.640
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KPN Veilig\apps\Ultralight\ulcore\1542199162\fshook64.dll that did not meet the Store signing level requirements.
Date: 2018-11-14 16:04:44.639
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KPN Veilig\apps\Ultralight\ulcore\1542199162\fshook64.dll that did not meet the Store signing level requirements.
Date: 2018-11-14 16:04:44.251
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KPN Veilig\apps\Ultralight\ulcore\1542199162\fshook64.dll that did not meet the Microsoft signing level requirements.
==================== Geheugen info ===========================
BIOS: American Megatrends Inc. V2.2 07/15/2013
Motherboard: MSI FM2-A75MA-E35 (MS-7721)
Processor: AMD A6-6400K APU with Radeon(tm) HD Graphics
Percentage geheugen in gebruik: 33%
Totaal fysiek RAM-geheugen: 7375 MB
Beschikbaar fysiek RAM-geheugen: 4882.03 MB
Totaal Virtueel geheugen: 8527 MB
Beschikbaar Virtueel geheugen: 6097.98 MB
==================== Schijven ================================
Drive c: () (Fixed) (Total:118.17 GB) (Free:50.43 GB) NTFS
\\?\Volume{f0c67cb1-3b29-4c66-9fa4-9ec27bd5b391}\ () (Fixed) (Total:0.85 GB) (Free:0.34 GB) NTFS
\\?\Volume{0c1ef44f-8c2e-4fb6-a246-4e1f108244f8}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitietabel ==================
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 0001A5CF)
Partition: GPT.
==================== Einde van Addition.txt ============================
Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 19-05.2019
Gestart door Theo (Beheerder) op THEO-HOOFDPC (MSI MS-7721) (23-05-2019 20:50:44)
Gestart vanaf C:\Users\Theo\Desktop\programma
Geladen Profielen: Theo (Beschikbare Profielen: Theo)
Platform: Windows 10 Home Versie 1803 17134.765 (X64) Taal: Nederlands (Nederland)
Standaardbrowser: Edge
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool:
FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Processen (gefilterd) =================
(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fsulprothoster.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Register (gefilterd) ===========================
(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Run: [tsnp2uvc] => C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe [322048 2011-05-04] (Sonix Technology Co., Ltd.) [Bestand niet getekend]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1151872 2016-11-18] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2650061105-3536443594-2735580568-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-23] (Google LLC -> Google Inc.)
GroupPolicy: Restrictie ? <==== AANDACHT
==================== Geplande Taken (gefilterd) =============
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
Task: {1F40AA5F-98BB-46E3-9C5B-EFBDE7F34045} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1439360 2019-05-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E3BEF41-1B77-4C7F-853F-F1BA9C3F151E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-14] (Adobe Inc. -> Adobe)
Task: {2EC9BD3D-36A9-44EE-9C65-18C1128364B1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26197064 2019-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B4F13FE-EAC5-4AB2-A7AC-5FDFAA0C2854} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-14] (Adobe Inc. -> Adobe)
Task: {41D3C22D-6C70-4D4B-BD1E-1B01D579403E} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {5E845A37-E379-4AA2-B9A7-911FE9A7766D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6766A287-515E-40C5-B36B-8EC89418DFF1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-21] (Google Inc -> Google Inc.)
Task: {6B12D9BF-02C9-4939-974A-F05BF77C7960} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4381328 2019-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D14CEFD-A43A-4722-8F6E-DCA4A047F86E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4381328 2019-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {80EEC8B6-9042-4DA9-9239-5BE6C6C720EF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [132445408 2019-05-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {8838E71B-23EB-4A61-9EF9-706A1957F401} - System32\Tasks\{8DD42DFE-BA32-42E7-9A87-8EAB233DA471} => C:\WINDOWS\system32\pcalua.exe -a C:\PDW\xp_driver\install.exe -d C:\PDW\xp_driver
Task: {8C205797-112F-4E18-9374-55098C539B78} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-21] (Google Inc -> Google Inc.)
Task: {8F5D0D01-B749-4E68-9F85-522A7480D357} - System32\Tasks\EPSON XP-630 Series Update {23E3CA50-3F4C-4633-9767-B89C86790F6C} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9AA0E951-B898-4AB4-8A14-8AC1A69F1A10} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112664 2019-05-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A24A3951-8EBE-459A-82AF-D601C553E0B6} - System32\Tasks\EPSON XP-255 257 Series Update {7439C5B9-1875-4DA4-86B7-2D065B727E1D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVCE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {B931EF53-61F3-4BD8-9958-7FE9D2BFD199} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\KPN Veilig\fs_hotfix.exe [268744 2019-03-25] (F-Secure Corporation -> F-Secure Corporation)
Task: {BC467B00-0835-4528-A018-ACF13E8803CB} - System32\Tasks\EPSON XP-630 Series Update {FC96208C-3797-4060-89FA-94430C503328} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {C29A159A-1B62-4685-956F-923BE67B137F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112664 2019-05-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA851366-0AD0-46CE-9EB5-76EFF6B16B50} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26197064 2019-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {DED638DB-F9A2-4606-9995-438F71BBD5EE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1439360 2019-05-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1A54D33-47DD-464E-9B5E-38E7E94B2C93} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT
Task: {E5C1C924-B2CA-4F25-B02A-52DEE1BB1568} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2408496 2019-04-12] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {E6CF4D96-99D2-4BF9-8577-CB3863FC9655} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT
Task: {FC211996-FD68-4A6E-9272-3D5692E8072C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)
Task: C:\WINDOWS\Tasks\EPSON XP-255 257 Series Update {7439C5B9-1875-4DA4-86B7-2D065B727E1D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVCE.EXE:/EXE:{7439C5B9-1875-4DA4-86B7-2D065B727E1D} /F:UpdateWORKGROUP\THEO-HOOFDPC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-630 Series Update {23E3CA50-3F4C-4633-9767-B89C86790F6C}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE:/EXE:{23E3CA50-3F4C-4633-9767-B89C86790F6C} /F:UpdateWORKGROUP\THEO-HOOFDPC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-630 Series Update {FC96208C-3797-4060-89FA-94430C503328}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE:/EXE:{FC96208C-3797-4060-89FA-94430C503328} /F:UpdateWORKGROUP\THEO-HOOFDPC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (gefilterd) ====================
(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{c1d26cf2-d9ba-43a5-b6e7-e9215a234df3}: [DhcpNameServer] 192.168.2.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
www.google.com
HKU\S-1-5-21-2650061105-3536443594-2735580568-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://kpnvandaag.nl/
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\browser\install\fs_ie_https\fs_ie_https64.dll [2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc -> Google Inc.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\browser\install\fs_ie_https\fs_ie_https.dll [2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc -> Google Inc.)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2650061105-3536443594-2735580568-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc -> Google Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.15.0_neutral__d55gg7py3s0m0 [2019-05-01]
FireFox:
========
FF DefaultProfile: wdzieqai.default-1488880565222-1542788958440
FF ProfilePath: C:\Users\Theo\AppData\Roaming\Mozilla\Firefox\Profiles\wdzieqai.default-1488880565222-1542788958440 [2019-05-23]
FF Homepage: Mozilla\Firefox\Profiles\wdzieqai.default-1488880565222-1542788958440 -> hxxp://192.168.2.4/web/admin.html
FF HKLM\...\Firefox\Extensions: [
ols@f-secure.com] - C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\browser\install\fs_firefox_https\fs_firefox_https.xpi [2019-05-23]
FF HKLM-x32\...\Firefox\Extensions: [
ols@f-secure.com] - C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin-x32: @google.com/zxwebplugin -> C:\WINDOWS\system32\npzxwebplugin.dll [Geen bestand]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.kpnvandaag.nl/"
CHR Profile: C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default [2019-05-23]
CHR Extension: (Presentaties) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-16]
CHR Extension: (Flash Video Downloader) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2019-05-07]
CHR Extension: (Documenten) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-16]
CHR Extension: (Google Drive) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-16]
CHR Extension: (Video Downloader Plus) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\baejfnndpekpkaaancgpakjaengfpopk [2019-04-03]
CHR Extension: (YouTube) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-16]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-20]
CHR Extension: (Offline Documenten) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (AdBlock) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-22]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2019-02-19]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-23]
CHR Profile: C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-23]
CHR Profile: C:\Users\Theo\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-23]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade] - hxxps://clients2.google.com/service/update2/crx
==================== Services (gefilterd) ====================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [255472 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11146824 2019-05-08] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-07-14] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [681400 2018-12-24] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-11-13] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 fshoster; C:\Program Files (x86)\KPN Veilig\fshoster32.exe [209864 2019-03-25] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\KPN Veilig\fshoster32.exe [209864 2019-03-25] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fshoster64.exe [588416 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fshoster64.exe [588416 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fsorsp64.exe [101320 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fsulprothoster.exe [588416 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-05-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-05-23] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (gefilterd) ======================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
S3 amdhub30; C:\WINDOWS\System32\drivers\amdhub30.sys [108128 2013-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21648880 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674288 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 amdxhc; C:\WINDOWS\System32\drivers\amdxhc.sys [228448 2013-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [82600 2012-10-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [42664 2012-10-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-07] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-24] (DEV47 APPS -> Windows (R) Win 7 DDK provider)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fsulgk.sys [288120 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\KPN Veilig\Ultralight\ulcore\1558345349\fshs.sys [102776 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [65872 2019-05-23] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2019-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\KPN Veilig\Ultralight\nif\1558619842\fsni64.sys [108704 2019-05-23] (F-Secure Corporation -> F-Secure Corporation)
R3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129456 2017-08-24] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
R3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-01-02] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [51712 2018-04-12] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [191504 2015-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344544 2019-05-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60896 2019-05-23] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (gefilterd) ===================
(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)
==================== Een maand (aangemaakt) ========
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-05-23 20:43 - 2019-05-23 20:50 - 000000000 ____D C:\FRST
2019-05-23 20:40 - 2019-05-23 20:50 - 000000000 ____D C:\Users\Theo\Desktop\programma
2019-05-23 20:40 - 2019-05-23 20:40 - 002435072 _____ (Farbar) C:\Users\Theo\Downloads\FRST64.exe
2019-05-23 19:03 - 2019-05-23 19:03 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-23 18:58 - 2019-05-23 18:58 - 000065872 _____ C:\WINDOWS\system32\Drivers\fsbts.sys
2019-05-23 18:58 - 2019-05-23 18:58 - 000015296 _____ (F-Secure Corporation) C:\WINDOWS\system32\Drivers\fselms.sys
2019-05-23 18:58 - 2019-05-23 18:58 - 000001928 _____ C:\Users\Public\Desktop\KPN Veilig.lnk
2019-05-23 18:58 - 2019-05-23 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\F-Secure
2019-05-23 18:58 - 2019-05-23 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KPN Veilig
2019-05-23 11:44 - 2019-05-23 11:44 - 000000000 ___HD C:\$SysReset
2019-05-20 15:25 - 2019-05-20 15:25 - 000021370 _____ C:\Users\Theo\Desktop\brandweer Gelderland-Midden.txt
2019-05-19 10:33 - 2019-05-19 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office-hulpprogramma's
2019-05-15 13:41 - 2019-05-03 13:51 - 003613696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 13:41 - 2019-05-03 13:50 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 13:41 - 2019-05-03 13:28 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 13:41 - 2019-05-03 08:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 13:41 - 2019-05-03 08:33 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 13:41 - 2019-05-03 08:33 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 13:41 - 2019-05-03 08:33 - 000709720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-05-15 13:41 - 2019-05-03 08:32 - 000793640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-05-15 13:41 - 2019-05-03 08:32 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 13:41 - 2019-05-03 08:32 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 13:41 - 2019-05-03 08:31 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 13:41 - 2019-05-03 08:31 - 007519888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:41 - 2019-05-03 08:31 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 13:41 - 2019-05-03 08:31 - 002811192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 13:41 - 2019-05-03 08:31 - 002771256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 13:41 - 2019-05-03 08:31 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-05-15 13:41 - 2019-05-03 08:31 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-05-15 13:41 - 2019-05-03 08:19 - 006043712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 13:41 - 2019-05-03 08:18 - 006569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:41 - 2019-05-03 08:18 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 13:41 - 2019-05-03 08:18 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-05-15 13:41 - 2019-05-03 08:12 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 13:41 - 2019-05-03 08:10 - 022017024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 13:41 - 2019-05-03 08:05 - 022716416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 13:41 - 2019-05-03 08:02 - 019401216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 13:41 - 2019-05-03 08:02 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 13:41 - 2019-05-03 08:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 13:41 - 2019-05-03 08:00 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 13:41 - 2019-05-03 08:00 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 13:41 - 2019-05-03 07:59 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 13:41 - 2019-05-03 07:59 - 005788672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 13:41 - 2019-05-03 07:59 - 003710976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 13:41 - 2019-05-03 07:59 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-05-15 13:41 - 2019-05-03 07:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 13:41 - 2019-05-03 07:58 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 13:41 - 2019-05-03 07:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 13:41 - 2019-05-03 07:58 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 13:41 - 2019-05-03 07:57 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-05-15 13:41 - 2019-05-03 07:56 - 005350912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 13:41 - 2019-05-03 07:56 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 13:41 - 2019-05-03 07:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 13:41 - 2019-05-03 07:56 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-05-15 13:41 - 2019-05-03 07:55 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 13:41 - 2019-05-03 07:54 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-05-15 13:41 - 2019-05-03 07:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-05-15 13:41 - 2019-04-19 12:55 - 001634920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-15 13:41 - 2019-04-19 12:39 - 012754944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-15 13:41 - 2019-04-19 12:36 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-15 13:41 - 2019-04-19 11:44 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-15 13:41 - 2019-04-19 11:28 - 011940864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-15 13:41 - 2019-04-19 11:26 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-15 13:41 - 2019-04-19 07:06 - 002571632 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-15 13:41 - 2019-04-19 07:01 - 001982008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-15 13:41 - 2019-04-19 06:42 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-15 13:41 - 2019-04-19 06:39 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-05-15 13:41 - 2019-04-19 06:38 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-05-15 13:41 - 2019-04-19 06:38 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-15 13:41 - 2019-04-19 06:37 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-05-15 13:41 - 2019-04-19 06:36 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-15 13:41 - 2019-04-19 06:35 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-05-15 13:41 - 2019-04-19 06:35 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-05-15 13:40 - 2019-05-03 14:14 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 13:40 - 2019-05-03 14:13 - 001376472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 13:40 - 2019-05-03 14:13 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-05-15 13:40 - 2019-05-03 13:55 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 13:40 - 2019-05-03 13:54 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 13:40 - 2019-05-03 13:52 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 13:40 - 2019-05-03 13:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 13:40 - 2019-05-03 13:50 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 13:40 - 2019-05-03 13:49 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 13:40 - 2019-05-03 13:49 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 13:40 - 2019-05-03 13:49 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 13:40 - 2019-05-03 13:43 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 13:40 - 2019-05-03 13:43 - 000662328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-05-15 13:40 - 2019-05-03 13:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 13:40 - 2019-05-03 13:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 13:40 - 2019-05-03 13:28 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 13:40 - 2019-05-03 13:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 13:40 - 2019-05-03 13:26 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 13:40 - 2019-05-03 13:25 - 004055040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 13:40 - 2019-05-03 13:25 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 13:40 - 2019-05-03 08:43 - 000177128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 13:40 - 2019-05-03 08:34 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 13:40 - 2019-05-03 08:33 - 005625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-05-15 13:40 - 2019-05-03 08:33 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 13:40 - 2019-05-03 08:33 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 13:40 - 2019-05-03 08:33 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 13:40 - 2019-05-03 08:33 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 13:40 - 2019-05-03 08:32 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 13:40 - 2019-05-03 08:32 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 13:40 - 2019-05-03 08:32 - 000438984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 13:40 - 2019-05-03 08:32 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 13:40 - 2019-05-03 08:31 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 13:40 - 2019-05-03 08:31 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-15 13:40 - 2019-05-03 08:31 - 001141224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 13:40 - 2019-05-03 08:31 - 000983632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 13:40 - 2019-05-03 08:31 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 13:40 - 2019-05-03 08:31 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 13:40 - 2019-05-03 08:20 - 000434704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 13:40 - 2019-05-03 08:20 - 000384976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 13:40 - 2019-05-03 08:20 - 000192016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 13:40 - 2019-05-03 08:20 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 13:40 - 2019-05-03 08:19 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 13:40 - 2019-05-03 08:19 - 000056288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 13:40 - 2019-05-03 08:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 13:40 - 2019-05-03 08:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-05-15 13:40 - 2019-05-03 07:59 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 13:40 - 2019-05-03 07:59 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-05-15 13:40 - 2019-05-03 07:59 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 13:40 - 2019-05-03 07:58 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-05-15 13:40 - 2019-05-03 07:58 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-05-15 13:40 - 2019-05-03 07:58 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-05-15 13:40 - 2019-05-03 07:58 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 13:40 - 2019-05-03 07:57 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-05-15 13:40 - 2019-05-03 07:56 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 13:40 - 2019-05-03 07:55 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 13:40 - 2019-05-03 07:55 - 000659968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 13:40 - 2019-05-03 07:54 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-05-15 13:40 - 2019-05-03 07:54 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-05-15 13:40 - 2019-05-03 07:54 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-05-15 13:40 - 2019-05-03 07:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 13:40 - 2019-05-03 07:53 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 13:40 - 2019-05-03 07:53 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 13:40 - 2019-05-03 07:53 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 13:40 - 2019-05-03 06:38 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-05-15 13:40 - 2019-04-23 09:13 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-05-15 13:40 - 2019-04-23 08:14 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-05-15 13:40 - 2019-04-19 12:54 - 000720200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-15 13:40 - 2019-04-19 12:40 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-05-15 13:40 - 2019-04-19 12:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-05-15 13:40 - 2019-04-19 12:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-05-15 13:40 - 2019-04-19 12:34 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-05-15 13:40 - 2019-04-19 11:37 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-15 13:40 - 2019-04-19 11:30 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-05-15 13:40 - 2019-04-19 11:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-05-15 13:40 - 2019-04-19 07:07 - 000985400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-05-15 13:40 - 2019-04-19 07:06 - 000798520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-05-15 13:40 - 2019-04-19 07:06 - 000713264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-05-15 13:40 - 2019-04-19 07:06 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-05-15 13:40 - 2019-04-19 07:06 - 000274232 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-15 13:40 - 2019-04-19 07:02 - 000831800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-05-15 13:40 - 2019-04-19 07:01 - 000581592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-05-15 13:40 - 2019-04-19 07:01 - 000576016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-05-15 13:40 - 2019-04-19 07:01 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-05-15 13:40 - 2019-04-19 06:43 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-15 13:40 - 2019-04-19 06:41 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-05-15 13:40 - 2019-04-19 06:41 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-05-15 13:40 - 2019-04-19 06:40 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-05-15 13:40 - 2019-04-19 06:40 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-15 13:40 - 2019-04-19 06:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-05-15 13:40 - 2019-04-19 06:40 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-05-15 13:40 - 2019-04-19 06:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-05-15 13:40 - 2019-04-19 06:39 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-15 13:40 - 2019-04-19 06:39 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-15 13:40 - 2019-04-19 06:39 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-05-15 13:40 - 2019-04-19 06:39 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-15 13:40 - 2019-04-19 06:39 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-05-15 13:40 - 2019-04-19 06:38 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-15 13:40 - 2019-04-19 06:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-05-15 13:40 - 2019-04-19 06:38 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-15 13:40 - 2019-04-19 06:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-15 13:40 - 2019-04-19 06:37 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-05-15 13:40 - 2019-04-19 06:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 001938944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-15 13:40 - 2019-04-19 06:35 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-05-15 13:40 - 2019-04-19 06:34 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-05-15 13:40 - 2019-04-19 06:34 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-15 13:40 - 2019-04-19 06:34 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-05-15 13:40 - 2019-04-19 06:34 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-15 13:40 - 2019-04-19 06:34 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-05-15 13:40 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-15 13:40 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\system32\locale.nls
2019-05-15 13:40 - 2019-04-09 03:48 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 13:40 - 2019-04-09 03:48 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 13:40 - 2019-04-09 03:48 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 13:40 - 2019-04-09 03:48 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 13:40 - 2019-04-09 03:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-14 15:10 - 2019-05-19 10:33 - 000002536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype voor Bedrijven.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-05-14 15:10 - 2019-05-19 10:33 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-05-07 15:34 - 2019-05-07 15:34 - 000117460 _____ C:\Users\Theo\Downloads\Submissive Mature Wife Fucked by Strapon and Her Ex... nl (1).ttf
2019-05-07 15:33 - 2019-05-07 15:33 - 000117460 _____ C:\Users\Theo\Downloads\Submissive Mature Wife Fucked by Strapon and Her Ex... nl.ttf
==================== Een maand (gewijzigd) ========
(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)
2019-05-23 20:49 - 2018-08-11 09:30 - 000000000 ____D C:\Users\Theo\AppData\Local\F-Secure
2019-05-23 20:42 - 2018-12-01 12:20 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-23 19:04 - 2018-12-27 11:21 - 000000000 ____D C:\Users\Theo\AppData\Roaming\MPC-HC
2019-05-23 19:04 - 2018-09-11 15:42 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-23 19:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-05-23 19:04 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-05-23 19:03 - 2018-08-11 09:30 - 000000000 ____D C:\ProgramData\F-Secure
2019-05-23 19:03 - 2017-10-03 10:49 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-23 19:03 - 2017-10-03 10:49 - 000000000 ____D C:\Program Files\CCleaner
2019-05-23 18:58 - 2018-08-11 09:30 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-05-23 18:58 - 2018-08-11 09:30 - 000000000 ____D C:\Program Files (x86)\KPN Veilig
2019-05-23 18:58 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-05-23 18:57 - 2018-09-11 16:36 - 001767124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-23 18:57 - 2018-04-12 18:01 - 000784122 _____ C:\WINDOWS\system32\perfh013.dat
2019-05-23 18:57 - 2018-04-12 18:01 - 000153476 _____ C:\WINDOWS\system32\perfc013.dat
2019-05-23 18:55 - 2018-04-08 09:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-05-23 18:54 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-05-23 18:53 - 2018-09-11 16:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-23 18:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-23 18:52 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-05-23 18:52 - 2016-02-21 10:38 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-05-23 18:49 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-23 11:35 - 2018-09-11 16:35 - 000003372 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2650061105-3536443594-2735580568-1000
2019-05-23 11:35 - 2018-09-11 16:29 - 000002366 _____ C:\Users\Theo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-23 11:35 - 2015-08-21 11:12 - 000000000 ___RD C:\Users\Theo\OneDrive
2019-05-23 11:33 - 2015-11-16 11:14 - 000000000 ____D C:\Users\Theo\Desktop\PDW gegevens
2019-05-23 11:23 - 2014-03-11 13:06 - 000002280 ____H C:\Users\Theo\Documents\Default.rdp
2019-05-23 11:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2019-05-23 10:06 - 2018-09-11 16:35 - 000004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9D955542-0817-4F54-84BC-D83F2A6D8267}
2019-05-23 10:04 - 2018-11-22 11:00 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-22 15:48 - 2014-03-11 16:48 - 000000000 ____D C:\Logbrowser
2019-05-20 11:14 - 2018-09-11 16:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-20 10:20 - 2016-01-22 12:42 - 000000000 ____D C:\Users\Theo\Desktop\Gemeente
2019-05-19 10:32 - 2017-05-12 10:35 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-05-17 15:33 - 2015-08-21 11:09 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-05-17 10:34 - 2018-11-16 16:34 - 000000000 ____D C:\Program Files\rempl
2019-05-16 10:58 - 2019-03-26 16:52 - 000011128 _____ C:\Users\Theo\Desktop\KOSTEN ZIEKTE.xlsx
2019-05-16 09:36 - 2018-09-11 16:35 - 000003576 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-16 09:36 - 2018-09-11 16:35 - 000003452 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-16 09:30 - 2018-09-11 16:26 - 000416168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 14:21 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 14:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-15 14:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-15 14:21 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 13:44 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 13:40 - 2016-02-22 15:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-15 13:37 - 2016-02-22 15:26 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-14 16:05 - 2019-03-05 16:53 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-05-14 11:35 - 2018-09-11 16:35 - 000004690 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-14 11:35 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-05-14 11:35 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-05-04 01:53 - 2019-02-13 11:26 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-04 01:53 - 2019-02-13 11:26 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-01 11:11 - 2018-04-12 16:24 - 000000000 ____D C:\Users\Theo\AppData\Local\Packages
==================== Bestanden in de root van sommige mappen =======
2017-05-14 09:46 - 2018-03-29 20:05 - 000032252 _____ () C:\Users\Theo\AppData\Roaming\Door komma's gescheiden waarden.ADR
2017-05-14 10:42 - 2017-05-14 11:50 - 000016401 _____ () C:\Users\Theo\AppData\Roaming\Door komma's gescheiden waarden.EML
2016-02-21 11:59 - 2016-08-06 10:56 - 000001658 _____ () C:\Users\Theo\AppData\Roaming\mdbu.bin
2017-12-18 11:31 - 2017-12-18 11:31 - 000000017 _____ () C:\Users\Theo\AppData\Local\resmon.resmoncfg
==================== SigCheck ===============================
(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)
==================== Einde van FRST.txt ============================