Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 16-10-2016 Gestart door Pol (Beheerder) op ANPOKA-HP (25-10-2016 12:48:28) Gestart vanaf C:\Users\Pol\Desktop Geladen Profielen: Pol (Beschikbare Profielen: Pol & DefaultAppPool) Platform: Microsoft Windows 10 Home Versie 1511 (X86) Taal: Nederlands (Nederland) Internet Explorer Versie 11 (Standaardbrowser: IE) Boot Modus: Normal Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processen (gefilterd) ================= (Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.) (IBM Corp.) C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe (IDT, Inc.) C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9b219d80a8843bf8\stacsv.exe (Andrea Electronics Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9b219d80a8843bf8\AEstSrv.exe (LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe () C:\Program Files\OpenEdge\bin\admsrvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (iolo technologies, LLC) C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe (pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe (Symantec Corporation) C:\Program Files\Norton Security\Engine\22.8.0.50\ns.exe (© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe (pdfforge GmbH) C:\Program Files\PDF Architect 3\creator-ws.exe () C:\Program Files\Photodex\ProShow Gold\scsiaccess.exe (Sun Microsystems, Inc.) C:\Program Files\OpenEdge\jre\bin\java.exe (Sun Microsystems, Inc.) C:\Program Files\OpenEdge\jre\bin\java.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\WINDOWS\System32\CompatTelRunner.exe (Microsoft Corporation) C:\WINDOWS\System32\CompatTelRunner.exe (Symantec Corporation) C:\Program Files\Norton Security\Engine\22.8.0.50\ns.exe (IBM Corp.) C:\Program Files\Trusteer\Rapport\bin\RapportService.exe (Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Isabel SA/NV) C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Dropbox, Inc.) C:\Users\Pol\AppData\Local\Dropbox\Update\DropboxUpdate.exe (iolo technologies, LLC) C:\Program Files\iolo\System Mechanic\LiveBoost.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe (4Team Corporation) C:\Program Files\4Team Corporation\Sync2\Sync2.exe () C:\Users\Pol\AppData\Roaming\Browser-Security\s768.exe (Dropbox, Inc.) C:\Users\Pol\AppData\Roaming\Dropbox\bin\Dropbox.exe (Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Corporation) C:\WINDOWS\System32\wermgr.exe ==================== Register (gefilterd) ==================== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1791272 2010-06-04] (Synaptics Incorporated) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1425208 2012-09-20] (Logitech, Inc.) HKLM\...\Run: [IsaKbcCertUpdate] => C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe [1085528 2012-10-15] (Isabel SA/NV) HKLM\...\Run: [iolo Startup] => C:\Program Files\iolo\Common\Lib\ioloLManager.exe [4536120 2015-07-24] (iolo technologies, LLC) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-12-17] (Apple Inc.) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824 2016-09-16] (Adobe Systems Incorporated) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [Dropbox Update] => C:\Users\Pol\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [GoogleChromeAutoLaunch_579742569BC839997C43F7836E24B15F] => C:\Program Files\Google\Chrome\Application\chrome.exe [966760 2016-09-25] (Google Inc.) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [Google Update] => C:\Users\Pol\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [MusicManager] => C:\Users\Pol\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7643136 2015-11-17] (Google Inc.) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [Sync2] => C:\Program Files\4Team Corporation\Sync2\Sync2.exe [5174248 2016-05-31] (4Team Corporation) HKU\S-1-5-21-3740741272-41367026-2587978378-1001\...\Run: [safe_urls768] => C:\Users\Pol\AppData\Roaming\Browser-Security\s768.exe [2548944 2016-06-22] () ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Pol\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Pol\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Pol\AppData\Roaming\Dropbox\bin\DropboxExt.65536.dll [2016-10-10] (Dropbox, Inc.) Startup: C:\Users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-10-14] ShortcutTarget: Dropbox.lnk -> C:\Users\Pol\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk [2016-10-25] ShortcutTarget: Inktwaarschuwingen controleren - HP Deskjet 3050A J611 series (netwerk).lnk -> C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.) BootExecute: autocheck autochk * ==================== Internet (gefilterd) ==================== (Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.) Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 195.130.131.1 195.130.130.1 Tcpip\..\Interfaces\{a2d233a5-dad2-4dde-ae26-26fd1a9bddfe}: [DhcpNameServer] 195.130.131.1 195.130.130.1 Tcpip\..\Interfaces\{f1322002-b6f0-4527-901c-5fb40f3f4cd1}: [DhcpNameServer] 195.130.130.9 195.130.131.9 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKU\S-1-5-21-3740741272-41367026-2587978378-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.standaard.be/ HKU\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}&rlz=1I7ADRA_nlBE436 SearchScopes: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}&rlz=1I7ADRA_nlBE436 SearchScopes: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}&rlz=1I7ADRA_nlBE436 SearchScopes: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000&geo=BE&ver=22&locale=nl_BE&guid=70949954-C55D-11DF-BD1D-70F3952F877C&doi=2016-09-01&gct=kwd&qsrc=2869 BHO: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files\PDF Architect 3\creator-ie-helper.dll [2015-04-24] (pdfforge GmbH) BHO: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files\PDF Architect 4\creator-ie-helper.dll [2016-05-04] (pdfforge GmbH) BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-28] (Oracle Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) BHO: Internet Panel -> {CE7C3CF0-4B15-11D1-ABED-709549C10000} -> C:\Program Files\NetPanel\IEHelper.dll [2016-05-17] (Gemius) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-28] (Oracle Corporation) BHO: Geen Naam -> {E6E66045-E911-4C01-961D-42487CE12089} -> C:\Users\Pol\AppData\LocalLow\Browser-Security\safe_url.dll [2016-06-22] () Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) Toolbar: HKLM - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files\PDF Architect 3\creator-ie-plugin.dll [2015-04-24] (pdfforge GmbH) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) Toolbar: HKLM - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files\PDF Architect 4\creator-ie-plugin.dll [2016-05-04] (pdfforge GmbH) Toolbar: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation) Toolbar: HKU\S-1-5-21-3740741272-41367026-2587978378-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-24] (Google Inc.) FireFox: ======== FF ProfilePath: C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default [2016-10-13] FF user.js: detected! => C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default\user.js [2016-10-13] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\0pkevk53.default -> Bing FF DefaultSearchUrl: Mozilla\Firefox\Profiles\0pkevk53.default -> hxxp://www.google.com/search?btnG=Google+Search&q= FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\0pkevk53.default -> Google FF SelectedSearchEngine: Mozilla\Firefox\Profiles\0pkevk53.default -> Bing FF Keyword.URL: Mozilla\Firefox\Profiles\0pkevk53.default -> hxxp://www.google.com/search?btnG=Google+Search&q= FF NetworkProxy: Mozilla\Firefox\Profiles\0pkevk53.default -> type", 0 FF Extension: (Belgium eID) - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2016-05-24] FF HKLM\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFAddon FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFAddon [2016-10-16] FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-07-12] [niet getekend] FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw.dll [2011-06-10] (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin: @canon.com/MycameraPlugin -> C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-28] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-28] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] ( ) FF Plugin: @photodex.com/PhotodexPresenter -> C:\Program Files\Photodex Presenter\npPxPlay.dll [2014-02-05] ( ) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-05] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-05] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) FF Plugin: PDF Architect 3 -> C:\Program Files\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH) FF Plugin HKU\S-1-5-21-3740741272-41367026-2587978378-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Pol\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-03-20] (Citrix Online) FF Plugin HKU\S-1-5-21-3740741272-41367026-2587978378-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Pol\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-10] (Google Inc.) FF Plugin HKU\S-1-5-21-3740741272-41367026-2587978378-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Pol\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-10] (Google Inc.) FF Plugin HKU\S-1-5-21-3740741272-41367026-2587978378-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Pol\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Geen bestand] FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-12-06] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-12-06] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-12-06] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-12-06] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-12-06] (Apple Inc.) Chrome: ======= CHR Profile: C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default [2016-10-25] CHR Extension: (Rapport) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2016-05-07] CHR Extension: (Norton Security Toolbar) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-09-27] CHR Extension: (Norton Identity Safe) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-05-07] CHR Extension: (Netpanel study) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\kegdldmohomdaelnepdpbkdhfemobdgl [2016-07-28] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-07] CHR Extension: (Chrome Media Router) - C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-27] CHR Profile: C:\Users\Pol\AppData\Local\Google\Chrome\User Data\Guest Profile [2015-07-09] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.8.0.50\Exts\Chrome.crx [2016-09-23] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKU\.DEFAULT\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3740741272-41367026-2587978378-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3740741272-41367026-2587978378-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kegdldmohomdaelnepdpbkdhfemobdgl] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR Extension: (Onderzoek CIM Internet bereikstudie) - C:\Users\Pol\AppData\Roaming\Opera Software\Opera Stable\Extensions\ojedjnlojkfjbmjlpknfclknchaenlpm [2016-05-17] ==================== Services (gefilterd) ==================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S4 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) R2 AdminService10.2B; C:\Program Files\OpenEdge\bin\AdmSrvc.exe [28672 2009-12-15] () [Bestand niet getekend] R2 AESTFilters; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9b219d80a8843bf8\aestsrv.exe [81920 2009-03-03] (Andrea Electronics Corporation) R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation) S4 CLHNServiceForPowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [83240 2011-09-14] () S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [75048 2011-10-12] (CyberLink) S4 CyberLink PowerDVD 11.0 Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [292136 2011-10-12] (CyberLink) S4 hpHotkeyMonitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [265272 2010-01-28] (Hewlett-Packard Company) R2 ioloSystemService; C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [4682040 2015-07-24] (iolo technologies, LLC) S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-01-22] (Hewlett-Packard Company) [Bestand niet getekend] R2 NS; C:\Program Files\Norton Security\Engine\22.8.0.50\NS.exe [289080 2016-09-24] (Symantec Corporation) S3 PDF Architect 3; C:\Program Files\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH) S3 PDF Architect 3 CrashHandler; C:\Program Files\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH) R2 PDF Architect 3 Creator; C:\Program Files\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH) S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2236640 2016-05-04] (pdfforge GmbH) S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [970464 2016-05-04] (pdfforge GmbH) R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [772832 2016-05-04] (pdfforge GmbH) R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.) S4 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH) S4 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH) R2 RapportMgmtService; C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [2387952 2016-10-06] (IBM Corp.) R2 ScsiAccess; C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe [186760 2014-02-05] () R2 STacSV; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_x86_9b219d80a8843bf8\STacSV.exe [229458 2010-01-29] (IDT, Inc.) S4 Symantec RemoteAssist; C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe [394704 2008-02-01] (Symantec, Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-09-07] (Microsoft Corporation) ===================== Drivers (gefilterd) ====================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [72376 2015-08-19] (Advanced Card Systems Ltd.) S3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.) R1 BHDrvx86; C:\Program Files\Norton Security\NortonData\22.5.2.15\Definitions\BASHDefs\20161019.001\BHDrvx86.sys [1334008 2016-08-18] (Symantec Corporation) R1 ccSet_NS; C:\WINDOWS\system32\drivers\NS\1608000.032\ccSetx86.sys [137456 2016-06-02] (Symantec Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [107648 2016-07-22] (Samsung Electronics Co., Ltd.) R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [388824 2016-10-04] (Symantec Corporation) R1 ElRawDisk; C:\windows\system32\drivers\ElRawDsk.sys [26248 2012-10-18] (EldoS Corporation) R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [124632 2016-10-04] (Symantec Corporation) S3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Bestand niet getekend] R0 iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [527344 2013-03-05] (Intel Corporation) R1 IDSVix86; C:\Program Files\Norton Security\NortonData\22.5.2.15\Definitions\IPSDefs\20161024.001\IDSvix86.sys [768728 2016-09-27] (Symantec Corporation) S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-07-06] (Malwarebytes Corporation) R2 ntk_PowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [71664 2011-09-14] (Cyberlink Corp.) R2 PDFsFilter; C:\WINDOWS\System32\DRIVERS\PDFsFilter.sys [69016 2015-07-24] (Raxco Software, Inc.) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [17160 2015-03-05] () S3 pwdspio; C:\windows\system32\pwdspio.sys [13064 2015-03-05] () R1 RapportCerberus_1609053; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_1609053.sys [775592 2016-09-21] (IBM Corp.) R1 RapportEI; C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys [327728 2016-10-06] (IBM Corp.) R0 RapportHades; C:\WINDOWS\System32\Drivers\RapportHades.sys [100912 2016-10-06] (IBM Corp.) R0 RapportKELL; C:\WINDOWS\System32\Drivers\RapportKELL.sys [256520 2016-10-06] (IBM Corp.) R1 RapportPG; C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys [406800 2016-10-06] (IBM Corp.) R1 RawDisk3; C:\windows\system32\drivers\rawdsk3.sys [28256 2014-10-23] (EldoS Corporation) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek ) R3 SRTSP; C:\WINDOWS\System32\Drivers\NS\1608000.032\SRTSP.SYS [634096 2016-09-23] (Symantec Corporation) R1 SRTSPX; C:\WINDOWS\system32\drivers\NS\1608000.032\SRTSPX.SYS [43248 2016-09-23] (Symantec Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [146048 2016-07-22] (Samsung Electronics Co., Ltd.) R0 SymEFASI; C:\WINDOWS\System32\drivers\NS\1608000.032\SYMEFASI.SYS [1291992 2016-09-23] (Symantec Corporation) S0 SymELAM; C:\WINDOWS\System32\drivers\NS\1608000.032\SYMELAM.SYS [22144 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT.SYS [87792 2016-10-16] (Symantec Corporation) R1 SymIRON; C:\WINDOWS\system32\drivers\NS\1608000.032\Ironx86.SYS [229616 2016-09-23] (Symantec Corporation) R1 SymNetS; C:\WINDOWS\System32\Drivers\NS\1608000.032\SYMNETS.SYS [423640 2016-09-23] (Symantec Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation) R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation) R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [77296 2011-09-16] (CyberLink Corp.) U3 idsvc; geen ImagePath S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160703.001\NAVENG.SYS [X] S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.5.2.15\Definitions\SDSDefs\20160703.001\NAVEX15.SYS [X] U3 wpcsvc; geen ImagePath ==================== NetSvcs (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)