Scanresultaten van Farbar Recovery Scan Tool (FRST) (x86) Versie: 23-02-2017 01
Gestart door lionel (Beheerder) op PC_VAN_LIONEL (23-02-2017 20:11:50)
Gestart vanaf C:\Users\lionel\Downloads
Geladen Profielen: lionel (Beschikbare Profielen: lionel & UpdatusUser)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) Taal: Nederlands (Nederland)
Internet Explorer Versie 9 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Sitecom\WiFi USB adapter N300 Driver and Utility\RtlService.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Realtek Semiconductor Corp.) C:\Program Files\Sitecom\WiFi USB adapter N300 Driver and Utility\RtWLan.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\Dropbox\Client\QtWebEngineProcess.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220944 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [26781320 2017-02-21] (Dropbox, Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220944 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-4210861826-744597554-2720867244-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.14.0.dll [2017-02-21] (Dropbox, Inc.)
BootExecute: autocheck autochk *  
GroupPolicyUsers\S-1-5-21-4210861826-744597554-2720867244-1001\User: Restrictie <======= AANDACHT

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 195.130.130.5 195.130.131.5
Tcpip\..\Interfaces\{8AF40A16-027B-4878-8BC7-F95AF2921CA8}: [DhcpNameServer] 195.130.131.133 195.130.130.5
Tcpip\..\Interfaces\{C715DE58-C22B-43FB-9CE1-F538267CB188}: [DhcpNameServer] 195.130.130.5 195.130.131.5
Tcpip\..\Interfaces\{DD8CB540-D47F-43F6-852C-90CC650CE8FB}: [DhcpNameServer] 195.130.130.5 195.130.131.5

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <======= AANDACHT
HKU\S-1-5-21-4210861826-744597554-2720867244-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/nl-be/?ocid=iehp
SearchScopes: HKU\S-1-5-21-4210861826-744597554-2720867244-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4210861826-744597554-2720867244-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4210861826-744597554-2720867244-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-23] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-23] (Oracle Corporation)
DPF: {CAFEEFAC-0018-0000-0025-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_25-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_25-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\Skype4COM.dll [2007-02-07] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\lionel\AppData\Roaming\TomTom\HOME\Profiles\pvqn3gcl.default [2016-01-30]
FF Extension: (Map status indicator) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2015-05-15] [niet getekend]
FF ProfilePath: C:\Users\lionel\AppData\Roaming\Mozilla\Firefox\Profiles\qegsiy1g.default-1484818492473 [2017-02-23]
FF Homepage: Mozilla\Firefox\Profiles\qegsiy1g.default-1484818492473 -> about:home
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\lionel\AppData\Roaming\Mozilla\Firefox\Profiles\qegsiy1g.default-1484818492473\features\{6567523a-37cd-497e-8f24-2b5878ed1471}\disableSHA1rollout@mozilla.org.xpi [2017-02-17]
FF Extension: (Belgium eID) - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2017-01-29] [niet getekend]
FF HKLM\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-02-06] [niet getekend]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-14] ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2013-07-24] (RocketLife, LLP)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4210861826-744597554-2720867244-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\lionel\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 AdobeActiveFileMonitor9.0; C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [169408 2010-09-30] (Adobe Systems Incorporated)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [4154016 2017-01-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [935184 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [603288 2017-01-09] (AVG Technologies CZ, s.r.o.)
S3 BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2008-03-19] ()
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-19] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-19] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [40264 2017-02-09] (Dropbox, Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Bestand niet getekend]
R2 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [1552680 2007-06-25] (Nero AG)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-02-26] (Hewlett-Packard Company) [Bestand niet getekend]
R2 RealtekCU; C:\Program Files\Sitecom\WiFi USB adapter N300 Driver and Utility\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [Bestand niet getekend]
S3 Start BT in service; C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2008-03-19] ()
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
S2 AntiVirMailService; "C:\Program Files\Avira\Antivirus\avmailc.exe" [X]
S2 AntiVirSchedulerService; "C:\Program Files\Avira\Antivirus\sched.exe" [X]
S2 AntiVirService; "C:\Program Files\Avira\Antivirus\avguard.exe" [X]
S2 AntiVirWebService; "C:\Program Files\Avira\Antivirus\AVWEBGRD.EXE" [X]

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usbxp.sys [24832 2004-04-30] (Advanced Card Systems Ltd)
R1 AsIO; C:\Windows\System32\drivers\AsIO.sys [12400 2013-06-24] ()
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [134912 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [259328 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [207616 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [244992 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [287008 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [197376 2016-09-26] (AVG Technologies CZ, s.r.o.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [115600 2016-07-27] (Avira Operations GmbH & Co. KG)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [47360 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231680 2016-07-27] (AVG Technologies CZ, s.r.o.)
R0 avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [65280 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [140272 2016-07-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-12-03] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [34312 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [27656 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [18320 2007-03-05] (IVT Corporation.)
R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [38920 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [20880 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [35600 2007-03-05] (IVT Corporation.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2016-02-07] (Glarysoft Ltd)
S3 HPKBCCID; C:\Windows\System32\DRIVERS\HPKBCCID.sys [48000 2012-03-05] (Hewlett-Packard Company)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-12-08] (REALiX(tm))
R4 InCDfs; C:\Windows\System32\drivers\InCDFs.sys [119080 2007-06-25] (Nero AG)
R1 InCDPass; C:\Windows\System32\drivers\InCDPass.sys [36776 2007-06-25] (Nero AG)
U1 InCDrec; C:\Windows\system32\Drivers\InCDrec.sys [16040 2007-06-25] (Nero AG)
R1 incdrm; C:\Windows\System32\drivers\InCDRm.sys [38440 2007-06-25] (Nero AG)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [7680 2006-10-19] ()
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [764520 2011-04-08] (Realtek Semiconductor Corporation                           )
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1308304 2012-12-18] (Realtek Semiconductor Corporation                           )
R3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [34448 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [44304 2007-03-05] (IVT Corporation.)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [269824 2008-05-08] (VIA Technologies, Inc.)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Gemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-02-23 20:11 - 2017-02-23 20:13 - 00018062 _____ C:\Users\lionel\Downloads\FRST.txt
2017-02-23 20:05 - 2017-02-23 20:05 - 00000562 _____ C:\Users\lionel\Desktop\FRST.exe - Snelkoppeling.lnk
2017-02-23 14:37 - 2017-02-23 20:05 - 01765376 _____ (Farbar) C:\Users\lionel\Downloads\FRST.exe
2017-02-23 14:05 - 2017-02-23 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-23 13:58 - 2017-02-23 13:58 - 00000000 ____D C:\Program Files\PrivaZer
2017-02-22 10:21 - 2017-02-22 16:58 - 00000000 ____D C:\ProgramData\Glarysoft
2017-02-22 10:20 - 2017-02-23 19:53 - 00000000 ____D C:\Program Files\Glary Utilities 5
2017-02-22 10:20 - 2017-02-22 17:01 - 00000000 ____D C:\Program Files\Glarysoft
2017-02-22 10:20 - 2017-02-22 10:20 - 00001569 _____ C:\GUDownLoaddebug.txt
2017-02-22 10:20 - 2017-02-22 10:20 - 00000849 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-02-21 19:49 - 2017-02-21 19:49 - 00035432 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-02-21 19:49 - 2017-02-21 19:49 - 00035432 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-02-21 13:14 - 2017-02-21 13:14 - 00018746 _____ C:\Users\lionel\Documents\SearchReg.txt
2017-02-21 13:09 - 2017-02-23 20:11 - 00000000 ____D C:\FRST
2017-02-19 14:45 - 2017-02-19 14:45 - 00109152 _____ C:\Users\lionel\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-17 18:04 - 2017-02-17 18:07 - 00400680 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-09 09:33 - 2017-02-09 09:33 - 00040264 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-02-09 09:33 - 2017-02-09 09:33 - 00035432 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-02-06 17:54 - 2017-02-13 15:49 - 00000000 ____D C:\zoek_backup
2017-02-03 12:56 - 2017-02-04 13:31 - 00000000 ____D C:\Program Files\trend micro
2017-01-31 10:14 - 2017-02-23 13:58 - 00001630 _____ C:\Users\Public\Desktop\PrivaZer.lnk
2017-01-29 09:25 - 2017-01-29 10:16 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-01-27 14:46 - 2017-02-23 11:10 - 00000000 ____D C:\Users\lionel\Documents\nieuwe foto's brugge

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-02-23 20:06 - 2015-10-27 14:48 - 00001002 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-23 19:55 - 2016-02-07 09:15 - 00000408 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2017-02-23 19:53 - 2013-06-29 06:53 - 00000000 ___RD C:\Users\lionel\Dropbox
2017-02-23 19:52 - 2016-02-02 14:41 - 00000000 ____D C:\ProgramData\MFAData
2017-02-23 19:50 - 2015-10-27 14:48 - 00000998 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-23 19:50 - 2013-06-24 10:46 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-23 19:50 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-23 19:50 - 2006-11-02 13:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-23 19:50 - 2006-11-02 13:47 - 00004112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-23 15:16 - 2006-11-02 14:01 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-02-23 15:14 - 2016-08-01 09:28 - 00000940 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-23 15:10 - 2016-11-17 14:45 - 00000000 ____D C:\Users\lionel\AppData\LocalLow\Mozilla
2017-02-23 14:02 - 2013-06-29 06:43 - 00000000 ____D C:\Program Files\Dropbox
2017-02-23 13:58 - 2016-02-12 16:44 - 00001642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk
2017-02-23 13:58 - 2016-02-12 16:44 - 00000000 ____D C:\Users\lionel\AppData\Local\PrivaZer
2017-02-23 13:40 - 2016-02-07 22:24 - 02579691 ____H C:\Users\lionel\AppData\Local\IconCache.db.backup
2017-02-23 10:17 - 2016-10-25 16:53 - 00000000 ____D C:\Users\lionel\Documents\fotos in afwachting
2017-02-22 18:08 - 2013-11-24 14:36 - 00000000 ____D C:\Users\lionel\Documents\werken brugge
2017-02-22 17:58 - 2013-11-24 14:37 - 00045132 _____ C:\Users\lionel\Documents\PRIJSLIJST.ods
2017-02-22 17:02 - 2015-06-24 08:54 - 00000000 ___RD C:\Users\lionel\Desktop\VEILIGHEID
2017-02-22 16:58 - 2014-10-17 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2017-02-22 16:43 - 2013-06-28 15:57 - 00000000 ____D C:\Users\lionel\Desktop\WEINIG GEBRUIKT
2017-02-22 16:41 - 2016-09-07 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-02-22 10:21 - 2013-10-04 19:18 - 00000000 ____D C:\Users\lionel\AppData\Roaming\GlarySoft
2017-02-22 10:20 - 2016-02-07 08:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2017-02-21 13:34 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\inf
2017-02-21 13:02 - 2013-06-24 13:11 - 00002565 _____ C:\Users\lionel\Desktop\Microsoft Office Word 2007.lnk
2017-02-17 15:13 - 2015-01-24 09:29 - 00000000 ____D C:\Users\lionel\AppData\Roaming\vlc
2017-02-17 14:09 - 2016-01-31 15:19 - 00000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-14 13:14 - 2016-08-01 09:28 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-02-14 13:14 - 2016-08-01 09:28 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-02-14 13:14 - 2013-06-28 15:40 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-11 10:49 - 2013-11-24 14:34 - 00000000 ____D C:\Users\lionel\Documents\Allerlei documenten
2017-02-10 16:06 - 2017-01-18 12:58 - 00000182 _____ C:\Users\lionel\AppData\Roaming\wklnhst.dat
2017-02-10 16:06 - 2015-09-14 15:01 - 00019456 _____ C:\Users\lionel\Documents\vlees prijzen.xlr
2017-02-07 15:15 - 2016-11-23 10:29 - 00000000 ____D C:\AdwCleaner
2017-02-06 18:34 - 2014-02-12 09:00 - 00000000 ____D C:\Windows\pss
2017-02-06 18:16 - 2016-02-03 12:02 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-02-06 18:09 - 2006-11-02 12:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-02-06 16:37 - 2015-11-06 13:18 - 00000000 ____D C:\Windows\Minidump
2017-02-06 12:04 - 2016-04-29 13:18 - 00014579 _____ C:\Users\lionel\Documents\internet winkels tekst.odt
2017-02-03 13:53 - 2013-11-24 14:34 - 00000000 ____D C:\Users\lionel\Documents\Computer Hulp
2017-02-02 18:01 - 2015-05-04 15:42 - 00000000 ____D C:\Users\lionel\Documents\TomTom
2017-02-02 17:36 - 2016-09-23 13:57 - 00000000 ____D C:\Users\lionel\Documents\fotos gidsen kring
2017-02-02 12:37 - 2008-01-21 07:47 - 00838952 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-02 12:37 - 2008-01-21 07:47 - 00066818 _____ C:\Windows\system32\perfh013.dat
2017-02-02 12:37 - 2008-01-21 07:47 - 00028328 _____ C:\Windows\system32\perfc013.dat
2017-02-01 13:34 - 2013-11-24 14:35 - 00000000 ___RD C:\Users\lionel\Documents\Energie
2017-01-31 10:06 - 2013-11-24 14:36 - 00000000 ____D C:\Users\lionel\Documents\internet winkel foto's
2017-01-30 17:55 - 2016-08-10 09:01 - 00000813 _____ C:\Users\Public\Desktop\TomTom MyDrive Connect.lnk
2017-01-30 17:51 - 2013-11-24 14:37 - 00000000 ____D C:\Users\lionel\Documents\pp Brugge
2017-01-30 17:31 - 2016-05-26 19:23 - 00000000 ____D C:\Users\lionel\MyDrive Connect
2017-01-30 17:31 - 2013-09-26 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2017-01-29 10:16 - 2016-02-10 10:50 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-01-29 10:01 - 2016-04-30 15:29 - 00000000 ____D C:\Users\lionel\AppData\Local\AvgSetupLog
2017-01-24 17:40 - 2013-11-24 14:35 - 00000000 ___RD C:\Users\lionel\Documents\Documentatie over Brugge
2017-01-24 07:48 - 2013-06-24 08:45 - 00000680 _____ C:\Users\lionel\AppData\Local\d3d9caps.dat

==================== Bestanden in de root van sommige mappen =======

2013-07-02 07:59 - 2016-09-21 07:54 - 0024206 _____ () C:\Users\lionel\AppData\Roaming\UserTile.png
2017-01-18 12:58 - 2017-02-10 16:06 - 0000182 _____ () C:\Users\lionel\AppData\Roaming\wklnhst.dat
2013-06-24 08:45 - 2017-01-24 07:48 - 0000680 _____ () C:\Users\lionel\AppData\Local\d3d9caps.dat
2013-06-24 12:35 - 2017-01-08 17:35 - 0208384 _____ () C:\Users\lionel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-06 15:06 - 2015-11-06 15:06 - 0000057 _____ () C:\ProgramData\Ament.ini
2013-06-24 11:09 - 2013-06-24 11:42 - 0034990 _____ () C:\ProgramData\nvModes.001
2013-06-24 11:09 - 2013-06-24 11:42 - 0034990 _____ () C:\ProgramData\nvModes.dat

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\Windows\explorer.exe => Bestand is getekend
C:\Windows\system32\winlogon.exe => Bestand is getekend
C:\Windows\system32\wininit.exe => Bestand is getekend
C:\Windows\system32\svchost.exe => Bestand is getekend
C:\Windows\system32\services.exe => Bestand is getekend
C:\Windows\system32\User32.dll => Bestand is getekend
C:\Windows\system32\userinit.exe => Bestand is getekend
C:\Windows\system32\rpcss.dll => Bestand is getekend
C:\Windows\system32\dnsapi.dll => Bestand is getekend
C:\Windows\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2017-02-23 19:56

==================== Eind van FRST.txt ============================