Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 29-06-2016 Gestart door Sofia (2016-06-30 19:12:17) Gestart vanaf C:\Users\Sofia\Downloads Windows 10 Home Versie 1511 (X64) (2016-04-14 20:59:25) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1567188599-117826032-3191417159-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1567188599-117826032-3191417159-503 - Limited - Disabled) Gast (S-1-5-21-1567188599-117826032-3191417159-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1567188599-117826032-3191417159-1003 - Limited - Enabled) Sofia (S-1-5-21-1567188599-117826032-3191417159-1001 - Administrator - Enabled) => C:\Users\Sofia ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Kaspersky Internet Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.55.62 - Conexant) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.32.00 - Lenovo Inc.) Hidden Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden D-Link Connection Manager v2.0.3EU (HKLM-x32\...\Broad Mobi HSPA Modem Normal Version_is1) (Version: - ) ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.) GDCAgentSetupRed (HKLM-x32\...\{9DEA8841-47E8-4435-989F-E015EEE0F9D6}_is1) (Version: 1.0.0.6 - Lenovo) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.106 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Harmony (HKLM-x32\...\{D02D9427-507D-4912-9285-97FCD5417E72}) (Version: 1.1.0.0304 - Lenovo) Harmony (x32 Version: 1.1.0.0304 - Lenovo) Hidden Huawei modem (HKLM-x32\...\Huawei Modems) (Version: - ) Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.71 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4062 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{06A5031E-3B1E-4FB9-AC4C-BA0FE2706152}) (Version: 17.1.1433.02 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{21fed2aa-c2b4-4d9e-bd4b-072866d210b7}) (Version: 17.14.1 - Intel Corporation) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden Lenovo App Services (HKLM\...\Lenovo App Services) (Version: 0.200.8.201 - Lenovo) Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited) Lenovo EasyCamera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.5.5.5 - SunplusIT) Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.1.12.0 - Lenovo) Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.) Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden Lenovo Motion Control (HKLM-x32\...\InstallShield_{D3F38500-4C99-4E4F-9786-B907224E13A1}) (Version: 2.6.0.0528 - PointGrab) Lenovo Motion Control (x32 Version: 2.6.0.0528 - PointGrab) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden Lenovo Paper Display (HKLM-x32\...\InstallShield_{B5E4B638-FFF0-408F-9FB6-732CAFC73063}) (Version: 2.0.0.035 - Lenovo) Lenovo Paper Display (x32 Version: 2.0.0.035 - Lenovo) Hidden Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 2.0.0.19 - Lenovo) Lenovo PhoneCompanion (x32 Version: 2.0.0.19 - Lenovo) Hidden Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.5.2624.01 - CyberLink Corp.) Lenovo Photo Master (x32 Version: 1.5.2624.01 - CyberLink Corp.) Hidden Lenovo Settings - Camera Audio (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 4.3.24.256 - Lenovo Corporation) Lenovo Settings (HKLM\...\{D14CCBF5-1A3A-4C08-955B-BE6D519835C4}_is1) (Version: 2.0.0.5 - Lenovo) Lenovo Settings Dependency Package (HKLM\...\{3694BA2E-BE31-4B7E-886B-A0B559E69D4D}_is1) (Version: 2.3.3.33 - Lenovo Group Limited) Lenovo Settings Service (HKLM\...\{8C6F1EBA-17F1-4481-B688-9777E63E985F}_is1) (Version: 2.3.0.21 - Lenovo Group Limited) Lenovo Settings UMDF driver (HKLM\...\{2BDC7413-65EA-4B99-8C4B-02F11075BE6D}_is1) (Version: 1.2.0.7 - Lenovo Group Limited) Lenovo Settings WiFi (HKLM\...\{86045A6C-C156-4349-A3E2-47A88A42F5C2}_is1) (Version: 2.0.0.4 - Lenovo) Lenovo Yoga 3 Demo (HKLM-x32\...\{9B02CB47-B0E8-4BC8-9BF3-8EFF3CDEA30E}) (Version: 2.0.2 - Lenovo) LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 2.0.0.3 - Lenovo) LenovoUtility (x32 Version: 2.0.0.3 - Lenovo) Hidden Malwarebytes Anti-Malware versie 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Maxx Audio Installer (x64) (Version: 1.6.5320.114 - Waves Audio Ltd.) Hidden Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.6965.2058 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1018 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden OneKey Optimizer (HKLM-x32\...\InstallShield_{D5D573DC-D989-4769-9B56-D6A7EA503D7F}) (Version: 1.3.0.10 - Lenovo) OneKey Optimizer (x32 Version: 1.3.0.10 - Lenovo) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39060 - Realtek Semiconductor Corp.) SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 3.2.0.526 - Lenovo) UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.3.6 - Lenovo) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) User Manuals (x32 Version: 3.0.0.3 - Lenovo) Hidden VitalSource Bookshelf (HKLM-x32\...\{4bb6f5ce-1e01-41b1-833d-ffa2297df6f4}) (Version: 6.08.0017 - Uw bedrijfsnaam) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo) Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1567188599-117826032-3191417159-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Sofia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {16116C0D-C8FC-4C75-952D-562005D7D91E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {18E26926-FC80-4754-9E6E-C32E1493062C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {2F8BC991-2947-4EC8-9852-CEFEC152DBD1} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo) Task: {2FA79BD7-D8E7-44C5-AB1C-C7C382731D7F} - \Lenovo App Services -> Geen bestand <==== AANDACHT Task: {2FAC9888-4CE6-4795-AA6B-23DA3FAD4230} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-30] (Google Inc.) Task: {55466235-DFBC-4FF7-A4C3-670E8D57D2D7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {5F359F04-242B-4ED1-9507-D8026E36DE81} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {631E8DEF-BC14-4F11-A6B3-1B3369A5A520} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {6BA22C8F-D089-4F6F-BC4E-1A65BDA979BC} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {724B255C-445F-4B6B-A7FA-3083A87EB99E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation) Task: {72FC466C-8176-45B8-87F3-2DFBC326B434} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {994A5BFE-6A80-4B9B-AF04-155B84A4CF4A} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] () Task: {9C2CC87E-BD2D-4AA3-B7DD-7D18D8D89C6A} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-04-14] (Lenovo) Task: {A8CA8B71-9821-4BFA-A812-D52CB9C171D7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation) Task: {D1688081-7A14-4D4E-B784-AC4DB5D3CE49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-30] (Google Inc.) Task: {E04ED03C-0874-4DEB-B897-CE4C396DC0A8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {EB4777D9-7C56-4278-98F4-1C3BCB74FC1B} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {FB6105C6-2EF3-4CEB-BAF9-4B3B3BCD7583} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-06-10] (Microsoft Corporation) Task: {FEEB5403-15B2-4965-8828-9C84A2B0149A} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-09-02] (Lenovo) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2016-06-17 12:42 - 2016-06-17 12:42 - 00980480 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Security\f66fe9e936b2987a489197872ce0e691\Windows.Security.ni.dll 2015-05-10 08:16 - 2014-08-25 19:33 - 00017176 _____ () C:\Program Files (x86)\Lenovo\Harmony\Setting\TouchScreenContronlDLL.dll 2015-05-10 08:18 - 2015-05-10 08:18 - 00133440 _____ () C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe 2015-05-10 08:16 - 2015-01-15 19:06 - 00058624 _____ () C:\ProgramData\LenovoTransition\Server\x64\dptf.dll 2014-11-25 23:54 - 2014-11-25 23:54 - 00026392 _____ () C:\Program Files (x86)\Lenovo\PaperDisplay\x86\PLHotkeyService.exe 2015-05-10 08:18 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-04-14 23:24 - 2016-04-14 23:24 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-12-19 01:08 - 2015-12-19 01:08 - 00402344 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-05-10 08:21 - 2015-05-26 09:54 - 00037672 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Metric.dll 2015-05-10 08:21 - 2015-05-26 09:54 - 00166696 _____ () C:\Program Files\Lenovo\OneKey Optimizer\bin\Lenovo.MetricCollectionMFCx64.dll 2016-04-14 23:24 - 2016-04-14 23:24 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-06-15 19:00 - 2016-06-15 19:00 - 00959168 _____ () C:\Users\Sofia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2016-02-13 14:57 - 2016-02-13 14:57 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-17 10:30 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-06-17 11:37 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-06-17 11:37 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-06-17 11:37 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-06-17 11:37 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-05-10 07:44 - 2010-10-26 06:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe 2015-05-10 08:12 - 2015-05-10 08:12 - 00791368 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe 2015-05-10 08:12 - 2015-05-10 08:12 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll 2015-05-10 08:16 - 2015-01-15 19:04 - 00107776 _____ () C:\Program Files (x86)\Lenovo\LenovoTransition\TransitionServer.exe 2015-05-10 08:16 - 2014-08-25 19:27 - 00074520 _____ () C:\Program Files (x86)\Lenovo\Harmony\Picks\Lenovo.Harmonydll.dll 2016-06-30 00:16 - 2016-06-23 15:26 - 02336584 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libglesv2.dll 2016-06-30 00:16 - 2016-06-23 15:25 - 00107336 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.106\libegl.dll 2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll 2014-05-28 22:16 - 2014-05-28 22:16 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll 2014-10-10 18:37 - 2014-10-10 18:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-06-14 12:27 - 2016-06-14 12:27 - 00670720 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Security\8b7b037e91d3f946b47d909a2520aa36\Windows.Security.ni.dll 2016-06-14 12:27 - 2016-06-14 12:27 - 01232896 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Networking\c0fb22078317e79da774414628b9d7b7\Windows.Networking.ni.dll 2016-05-26 20:37 - 2016-05-26 20:37 - 00335360 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\cbafdb4e11c9fd06e0a2e5efa6253883\Windows.Foundation.ni.dll 2016-06-14 12:27 - 2016-06-14 12:27 - 00318976 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.System\5b634b6768e06ead196ad9f9ada35819\Windows.System.ni.dll 2015-05-10 08:16 - 2014-08-25 19:32 - 00168216 _____ () C:\Program Files (x86)\Lenovo\Harmony\Setting\PG_SettingsLib.dll 2015-05-10 08:16 - 2014-08-25 19:30 - 00018200 _____ () C:\Program Files (x86)\Lenovo\Harmony\Setting\Lenovo.Harmonydll.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-1567188599-117826032-3191417159-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\...\StartupApproved\Run: => "OneKeyOptimizer" HKLM\...\StartupApproved\Run: => "PhoneCompanion" HKU\S-1-5-21-1567188599-117826032-3191417159-1001\...\StartupApproved\Run: => "OneDrive" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{08A01836-8F0D-4EA8-BB1C-B1BDD386B35C}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{451A6EE3-3BCC-410D-9F5D-A47F3E6F28E9}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe FirewallRules: [{2D011E43-19B2-4DB6-8E07-11F688AEFC68}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe FirewallRules: [{89342785-1B96-41D9-BC46-891587C2EDD9}] => (Allow) LPort=55100 FirewallRules: [{C9A92B20-DFFA-4785-98E8-CCA1BA0B6B66}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe FirewallRules: [{C574CFE8-D50A-4FEF-813E-D51F3D6295DE}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe FirewallRules: [{91C80990-C1D7-4441-AA5C-F12E724BC69A}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{F6F9FED3-02D7-4557-8472-75724739A333}] => (Allow) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe FirewallRules: [{B8A7B2B5-1445-41E8-B7A3-827D70B65D01}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{598256EB-C7F2-4E07-9CB4-FDD610F63574}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{7EA61F28-7B31-425C-A2D8-F72B011EA345}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{B4EA6BD6-C48F-4028-9970-9F9447C5B306}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{025DDC43-C924-41A3-B66E-D61125C22CB8}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D1C59469-3132-4102-80C0-2D1351DEA592}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{62686388-B67C-4071-A0AD-3F25A901090F}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DB9779D1-B6C4-476C-A815-73DE4FC79316}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{196B0230-FCBF-487F-BC84-5801A8F171B9}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{59F8E31E-79D7-4116-B992-C83EE630EE72}] => (Allow) C:\Users\Sofia\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D147FA49-DABB-4BA9-9209-0FA633F334FE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 15-06-2016 11:29:33 Geïnstalleerd Mobiel Internet Software 23-06-2016 12:12:49 Gepland controlepunt 29-06-2016 15:53:06 Verwijderd Mobiel Internet Software 29-06-2016 16:13:21 JRT Pre-Junkware Removal ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (06/30/2016 07:01:52 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServicereg session lock = failed w/err 0x00000000 Error: (06/30/2016 07:01:52 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServicesession change id = failed w/err 0x00000003 Error: (06/30/2016 07:01:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: igfxHK.exe, versie: 6.15.10.4331, tijdstempel: 0x564cc83e Naam van module met fout: igfxHK.exe, versie: 6.15.10.4331, tijdstempel: 0x564cc83e Uitzonderingscode: 0xc0000409 Foutmarge: 0x0000000000015953 Id van proces met fout: 0x1774 Starttijd van toepassing met fout: 0xigfxHK.exe0 Pad naar toepassing met fout: igfxHK.exe1 Pad naar module met fout: igfxHK.exe2 Rapport-id: igfxHK.exe3 Volledige pakketnaam met fout: igfxHK.exe4 Relatieve toepassings-id van pakket met fout: igfxHK.exe5 Error: (06/30/2016 07:01:42 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServiceevent type = failed w/err 0x00000012 Error: (06/30/2016 07:01:42 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServiceevent type = failed w/err 0x00000007 Error: (06/30/2016 07:01:40 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServicereg session lock = failed w/err 0x00000001 Error: (06/30/2016 07:01:40 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServicesession change id = failed w/err 0x00000003 Error: (06/30/2016 07:01:37 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServiceevent type = failed w/err 0x0000000a Error: (06/30/2016 07:01:37 PM) (Source: PLCoreService) (EventID: 0) (User: ) Description: PLCoreServiceevent type = failed w/err 0x00008013 Error: (06/30/2016 11:57:57 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY) Description: Overgeslagen: de validatie van Eap method DLL path is mislukt. Fout: id van type=43, id van auteur=9, id van leverancier=0, type leverancier=0 Systeemfouten: ============= Error: (06/30/2016 07:07:13 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073cf6: MSN Weather. Error: (06/30/2016 11:57:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Access_5e54ee-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (06/30/2016 11:57:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Storage_5e54ee-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (06/30/2016 11:57:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Contact Data_5e54ee-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (06/30/2016 11:57:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Host synchroniseren_5e54ee-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (06/30/2016 11:57:52 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar Error: (06/30/2016 11:19:47 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar Error: (06/30/2016 10:12:47 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: toepassingsspecifiekLokaalActiveren{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (via LRPC)Niet beschikbaarNiet beschikbaar Error: (06/30/2016 12:30:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Access_527bb-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (06/30/2016 12:30:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Storage_527bb-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. CodeIntegrity: =================================== Date: 2016-06-23 11:18:31.793 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-18 18:52:59.993 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-18 13:26:57.297 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-15 11:29:32.505 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-10 20:17:25.971 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-06 16:06:56.687 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-20 23:30:23.269 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-19 09:21:43.703 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-18 08:52:56.745 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-17 13:43:29.631 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Percentage geheugen in gebruik: 38% Totaal fysiek RAM-geheugen: 8073.11 MB Beschikbaar fysiek RAM-geheugen: 4925.46 MB Totaal Virtueel geheugen: 9353.11 MB Beschikbaar Virtual geheugen: 6002.11 MB ==================== Schijven ================================ Drive c: (Windows8_OS) (Fixed) (Total:424.96 GB) (Free:392.39 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.73 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 0175F41D) Partition: GPT. ==================== Eind van Addition.txt ============================