Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 05-05-2017 01 Gestart door rossi (05-05-2017 15:47:55) Gestart vanaf C:\Users\rossi\Desktop Windows 10 Home Versie 1607 (X64) (2016-09-24 21:32:32) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-581751278-323587240-2487430462-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-581751278-323587240-2487430462-503 - Limited - Disabled) Gast (S-1-5-21-581751278-323587240-2487430462-501 - Limited - Disabled) rossi (S-1-5-21-581751278-323587240-2487430462-1001 - Administrator - Enabled) => C:\Users\rossi ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Internet Security (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Internet Security (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} FW: AVG Internet Security (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Around the World in 80 Days (HKLM-x32\...\Around the World in 80 Days_is1) (Version: 1.0 - GameTop Pte. Ltd.) ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.5 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS) Asus Sonic Suite Plugins (HKLM-x32\...\{538766d1-8795-4e62-b3d3-cf65517bae51}) (Version: 2.0.7 - ASUSTeKcomputer.Inc) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) AVG (Version: 16.151.8013 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies) AVS Video Converter 9.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 9.1.4.574 - Online Media Technologies Ltd.) Belgium e-ID middleware 4.1.20 (build 1779) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71779}) (Version: 4.1.1779 - Belgian Government) CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform) CheckDevicesConfigurator (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dacia Media Nav Toolbox (HKLM-x32\...\Dacia Media Nav Toolbox) (Version: 3.18.5.647040 - NNG Llc.) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.) Facebook Gameroom 1.3.1.3 (HKLM-x32\...\{7E155A45-DE1A-46E0-A6B2-10FE1D8501FC}) (Version: 1.3.1.3 - Facebook) FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.12) (Version: 1.5.12 - ASUS) GameFirst IV (x32 Version: 1.5.12 - ASUS) Hidden Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.5.0.6.1001 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.) Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden GrabIt 1.7.3 Beta (build 1010) (HKLM-x32\...\GrabIt_is1) (Version: - Ilan Shemes) Hitman: Absolution (HKLM\...\Steam App 203140) (Version: - IO Interactive) Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation) Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden LauncherSetup (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-581751278-323587240-2487430462-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Mozilla Firefox 49.0.1 (x86 nl) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 nl)) (Version: 49.0.1 - Mozilla) NahimicSettingsConfigurator (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.) NVIDIA 3D Vision Driver 354.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 354.35 - NVIDIA Corporation) NVIDIA Graphics Driver 354.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 354.35 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) ProductDaemonSetup (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.) ROG Gaming Center (HKLM-x32\...\{CC182DBF-FC67-4F79-9930-6A2682E60BDD}) (Version: 1.0.1 - ASUS) ROG MacroKey (HKLM-x32\...\{1101D2B9-7E8C-4361-88D5-AB0A2EB705EC}) (Version: 1.0.4 - ASUS) SABnzbd 1.1.1RC3 (HKLM-x32\...\SABnzbd) (Version: 1.1.1RC3 - The SABnzbd Team) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden SonicRadarSetup (Version: 1.0.0.0 - ASUSTeKcomputer.Inc) Hidden SonicStudioSetup (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Spotify (HKU\S-1-5-21-581751278-323587240-2487430462-1001\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB) Spotnet (HKLM-x32\...\{12947715-B6F0-4597-816F-5E13FB647921}_is1) (Version: 1.8.1 - Spotnet) Spotnet (HKU\S-1-5-21-581751278-323587240-2487430462-1001\...\Spotnet) (Version: 2.0.0.250 - Spotnet) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict) Thunderbolt(TM) Software (HKLM-x32\...\{E265C71F-14DA-462C-A06A-CBA776B695F1}) (Version: 15.2.32.250 - Intel Corporation) Traffic Exchange (x32 Version: 2.0.0 - Microleaves) Hidden <==== AANDACHT UltraISO Premium V9.52 (HKLM-x32\...\UltraISO_is1) (Version: - ) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.40 bèta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.3 - win.rar GmbH) WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 10.2.0.5811 - Kingsoft Corp.) XSplit Gamecaster (HKLM-x32\...\{0E12BEC0-F2EE-43FA-AEA0-24B5E9F80167}) (Version: 2.5.1507.3011 - SplitmediaLabs) YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== AANDACHT ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {07649EC6-9B83-4816-AEF6-3ECE50DB9376} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe [2015-08-05] (SplitmediaLabs) Task: {0B297CE8-07E1-491C-BE43-E3FBC6F72CAD} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe Task: {0E5252D6-22DD-4F2A-A20D-EBFFEFE8A791} - System32\Tasks\WpsUpdateTask_rossi => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.5811\wtoolex\wpsupdate.exe [2017-01-16] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] () Task: {0FE54966-B26A-464E-B0EE-D75877B3C166} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {175A18C7-F580-4C14-A9CE-2208A3DD8145} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor) Task: {17C0A729-1B06-4859-86CB-8B57B989123D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd) Task: {1ACC8041-C2C6-4CAC-B734-A002F5B17F4B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated) Task: {206C7B7A-B630-4699-A181-86E298B57058} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-11-02] (Realtek Semiconductor) Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {2E6DA02C-04B2-435D-B9D1-54A7F97A77F3} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {443E51ED-7E7F-4390-B4DF-A435AD8A7EA7} - \SMW_UpdateTask_Time_333639363334313935342d2d5b50342a4155456c5a236c -> Geen bestand <==== AANDACHT Task: {49F09C14-58B2-4391-BB53-897913FA0DE5} - \AVGPCTuneUp_Task_BkGndMaintenance -> Geen bestand <==== AANDACHT Task: {4FD4A678-87B9-4889-805E-E5DD43C808C9} - System32\Tasks\Thuqogh Reports => C:\Program Files (x86)\Phediktebaght\pranipy.exe Task: {55BDA52D-922E-40DF-A650-36C1CCEAF401} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.) Task: {664EAB28-1313-45E6-B63C-7C14DBFC4631} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {797AE3AD-1771-4B34-B22E-B4EA5D0CB47C} - System32\Tasks\Thovuy => msiexec.exe /i hxxp://d2buh1bf1g584w.cloudfront.net/msi/rel.php?u=HGSTXHTS721010A9E630_JR10044M0EH99N0EH99NX&v=201725 /q <==== AANDACHT Task: {7D401461-2BD9-4E12-9DDF-677939BB8CAF} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe Task: {888372A2-94F2-42F7-B25B-968CD3B6E17B} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [2015-08-13] (ASUSTek Computer Inc.) Task: {93E5AEDF-DB77-4B86-BA0A-5353F9B9EE71} - System32\Tasks\Traffic Exchange v2 - 2 => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: {95C50D54-7287-4AA3-9DC3-A3520FCD3E1F} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {9BB855C9-D2B5-4A58-99D6-86FA2715283F} - System32\Tasks\SS2svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2svc64.exe [2015-08-14] () Task: {A83317AF-9C7F-48AF-86B4-B66CE9F1379E} - System32\Tasks\Windows-PG => powershell.exe C:\windows\psgo\psgo.ps1 Task: {AB6090BA-0183-4F65-BDD8-7FE99C7A49FD} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService Task: {AC622B01-1E5B-4912-B19A-B1257DCC6A7C} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {AE7B8014-44C8-4DD8-8A12-9C030B990DD9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe Task: {BBD1274E-BA37-41D1-AFFA-8F7935998321} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-02-06] () <==== AANDACHT Task: {BEA36AB1-F556-451A-9972-AAD6A6A545A7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-09] (Google Inc.) Task: {C2B8FF33-7D36-4278-B5D0-0C198243286C} - System32\Tasks\ASUS ROG Macro Key Listener => C:\Program Files (x86)\ASUS\ROG MacroKey\AsListen.exe [2015-10-19] (ASUS) Task: {C6064D98-F3C3-4E5D-8970-BCC67AE5BAA8} - System32\Tasks\Traffic Exchange v2 - 3 => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: {CD87E64A-D729-4DB9-98B0-8BA5F4D21204} - System32\Tasks\SS2svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2svc32.exe Task: {D135D7BB-1CFC-4CAB-9917-D19A321B3FD4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-09] (Google Inc.) Task: {D1D9AD48-98C8-4A74-B6DE-C0A5760E7249} - System32\Tasks\WpsKtpcntrQingTask_rossi => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5657\office6\ktpcntr.exe Task: {D7C5F588-1700-4945-9044-FFAC3B7B1A81} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\rossi\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {E3416E0E-E2B6-474F-8326-3A7FC55FA6C9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {EC5C2D2A-B87E-474B-B7E8-0C0C83C2313D} - System32\Tasks\Traffic Exchange v2 - 1 => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: {F0DDF120-7332-4183-9C1C-12F1ACE22111} - System32\Tasks\SS2UILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [2015-08-14] () Task: {F9618CE7-850F-450A-A754-6F148A11F7F8} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Traffic Exchange v2 - 1.job => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: C:\WINDOWS\Tasks\Traffic Exchange v2 - 2.job => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: C:\WINDOWS\Tasks\Traffic Exchange v2 - 3.job => C:\Program Files (x86)\Microleaves\Traffic Exchange\OnlineGuardian-v2.exe <==== AANDACHT Task: C:\WINDOWS\Tasks\WpsKtpcntrQingTask_rossi.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.5811\office6\ktpcntr.exeÃqing 10.2.0.5811 xxx server_url=hxxp:/kdl1.cache.wps.com/ksodl/wpscfg/client/____client____html____service____bubble.html ic_server_url=hxxp:/info.kingsoftstore.com/wpsv6internet/infos.ads Task: C:\WINDOWS\Tasks\WpsUpdateTask_rossi.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.5811\wtoolex\wpsupdate.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\rossi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.ourluckysites.com/?type=sc&ts=1493979368&z=1d7435144fd4cc5672f3e3fg3z6tdc1tdm7t5z3g5z&from=che0812&uid=HGSTXHTS721010A9E630_JR10044M0EH99N0EH99NX ==================== Geladen Modules (gefilterd) ============== 2016-12-01 07:06 - 2016-06-15 03:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2017-05-04 13:27 - 2017-05-04 04:32 - 00101888 _____ () C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-04-13 17:44 - 2017-03-28 08:22 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-09-24 23:25 - 2016-08-01 14:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-04-13 17:44 - 2017-03-28 08:22 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2017-04-13 17:44 - 2017-03-28 08:22 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-09-25 00:20 - 2016-09-25 00:20 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-15 07:18 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-15 07:18 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll 2017-03-15 07:18 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-15 07:18 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-15 07:18 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-04-13 17:44 - 2017-03-28 07:08 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-04-13 17:44 - 2017-03-28 07:11 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-08-14 11:13 - 2015-08-14 11:13 - 00970720 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe 2017-04-07 09:41 - 2017-04-07 09:41 - 00054488 _____ () C:\Program Files\CCleaner\branding.dll 2017-04-11 00:57 - 2017-04-11 00:57 - 00073728 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-12-01 07:06 - 2016-06-15 03:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2015-05-31 18:15 - 2015-05-31 18:15 - 01382696 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSService.exe 2017-04-13 09:47 - 2017-04-13 09:47 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\HxMail.exe 2017-04-07 10:37 - 2017-04-07 10:37 - 13358272 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8104.42387.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll 2017-05-02 23:01 - 2017-05-02 03:03 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libglesv2.dll 2017-05-02 23:01 - 2017-05-02 03:03 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.96\libegl.dll 2017-05-04 13:27 - 2016-05-23 04:37 - 00065696 _____ () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll 2015-09-19 01:34 - 2015-09-19 01:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-08-25 11:40 - 2015-08-25 11:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 11:40 - 2015-08-25 11:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2016-01-29 20:52 - 2016-06-15 03:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2017-05-04 13:27 - 2016-05-23 04:37 - 00179200 _____ () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll 2015-08-14 11:13 - 2015-08-14 11:13 - 00120320 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\sradarlauncher.dll 2017-05-04 13:27 - 2017-05-03 15:34 - 00323584 _____ () C:\Users\rossi\AppData\Local\background_fault\bf.dll 2017-02-15 18:58 - 2017-02-15 18:58 - 01162752 _____ () C:\Users\rossi\AppData\Local\Facebook\Games\CefSharp.Core.dll 2017-02-15 18:58 - 2017-02-15 18:58 - 67197440 _____ () C:\Users\rossi\AppData\Local\Facebook\Games\libcef.dll 2017-04-01 15:21 - 2017-04-01 15:21 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2017-02-15 18:58 - 2017-02-15 18:58 - 00752640 _____ () C:\Users\rossi\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll 2017-02-15 18:58 - 2017-02-15 18:58 - 01886208 _____ () C:\Users\rossi\AppData\Local\Facebook\Games\libglesv2.dll 2017-02-15 18:58 - 2017-02-15 18:58 - 00078848 _____ () C:\Users\rossi\AppData\Local\Facebook\Games\libegl.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\WINDOWS\system32\drivers:ucdrv-x64.sys [23652] AlternateDataStreams: C:\WINDOWS\system32\drivers:x64 [1479458] AlternateDataStreams: C:\WINDOWS\system32\drivers:x86 [1205026] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2015-07-10 13:04 - 2017-02-09 18:10 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-581751278-323587240-2487430462-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rossi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{41ba9ff2-336d-4029-b47a-bb15e7c1ab2f}.jpg DNS Servers: 195.130.130.5 - 195.130.131.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{BDF69D5C-2FBC-4FCB-A2C9-6534439F73DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Absolution\HMA.exe FirewallRules: [{3DBC6700-2FC4-494B-A6A8-8A430EF0CBBA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman Absolution\HMA.exe FirewallRules: [{E2D8DF7B-7F73-4EDE-81B3-6A03F2655B65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{183FD02C-6081-4734-89A1-06385CD24BCE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0AEA7553-F37D-43A7-86C7-1E1E92CA342A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4DE21FCD-FA4C-4D7C-8D6B-BFBE2E885BF3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{CAF92BC5-1BCC-4680-A8BB-1861626E85B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{212C152E-5CA4-4064-B6EB-F86D65AD2C4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2AA35BC7-0C9D-4236-AFF0-A5CA2FEDA3C1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{A560D83E-1FCF-491B-BBDA-204E919CE2F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4F7C67DE-E61D-4F71-8DE0-911498076EAE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{15A128CD-3EBD-4138-9F78-D420E36A02B2}] => (Allow) C:\Windows\system32\ftp.exe FirewallRules: [{68A5E5F1-F4B4-4127-92CB-B15CA326FA5A}] => (Allow) C:\Windows\system32\ftp.exe FirewallRules: [{D5B99DE1-433F-461A-9124-04C63C81A8FE}] => (Allow) C:\Windows\SysWOW64\ftp.exe FirewallRules: [{6A8A3756-22F5-4D8A-8917-3E81713324AE}] => (Allow) C:\Windows\SysWOW64\ftp.exe FirewallRules: [{04BE3979-1352-41CB-8B00-EA2CB2128D33}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{03D587B0-4B3F-4FE7-99C8-2413E202F91A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5B4FC83D-4A84-4F1E-B60E-2A50999CDB85}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{16FBA89D-0809-425D-8F68-4CF3AF3A8883}] => (Allow) LPort=2869 FirewallRules: [{CC5C5A77-63AD-478D-8D99-54625F22C7DC}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{4A7582AA-3EAC-49A4-A184-FB02391B6755}C:\users\rossi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rossi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{8455F66D-4FCF-4BA7-8C88-25AD7DAEC44D}C:\users\rossi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rossi\appdata\roaming\spotify\spotify.exe FirewallRules: [{40D58997-A443-41CF-824B-AB0A32AF3BD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{0DEAA85E-13B5-4388-BA77-C38DCC85E586}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{CA99AD2F-E361-4E78-BC10-6A0586B9B9B7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{5E801D25-713D-487B-A8F2-E260EB2E5CB9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{44B8C5A1-59BA-44AB-AE1F-E107161867AD}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{24334D14-1855-48F3-8EDC-23BAB5806943}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{AE8384FA-7235-4423-944A-0B4410BED768}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{95B75093-F1A3-4868-9791-9D65D35BAFFE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{451F1514-3CCB-4783-81B1-58FAD6124935}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{609B6DA7-2840-4B7B-81F2-90A9F19D6E1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{56578AC7-B849-4EE6-AD08-7BA3DB7D8E1E}] => (Allow) C:\Program Files (x86)\Zoohair\Application\chrome.exe FirewallRules: [{A6F14F65-DEDF-4486-86EB-859ADEED7BC9}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{76C8D206-3B5C-4CCA-83C4-8F78DAA05FF0}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{B63A2065-722A-4329-9D52-D94E78EC0553}] => (Allow) C:\Program Files (x86)\MIO\loader\hgstxhts721010a9e630_jr10044m0eh99n0eh99nx.dat FirewallRules: [{0D82E9D0-E5A2-4FE4-9329-639860664D3F}] => (Allow) C:\Program Files (x86)\MIO\loader\hgstxhts721010a9e630_jr10044m0eh99n0eh99nx.dat ==================== Herstelpunten ========================= 22-04-2017 15:19:18 Windows Update 01-05-2017 09:29:49 Gepland controlepunt 05-05-2017 06:34:29 Removed AlphaGo ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (05/05/2017 12:29:11 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: De initialisatie van de SCEP-certificaatinschrijving voor WORKGROUP\DESKTOP-D36CRM4$ via https://INTC-KeyId-5e73c89aa3e902b272b9f0741f7d8730e3ec724a.microsoftaik.azure.net/templates/Aik/scep is mislukt: GetCACaps Methode: GET(62ms) Fase: GetCACaps De naam of het adres van de server kan niet worden omgezet 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (05/05/2017 11:06:59 AM) (Source: Perflib) (EventID: 1023) (User: ) Description: Kan DLL voor uitbreidbare items rdyboost niet laden. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de Windows-foutcode. Error: (05/05/2017 06:34:29 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Toegang geweigerd. . Error: (05/05/2017 06:26:15 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: plugin-container.exe, versie: 49.0.1.6109, tijdstempel: 0x57e44563 Naam van module met fout: mozglue.dll, versie: 49.0.1.6109, tijdstempel: 0x57e43eea Uitzonderingscode: 0x80000003 Foutmarge: 0x0000e846 Id van proces met fout: 0x2b64 Starttijd van toepassing met fout: 0x01d2c557b0babdd6 Pad naar toepassing met fout: C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe Pad naar module met fout: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll Rapport-id: a8a37b80-cf44-4637-99c0-36ef4e3f4e42 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (05/03/2017 05:40:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: WLANExt.exe, versie: 10.0.14393.0, tijdstempel: 0x57899aee Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x00007ff920cf7d35 Id van proces met fout: 0xa58 Starttijd van toepassing met fout: 0x01d2c4054762b550 Pad naar toepassing met fout: C:\WINDOWS\system32\WLANExt.exe Pad naar module met fout: unknown Rapport-id: 5fd270fd-2d52-488f-872f-a902a8b2ca87 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (05/03/2017 02:03:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-D36CRM4) Description: Het activeren van de app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (05/03/2017 09:25:32 AM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (05/03/2017 09:25:32 AM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (05/02/2017 04:48:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: De initialisatie van de SCEP-certificaatinschrijving voor WORKGROUP\DESKTOP-D36CRM4$ via https://INTC-KeyId-5e73c89aa3e902b272b9f0741f7d8730e3ec724a.microsoftaik.azure.net/templates/Aik/scep is mislukt: GetCACaps Methode: GET(16ms) Fase: GetCACaps De naam of het adres van de server kan niet worden omgezet 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (05/02/2017 10:52:10 AM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: DESKTOP-D36CRM4) Description: 7.488: Kan geen gebruiker inrichten voor EDP. Foutcode: 0x80070005. Systeemfouten: ============= Error: (05/05/2017 03:23:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:23:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:23:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:23:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:20:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:20:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 03:20:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} en APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 12:41:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-D36CRM4) Description: De server {0002DF02-0000-0000-C000-000000000046} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (05/05/2017 12:41:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/05/2017 12:29:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. CodeIntegrity: =================================== Date: 2017-05-05 15:26:20.067 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:24.017 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:23.453 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:21.391 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:19.278 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:19.246 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:19.116 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 15:23:18.035 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 12:32:10.080 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-05 12:32:10.004 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Percentage geheugen in gebruik: 21% Totaal fysiek RAM-geheugen: 16322.58 MB Beschikbaar fysiek RAM-geheugen: 12879 MB Totaal Virtueel geheugen: 17346.58 MB Beschikbaar Virtual geheugen: 13592.85 MB ==================== Schijven ================================ Drive c: (OS) (Fixed) (Total:237.72 GB) (Free:96.44 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:856.52 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: FA2B2035) Partition: GPT. ======================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: 1612617C) Partition: GPT. ==================== Eind van Addition.txt ============================