Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 17-09-2017 01 Gestart door User (18-09-2017 15:16:05) Gestart vanaf C:\Users\User\Downloads Windows 10 Home Versie 1703 (X64) (2017-09-09 14:47:03) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3343125000-4275387369-4113740728-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3343125000-4275387369-4113740728-503 - Limited - Disabled) Gast (S-1-5-21-3343125000-4275387369-4113740728-501 - Limited - Disabled) Guest (S-1-5-21-3343125000-4275387369-4113740728-1005 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-3343125000-4275387369-4113740728-1004 - Limited - Enabled) User (S-1-5-21-3343125000-4275387369-4113740728-1000 - Administrator - Enabled) => C:\Users\User ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) ABN AMRO E.dentifier2 Software (HKLM-x32\...\{7FFDD64B-C182-41D6-AB43-257C07AE486A}) (Version: 03.10 - ABN AMRO BANK) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) AGEIA GAME System Software (HKLM-x32\...\{DEDF2885-0086-4534-9912-F9B97377ED07}) (Version: 2.7.3 - AGEIA Technologies) Agics Systemscan (HKLM-x32\...\{09C86167-844F-E93F-48E6-D6AA5F0EFCD8}) (Version: 2.1.3.3 - Agics) Albelli Fotoboeken (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: - Albelli) ANT Drivers Installer x64 (HKLM\...\{1B6B17C2-176C-433C-93F3-640D12825426}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apowersoft Phone Manager versie 2.7.6 (HKLM-x32\...\{4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1) (Version: 2.7.6 - APOWERSOFT LIMITED) Apple Application Support (32-bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 5.3.0.0 - Auslogics Labs Pty Ltd) AVG (HKLM\...\{BA40B3B4-7707-437E-84FF-8C18BE5AD9B6}) (Version: 1.211.2 - AVG Technologies) Hidden AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.6.3029 - AVG Technologies) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.8.510 - AVG Technologies) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BrytonBridge2 (HKLM-x32\...\{BA8123A4-34B4-44B8-B8E1-D36F0D0259C9}_is1) (Version: 2.4 - BrytonSport, Inc.) BrytonUpdate (HKLM-x32\...\{CF4B3534-FBC1-496F-9B04-72C8F85C3B5D}_is1) (Version: 1.0 - BrytonSport, Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform) CheckDrive (HKLM-x32\...\{B83513EC-2E4D-4621-816D-4CCF397BE702}_is1) (Version: 4.4 - Abelssoft) Citrix Receiver 4.7 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.7.0.13011 - Citrix Systems, Inc.) Compatibiliteitspakket voor het 2007 Microsoft Office system (HKLM-x32\...\{90120000-0020-0413-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Creative Live! Cam Center (HKLM-x32\...\Creative Live! Cam Center) (Version: - ) CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - Acro Software Inc.) CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2027.3 - Uw bedrijfsnaam) Hidden CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2027.3 - CyberLink Corp.) CyberLink PowerDirector 12 Content Pack Essential 12 (HKLM-x32\...\InstallShield_{7651DEE1-8B0D-41A0-90B8-D6D48380FE37}) (Version: 12 - CyberLink Corp.) CyberLink WaveEditor 2 (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.0.4203 - CyberLink Corp.) DeepBurner Pro v1.9.0.228 (HKLM-x32\...\{1AD22277-7A1E-71EC-B27D-EB7A22BED143}) (Version: - ) Dot4 (HKLM\...\{3EEDA265-C6F3-4EC1-A317-1C9315DEDDDE}) (Version: 1.0.0.0 - HP) Dropbox (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\Dropbox) (Version: 34.4.22 - Dropbox, Inc.) Duplicate Cleaner Free 3.2.3 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 3.2.3 - DigitalVolcano Software Ltd) <==== AANDACHT Elevated Installer (HKLM-x32\...\{BA007E03-72AE-4D2D-8A73-FA4B935D4015}) (Version: 5.4.1.0 - Garmin Ltd or its subsidiaries) Hidden Eraser 6.2.0.2960 (HKLM\...\{1035F889-15FF-4BC0-942E-750D8D67DC9C}) (Version: 6.2.2960 - The Eraser Project) EXIF ReName (HKLM-x32\...\EXIF ReName) (Version: 0.1.14 - Ceicer IT) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) FBackup 6 (HKLM-x32\...\{A091A9D0-F8DB-43B0-9BA7-FC6677867AAC}) (Version: 6.4.309 - Softland) Hidden FBackup 6.4 (HKLM-x32\...\{534675f1-7405-4674-aa1b-c96b9677b2fd}) (Version: 6.4.309.0 - Softland) FMW 1 (HKLM\...\{2B66FCDA-0BD6-47CC-8EC5-C2EA02E03EB2}) (Version: 1.224.4 - AVG Technologies) Hidden Garmin BaseCamp (HKLM-x32\...\{0D7C8884-192D-4E2D-A635-B282B3647E45}) (Version: 4.4.7 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{2f694ffe-66ec-4674-a32d-ec690281ca57}) (Version: 5.4.1.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{BCEE507D-8D49-40FF-B437-70E3B9C2D51C}) (Version: 5.4.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (HKLM-x32\...\{198E262D-8C4F-4131-91C7-1F81FB8688F1}) (Version: 5.4.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin USB Drivers (HKLM\...\{DC7720F2-98BE-41C1-B0A8-E391362E86B8}) (Version: 2.3.1.1 - Garmin Ltd or its subsidiaries) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.) Google Photos Backup (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden InfraRecorder 0.53 (x64 edition) (HKLM\...\{2C22EA92-CB30-4932-0053-000001000000}) (Version: 0.53.00.00 - Christian Kindahl) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.10.1372 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3215 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation) Intel(R) Smart Connect Technology 4.0 x64 (HKLM\...\{F0B32D5F-84F2-49D2-AD26-ECD25B3A5A72}) (Version: 4.0.41.2072 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.) Java 7 Update 6 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417006FF}) (Version: 7.0.60 - Oracle) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) KeePass Password Safe 2.34 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.34 - Dominik Reichl) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Editie 2003 (HKLM-x32\...\{91110413-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Windows Debugging Symbols (HKLM-x32\...\{0E8D886F-3205-4472-848E-990F400FF218}) (Version: 7601 - Microsoft) MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NewBlue Video Essentials for PowerDirector (HKLM\...\NewBlue Video Essentials for Cyberlink) (Version: 3.0 - NewBlue) NewBlue Video Essentials II for PowerDirector (HKLM\...\NewBlue Video Essentials II for Cyberlink) (Version: 3.0 - NewBlue) NewBlue Video Essentials III for PowerDirector (HKLM\...\NewBlue Video Essentials III for Cyberlink) (Version: 3.0 - NewBlue) Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.11.42 - Symantec Corporation) NVIDIA 3D Vision controllerstuurprogramma 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation) NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Online Plug-in (HKLM-x32\...\{EACEB844-8CDD-4F3B-9EA2-E299741D1652}) (Version: 14.7.0.13011 - Citrix Systems, Inc.) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PowerVoip (HKLM-x32\...\PowerVoip_is1) (Version: 4.14 build 744 - Finarea S.A. Switzerland) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6959 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform) RivaTuner Statistics Server 6.1.2 (HKLM-x32\...\RTSS) (Version: 6.1.2 - Unwinder) SafeNet MobilePASS (HKLM-x32\...\{70A88553-6B62-4B82-AC9E-8D225168FF77}) (Version: 8.4.2.80 - SafeNet, Inc.) Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15041.2 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC) Self-service Plug-in (HKLM-x32\...\{5D678EB8-64FD-4681-AACF-3D18FBCA77A3}) (Version: 4.7.0.15674 - Citrix Systems, Inc.) Hidden SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Sitecom WiFi USB adapter N300 (HKLM-x32\...\{9899B8B5-C656-4816-903C-29C4185BF674}) (Version: 1.5.22.0 - Sitecom Europe BV) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16104.4 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16104.4 - Samsung Electronics Co., Ltd.) SmartSound Common Data (HKLM-x32\...\{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.) Hidden SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.) SmartSound Quicktracks 5 (HKLM-x32\...\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Hidden SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) SubSync (HKLM-x32\...\ST6UNST #1) (Version: - ) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk) Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.018 - MSI) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) TreeSize Free V2.7 (HKLM-x32\...\TreeSize Free_is1) (Version: 2.7 - JAM Software) Viber (HKLM-x32\...\{DEA97A1F-52C4-4486-ABDE-1E598CA991DA}) (Version: 6.8.1.16 - Viber Media Inc.) Hidden Viber (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\{d34d9b99-1e03-4ffe-b932-83259a4f2e12}) (Version: 6.8.1.16 - Viber Media Inc.) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WhatsApp (HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\WhatsApp) (Version: 0.2.4240 - WhatsApp) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Write-N-Cite (HKLM-x32\...\Write-N-Cite) (Version: III - Refworks) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3343125000-4275387369-4113740728-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-09] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1-x32: [DeepBurner] -> {46CC93AA-C322-42dd-AA3A-CF9FC71D9871} => D:\program files\deepburner\DeepBurnerShellEx.dll [2004-12-20] () ContextMenuHandlers1-x32: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2014-10-21] (The Eraser Project) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\program files\winrar\rarext.dll [2013-12-01] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\program files\winrar\rarext32.dll [2013-12-01] (Alexander Roshal) ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2014-10-21] (The Eraser Project) ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers4-x32: [DeepBurner] -> {46CC93AA-C322-42dd-AA3A-CF9FC71D9871} => D:\program files\deepburner\DeepBurnerShellEx.dll [2004-12-20] () ContextMenuHandlers4-x32: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2014-10-21] (The Eraser Project) ContextMenuHandlers4-x32: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd) ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2014-10-21] (The Eraser Project) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-09-09] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2014-10-21] (The Eraser Project) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2014-03-14] (Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\program files\winrar\rarext.dll [2013-12-01] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\program files\winrar\rarext32.dll [2013-12-01] (Alexander Roshal) ContextMenuHandlers1_S-1-5-21-3343125000-4275387369-4113740728-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers4_S-1-5-21-3343125000-4275387369-4113740728-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers5_S-1-5-21-3343125000-4275387369-4113740728-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {08B76AF8-8711-450A-8B10-2C16A46AC146} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {0DDF91A4-3D2B-42B4-8A5C-1D41E4423F27} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {0EE7CCB3-09A6-4C84-9481-4027EFB00C5D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {10CE958D-D2C3-4655-9FC7-C47834F0B4F1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {13868A22-BECB-404D-A675-E219E54E83E9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {17A8D666-D4CE-4ABB-91F1-F4507698BEA3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {20DA1DB1-BC25-4E47-ABFE-515D64BAA401} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {22FB7BB1-4817-41F0-998F-71E64A3C54FD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2649700D-7915-4CC6-A926-D5CB2DE0F9C1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {27F50BB0-873D-4B2F-AB41-6D4600B09A85} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe [2014-01-30] (Symantec Corporation) Task: {2D27A562-09DE-4F5C-9482-F61F8605B98B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2EECBB3E-E995-4224-A4E3-3DFEEB80CF91} - System32\Tasks\SomotoUpdateCheckerAutoStart => C:\Users\User\AppData\Local\FilesFrog Update Checker\update_checker.exe <==== AANDACHT Task: {2F4A2C62-C6C3-44EE-AFE5-CB8A8C89E59F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {31879946-5C12-455D-9E37-FA2EE1C8D95E} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-05-18] () Task: {3D7B234A-DF41-44DF-AE8D-07B33A59A4E5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {3D80296A-8891-4A60-A1DB-912B1E5A82AE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {3FDF079B-00DD-4165-BA39-C11F88B6B406} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {434D5512-7659-476B-AADA-B24370313AE8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA1d259d0a7ac7d33 => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {4575B46C-A762-48FE-86A1-04AADC861C21} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {495E9F44-0940-4CC2-BD0D-0296437CEF73} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-13] (Google Inc.) Task: {4B49ECA3-4364-432C-9975-3C0E1D53A9DA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {4CA77B54-E714-4DFD-AD5A-B5C0E21C412A} - System32\Tasks\{4C843D8C-1D90-4445-B6BB-E67B33571E50} => C:\Windows\system32\pcalua.exe -a "D:\program files\BrytonBridge2\vcredist_x86.exe" -d "D:\program files\BrytonBridge2" Task: {52700DB1-999F-4829-AE67-427649E1FD4F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-13] (Google Inc.) Task: {52B7147F-FC9E-4F80-AA78-CC58272542A2} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {54100D1A-3C58-45DF-BCF9-5FB0D641C948} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5899FEFE-40F4-4216-9274-798FB07527D9} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5EB33B7E-645E-4744-9668-185FF2991DD7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {63170299-8E7B-4285-A8A5-380B33C22C95} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {6798A738-CA79-4F93-9D25-F718A07F25C8} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {6D86B439-5B92-4518-9615-BDC34B8BDA18} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-13] (Facebook Inc.) Task: {730D9C63-7EB4-40AE-831E-93C60B8E37EA} - System32\Tasks\{0AA10673-4C71-43FF-A2B4-41F81C13B5C2} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\LCTRL_PCAPP_LA_1_01_13.exe -d C:\Users\User\Downloads Task: {77DFD819-B647-46CB-9EE7-E95E5E1B23DA} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-09-09] (AVG Technologies CZ, s.r.o.) Task: {83604B6A-D87B-4318-A96E-B319633F9350} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {8AD71BD0-BBE3-4B95-B6AD-1EC11BE85208} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: {9806D6D4-FC7C-4D3B-91B8-E07921AD288A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {988A4EF5-2706-4D84-8EA3-753708C0749C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A40529CB-2CE0-4D13-9628-BC4DA157207E} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {AA953F53-D80B-42CC-9ECD-59174E1423CB} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core1d238f13795c1ec => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-07] (Dropbox, Inc.) Task: {B1CC1C12-E6A0-409F-9FBA-C12CE4CA4CF7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {B280F08B-CBB7-4574-BE23-D98F62DED96A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-02-13] (Facebook Inc.) Task: {B5C17FF4-B4EF-4452-A9FD-BC05FF49ABA5} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Geen bestand <==== AANDACHT Task: {B6174F49-1F24-486D-B5E8-C8C83D4C9AEA} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {BA0E2553-5C01-4919-98E9-A78EA771788F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {C2897B59-7EFF-454B-A97E-B58480A125D8} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA1d238f1379faf69 => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-07] (Dropbox, Inc.) Task: {D42DFFA7-7DD3-4923-8D44-D68A993EE4F0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Geen bestand <==== AANDACHT Task: {DE577320-115B-4EA2-BD5E-B2C8A7238116} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {DF2A0B82-ACEF-4DDD-B685-245166447A82} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {E1C7747D-DE03-4913-ADBC-0E9D73AEEB4F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-18] (Adobe Systems Incorporated) Task: {E28BA386-8B1A-46E6-B2E2-3B5764F51261} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E37580B4-0A29-40E7-8374-671B1E8BB6EF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {E4BAB474-B8E3-4D64-AE44-C7A293512536} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E5A539DF-CC86-4AF5-9B91-2F75642787AD} - \Advanced System Protector -> Geen bestand <==== AANDACHT Task: {E66F1983-52FB-4CF0-AC69-A53567995D13} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {E954656C-5C1A-486F-89F0-AFA51F6AB53A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd) Task: {EDBA7C09-D57A-419F-AF8D-223E7DCAD825} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core1d259d0a7a4c6a4 => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {EDFCAD6D-4FA5-4EF9-B15C-4155B88912AA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Geen bestand <==== AANDACHT Task: {F3842087-6D71-4FFB-A251-488772C9325D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {FC2CCD06-0451-41D8-9A72-D8B4AB39D707} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FC644D12-D931-4316-9E36-4D1C0E424542} - System32\Tasks\{A7C8BE84-7645-49D3-BF6A-8A1EA4A2A366} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Downloads\chromeinstall-8u25 (1).exe" -d C:\Users\User\Downloads (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core1d238f13795c1ec.job => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA1d238f1379faf69.job => C:\Users\User\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA.job => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3343125000-4275387369-4113740728-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2017-07-10 09:31 - 2017-07-26 09:08 - 000981576 ____N () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe 2015-06-12 18:55 - 2013-10-23 15:24 - 000087600 _____ () C:\WINDOWS\System32\cpwmon64.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-07-05 16:15 - 2012-08-28 09:52 - 000311296 _____ () C:\Program Files (x86)\Sitecom Europe BV\Sitecom WiFi USB adapter N300\WPSHWPBC.exe 2014-02-20 01:45 - 2012-08-08 22:36 - 000390672 _____ () C:\Program Files\Cyberlink\Shared files\RichVideo64.exe 2014-02-20 01:45 - 2012-08-08 22:36 - 000024080 _____ () C:\Program Files\Cyberlink\Shared files\RichVideops64.dll 2015-04-18 17:08 - 2016-02-26 20:14 - 000068096 _____ () C:\Program Files (x86)\BrytonBridge2\BBService.exe 2016-07-31 13:57 - 2016-02-26 20:13 - 001336832 _____ () C:\Program Files (x86)\BrytonBridge2\BBDaemon.exe 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 22:59 - 2017-03-20 05:56 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-09-13 10:31 - 2017-09-04 10:12 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libglesv2.dll 2017-09-13 10:31 - 2017-09-04 10:12 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libegl.dll 2014-09-03 08:40 - 2017-07-26 09:08 - 002184776 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe 2017-09-09 09:53 - 2017-09-09 09:55 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-09-09 09:53 - 2017-09-09 09:55 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-09-09 09:53 - 2017-09-09 09:55 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-09-09 09:53 - 2017-09-09 09:55 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000068528 _____ () C:\Program Files (x86)\AVG\Antivirus\x64\module_lifetime.dll 2017-02-14 09:42 - 2017-02-14 09:42 - 000326144 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\GpsImgWrapper.dll 2017-05-18 10:56 - 2017-05-18 10:56 - 000073216 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\FixBootSector.dll 2017-01-26 11:58 - 2017-01-26 11:58 - 000499200 ____R () D:\program files\FB backup\bResourceStrings.bpl 2014-02-06 02:56 - 2013-05-17 01:06 - 001199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-04-18 17:08 - 2016-02-26 20:14 - 001061888 _____ () C:\Program Files (x86)\BrytonBridge2\PythonQt.dll 2015-04-18 17:08 - 2016-02-26 20:14 - 000041472 _____ () C:\Program Files (x86)\BrytonBridge2\HeraLib.dll 2016-07-31 13:58 - 2016-02-26 20:14 - 000087040 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_ctypes.pyd 2016-07-31 13:58 - 2016-02-26 20:14 - 000044032 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_socket.pyd 2016-07-31 13:58 - 2016-02-26 20:14 - 000865792 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_ssl.pyd 2016-07-31 13:58 - 2016-02-26 20:14 - 000010240 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\select.pyd 2016-07-31 13:58 - 2016-02-26 20:14 - 000356352 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_hashlib.pyd 2016-07-31 13:58 - 2016-02-26 20:14 - 000686080 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\unicodedata.pyd 2015-09-03 15:47 - 2016-01-12 06:43 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-11-28 13:52 - 2016-11-28 13:52 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000168216 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000060160 _____ () C:\Program Files (x86)\AVG\Antivirus\module_lifetime.dll 2017-07-12 01:10 - 2017-07-12 01:10 - 067109376 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000213024 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000243080 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll 2017-09-09 09:32 - 2017-09-09 09:32 - 000686808 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll 2009-02-26 11:45 - 2009-02-26 11:45 - 000024912 _____ () C:\Program Files (x86)\Microsoft Office\Office12\Wordcnvpxy.cnv 2017-01-12 02:13 - 2017-01-12 02:13 - 003190016 _____ () C:\Program Files (x86)\Citrix\ICA Client\coreavc_sdk.dll 2016-10-19 18:19 - 2016-10-19 18:19 - 001129472 _____ () C:\Program Files (x86)\Citrix\ICA Client\avcodec-57.dll 2016-10-19 18:19 - 2016-10-19 18:19 - 000552448 _____ () C:\Program Files (x86)\Citrix\ICA Client\avutil-55.dll 2016-10-19 18:19 - 2016-10-19 18:19 - 000486400 _____ () C:\Program Files (x86)\Citrix\ICA Client\swscale-4.dll 2017-02-15 17:57 - 2017-02-15 17:57 - 000083056 _____ () C:\Program Files (x86)\Citrix\ICA Client\vdclipn.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows Photo Viewer\Achtergrond van Windows Photo Viewer.jpg DNS Servers: 213.46.228.196 - 62.179.104.196 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BrytonBridge2.lnk => C:\Windows\pss\BrytonBridge2.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: Eraser => "C:\Program Files\Eraser\Eraser.exe" /atRestart MSCONFIG\startupreg: Facebook Update => "C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\User\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart MSCONFIG\startupreg: PowerVoip => "C:\Program Files (x86)\PowerVoip.com\PowerVoip\powervoip.exe" -nosplash -minimized MSCONFIG\startupreg: QuickTime Task => "D:\program files\quicktime\QTTask.exe" -atboottime MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s MSCONFIG\startupreg: SandboxieControl => "D:\program files\sandboxie\SbieCtrl.exe" MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKLM\...\StartupApproved\StartupFolder: => "BrytonBridge2.lnk" HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad" HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\StartupApproved\StartupFolder: => "Dropbox.lnk" HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\StartupApproved\Run: => "Dropbox Update" HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\StartupApproved\Run: => "FBackup 6 Tray Agent" HKU\S-1-5-21-3343125000-4275387369-4113740728-1000\...\StartupApproved\Run: => "Viber" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{CF9A359E-422C-4981-96C3-24BE0AA80A6F}] => (Allow) D:\program files\FB backup\bRestore.exe FirewallRules: [{4144419E-2CD6-42D5-8BE0-86A2D051544D}] => (Allow) D:\program files\FB backup\bTest.exe FirewallRules: [{42CFDE9C-6034-492A-B739-F6B501A4D3AF}] => (Allow) D:\program files\FB backup\bBackup.exe FirewallRules: [{DBD61974-BBDC-497B-B567-8ECCD11754CC}] => (Allow) D:\program files\FB backup\FBackup.exe FirewallRules: [{1DC6235F-01C9-46E5-9535-4772D0FA5ED3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{16F0F99C-7364-43CB-B6F1-B0751EB27AF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FDFD1896-79DF-4B99-9F4F-EEFE795D5C08}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{AEDCD2F1-E1A0-4FDE-9F87-C3C5F287A07C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A26392B1-FD3E-4D26-B4BE-A6E410D41280}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{2E4C95FD-2D11-4BC7-95E6-E1D28DF7EF08}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe FirewallRules: [{C517E72D-2A1B-46EE-8F00-C8D8BBD2E573}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe FirewallRules: [{1F035A29-D491-4AA8-88C1-ACB299A65C92}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com FirewallRules: [{67912A48-244C-4D19-97EF-BBF62E9F29D7}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe FirewallRules: [{3F3B8BA2-FCA9-4432-9F43-E98B4554C3C7}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe FirewallRules: [{568844A5-5F12-4B74-86CF-C300F2E41B54}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com FirewallRules: [{0093C084-D8C6-4857-84FF-C83EB21191C0}] => (Allow) C:\Users\User\Downloads\Download Wifi Hulp voor Windows.exe FirewallRules: [{729C1C1A-A661-4991-8BB6-B62770A33F8E}] => (Allow) C:\Users\User\Downloads\Download Wifi Hulp voor Windows.exe FirewallRules: [{3EEBC4F0-FC85-40BC-A670-CC6585F5BB55}] => (Allow) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{F7AAE8BD-A519-4E38-BDBB-CEB3A9DE65B8}] => (Allow) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [UDP Query User{CE86B4D5-9A1E-4B7A-82AD-66F7E2A9444B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{42C1F30B-9F9B-42CA-9E52-B67287D61304}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{7C84E05A-99A5-4523-B559-CAD8E6BEAF0B}C:\program files (x86)\agics\agics systemscan\systemscan.exe] => (Allow) C:\program files (x86)\agics\agics systemscan\systemscan.exe FirewallRules: [TCP Query User{8967A228-AD2D-44A9-9720-D5EB7DAC65B6}C:\program files (x86)\agics\agics systemscan\systemscan.exe] => (Allow) C:\program files (x86)\agics\agics systemscan\systemscan.exe FirewallRules: [UDP Query User{7C995BFB-1FF3-4F7C-A29E-5E600CA1CADA}C:\users\user\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\user\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [TCP Query User{D4A1D518-89BC-4BCA-8002-F8917AF59393}C:\users\user\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\user\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{A4481538-CF76-4844-A6CC-48E104A09506}] => (Allow) C:\Users\User\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{C61C6B19-DF7D-4D18-B892-90C7B000A961}] => (Allow) LPort=7000 FirewallRules: [{EC993B7E-5BFF-4DBC-8428-4231654A57CD}] => (Allow) LPort=7000 FirewallRules: [UDP Query User{347400F8-94BB-432D-9A29-9AF8AF5A6F45}C:\program files (x86)\powervoip.com\powervoip\powervoip.exe] => (Allow) C:\program files (x86)\powervoip.com\powervoip\powervoip.exe FirewallRules: [TCP Query User{B3F09458-3CC0-452A-8C67-804B371DE37F}C:\program files (x86)\powervoip.com\powervoip\powervoip.exe] => (Allow) C:\program files (x86)\powervoip.com\powervoip\powervoip.exe FirewallRules: [UDP Query User{31874A98-025B-4456-B37E-E3790E003D23}C:\program files (x86)\powervoip.com\powervoip\powervoip.exe] => (Allow) C:\program files (x86)\powervoip.com\powervoip\powervoip.exe FirewallRules: [TCP Query User{B0E19F11-13D3-4DEF-9208-7A2510539421}C:\program files (x86)\powervoip.com\powervoip\powervoip.exe] => (Allow) C:\program files (x86)\powervoip.com\powervoip\powervoip.exe FirewallRules: [{267CBD01-344B-4D0B-AABC-0AC9F77A42D8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{BDE530EE-CC3F-4A2A-9C3C-E2D20427EF03}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe FirewallRules: [{381E6F89-E8D5-45E7-AB2C-650BFBDDA582}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe FirewallRules: [{F25967C9-DA6E-4F57-97BF-E857E7355BA3}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{B987880D-D54A-4B2F-ABDD-2383F6C7D0AF}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{F8BA29B7-39E9-4CEA-BF68-DD90B23AB2CF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5C90D41E-3253-4F15-AEA4-202BD843D92B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{77F1246B-BDD3-4777-B962-3C1B86AA1418}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B125054D-A1B5-4838-81D5-4895FFA460CB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{9C98A6A1-3793-45A9-B6CB-20F87494A4C0}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{DFD84D8A-81D3-46B3-B1EC-A14CA0DFED86}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= AANDACHT: Systeemherstel is uitgeschakeld ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (09/18/2017 01:20:07 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 296812 Error: (09/18/2017 01:20:07 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 296812 Error: (09/18/2017 01:20:07 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/18/2017 01:09:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2328 Error: (09/18/2017 01:09:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2328 Error: (09/18/2017 01:09:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/17/2017 07:00:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1109 Error: (09/17/2017 07:00:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1109 Error: (09/17/2017 07:00:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/17/2017 06:12:13 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1094 Systeemfouten: ============= Error: (09/16/2017 02:48:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/16/2017 02:48:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/16/2017 02:48:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/16/2017 02:48:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/16/2017 02:47:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De NVIDIA Display Container LS-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 1000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (09/15/2017 04:52:15 PM) (Source: DCOM) (EventID: 10010) (User: User-PC) Description: De server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/15/2017 10:23:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De App Readiness-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/15/2017 10:23:43 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/15/2017 10:23:43 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (09/15/2017 10:22:36 AM) (Source: SbieSvc) (EventID: 9234) (User: ) Description: SBIE9234 Service startup error level 9153 status=C0000001 error=-1073741823 CodeIntegrity: =================================== Date: 2017-09-15 14:15:15.959 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:15:15.859 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:15:15.497 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:15:15.465 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:15:12.388 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:15:11.839 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:03:13.662 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:03:13.639 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:03:13.588 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-09-15 14:03:13.580 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz Percentage geheugen in gebruik: 51% Totaal fysiek RAM-geheugen: 8136.07 MB Beschikbaar fysiek RAM-geheugen: 3943.21 MB Totaal Virtueel geheugen: 8780.14 MB Beschikbaar Virtual geheugen: 1666.32 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:110.85 GB) (Free:36.77 GB) NTFS Drive d: () (Fixed) (Total:931.51 GB) (Free:424.7 GB) NTFS Drive h: (Elements) (Fixed) (Total:1863.02 GB) (Free:1298.64 GB) NTFS Drive i: (CANON) (Removable) (Total:7.4 GB) (Free:7.24 GB) FAT32 ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: FB845F27) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=861 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: FB845F52) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 3.3 MB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 3 (Size: 7.4 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 4 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 00078C05) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================