Extra scanresultaten van Farbar Recovery Scan Tool (x86) Versie: 03-10-2017 01 Gestart door thuis (05-10-2017 11:13:08) Gestart vanaf C:\Users\thuis\Desktop Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2016-07-11 19:08:54) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3651363734-1596917187-1413340531-500 - Administrator - Disabled) Gast (S-1-5-21-3651363734-1596917187-1413340531-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3651363734-1596917187-1413340531-1002 - Limited - Enabled) thuis (S-1-5-21-3651363734-1596917187-1413340531-1001 - Administrator - Enabled) => C:\Users\thuis ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) µTorrent (HKU\S-1-5-21-3651363734-1596917187-1413340531-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.) Apple Application Support (32-bit) (HKLM\...\{D2FE6376-E549-4F63-A2C5-CA24DA035DE4}) (Version: 5.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2A2C8640-5402-428A-909A-0236CB2B77C7}) (Version: 10.3.2.3 - Apple Inc.) Belgium e-ID middleware 4.2.8 (build 3252) (HKLM\...\{4DDF16AE-8D5D-4027-A2D1-8CBB498E3252}) (Version: 4.2.3252 - Belgian Government) Broadcom 802.11n Network Adapter (HKLM\...\{AFD36BF1-DA28-4702-A83F-C49D03199A0F}) (Version: 07.13.2006 - Broadcom) CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform) <==== AANDACHT cleaner 1.0.1 (HKLM\...\cleaner) (Version: - cleaner) <==== AANDACHT Creative Pack Volume 1 (HKLM\...\{05181A78-3BA6-4B63-BCE8-888A4BCAACFA}) (Version: 3.0.2 - Corel Corporation) D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DreamBoxEdit -- The one and only settings editor for your Dreambox (HKLM\...\DreamBoxEdit) (Version: - ) FMW 1 (HKLM\...\{A2B92392-DC17-416B-88F6-A6A55E053E32}) (Version: 1.143.3 - AVG Technologies) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden HP Support Solutions Framework (HKLM\...\{FEC61634-7B6D-4859-83FD-DDF2E76570F9}) (Version: 12.7.27.15 - HP Inc.) HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) hpbM176DSService (HKLM\...\{713783F8-91A6-4334-B79F-011844F326F6}) (Version: 001.001.08254 - Hewlett-Packard) Hidden HPLJDXPHelper (HKLM\...\{010788AB-706E-4604-A46B-6785EAB64B5E}) (Version: 140.069.007 - HP) Hidden HPLJUTCore (HKLM\...\{B445502B-2F83-4873-90F1-06059F71A46A}) (Version: 014.000.0001 - HP) Hidden hppLaserJetService (HKLM\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden hppM176LaserJetService (HKLM\...\{C79999B9-4522-470B-8A71-2355AA0C8B9B}) (Version: 001.032.00682 - Hewlett-Packard) Hidden hpStatusAlerts (HKLM\...\{7504A7B0-003E-4875-A454-B627E127E9D9}) (Version: 100.040.00218 - Hewlett Packard) Hidden ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Java 8 Update 131 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Junk Mail filter update (HKLM\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Lightscreen version 2.4 (HKLM\...\{4A59754E-D644-4F84-9768-41F68053F08E}_is1) (Version: 2.4 - Christian Kaiser) LJDXPHelperUI (HKLM\...\{DEB23FB1-04FF-44AC-98B5-EEB243D65A28}) (Version: 140.069.007 - HP) Hidden Mentor Graphics CAMCAD Runtime install (HKLM\...\{291F65CB-4D0E-48F3-8564-014B46C186B8}) (Version: 1.00.0000 - Mentor Graphics Corporation) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.7.02053 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (HKLM\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Notepad++ (32-bit x86) (HKLM\...\Notepad++) (Version: 7.4.1 - Notepad++ Team) Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) Spotnet (HKU\S-1-5-21-3651363734-1596917187-1413340531-1001\...\Spotnet) (Version: 2.0.0.261 - Spotnet) Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict) TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.83369 - TeamViewer) UltraISO Premium V9.61 (HKLM\...\UltraISO_is1) (Version: - ) VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN) WinRAR 5.50 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinSCP 5.7.7 (HKLM\...\winscp3_is1) (Version: 5.7.7 - Martin Prikryl) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{0002E005-0000-0000-C000-000000000046}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{1BCD446C-7095-11D0-9C4E-00AA00BDD685}\InprocServer32 -> C:\Windows\system32\REGTOOL5.DLL (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{1BE65FB1-CBF9-11D2-BBC7-00104B9E0792}\InprocServer32 -> C:\Windows\system32\sstbars2.ocx (Sheridan Software Systems, Inc.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{2453ADF3-EA0B-43AB-B5DC-D02C16989037}\InprocServer32 -> C:\Windows\system32\LayerListCtrl.ocx (Router Solutions Inc.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{38911D8E-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation ) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{38911D90-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation ) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{38911D92-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation ) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{442CA537-3660-401A-B42F-6778E9EFEE33}\InprocServer32 -> C:\Windows\system32\MLObj.ocx (TODO: ) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{74233DB3-F72F-44EA-94DC-258A624037E6}\InprocServer32 -> C:\Windows\system32\vsflex8n.ocx (ComponentOne) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{997E9623-3391-11D2-9DCF-00104B9E078A}\InprocServer32 -> C:\Windows\system32\sstran30.ocx (Infragistics, Inc.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{A7D17061-F3D9-4C0E-804C-72AD99AE8881}\InprocServer32 -> C:\Windows\system32\ZoomControl.ocx (Router Solutions, Inc.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{AD11711D-0847-101B-A580-767498095FF0}\InprocServer32 -> C:\Windows\system32\SBPRO532.OCX (Polar Engineering and Consulting) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{AD117121-0847-101B-A580-767498095FF0}\InprocServer32 -> C:\Windows\system32\SBPRO532.OCX (Polar Engineering and Consulting) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{AD117123-0847-101B-A580-767498095FF0}\InprocServer32 -> C:\Windows\system32\SBPRO532.OCX (Polar Engineering and Consulting) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> geen bestandpad CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{C0DDD4E0-570B-401B-962F-3CFF340A1C35}\InprocServer32 -> C:\Windows\system32\MLObj.ocx (TODO: ) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{C5DE3F82-3376-11D2-BAA4-04F205C10000}\InprocServer32 -> C:\Windows\system32\Vsflex6d.ocx (VideoSoft) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{C5DE3F86-3376-11D2-BAA4-04F205C10000}\InprocServer32 -> C:\Windows\system32\Vsflex6d.ocx (VideoSoft) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{C5DE3F87-3376-11D2-BAA4-04F205C10000}\InprocServer32 -> C:\Windows\system32\Vsflex6d.ocx (VideoSoft) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{D5DE8D20-5BB8-11D1-A1E3-00A0C90F2731}\InprocServer32 -> C:\Windows\system32\msvbvm60.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{D76D7126-4A96-11D3-BD95-D296DC2DD072}\InprocServer32 -> C:\Windows\system32\Vsflex7u.ocx (VideoSoft) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{E2585153-2883-11D2-B1DA-00104B9E0750}\InprocServer32 -> C:\Windows\system32\ssresz30.ocx (Sheridan Software Systems, Inc.) CustomCLSID: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2017-05-26] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2017-05-26] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2017-05-26] () ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\thuis\Desktop\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2017-05-26] () ContextMenuHandlers1: [ANotepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2016-11-27] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-14] (Alexander Roshal) ContextMenuHandlers1: [_MovaviSuite10] -> {9D700AB0-33CE-4ab3-BD66-3A73CC2CEDE3} => -> Geen bestand ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2014-01-02] (EZB Systems, Inc.) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\thuis\Desktop\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2014-01-02] (EZB Systems, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\thuis\Desktop\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2017-05-26] () ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files\UltraISO\isoshell.dll [2014-01-02] (EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-14] (Alexander Roshal) ContextMenuHandlers6: [_MovaviSuite10] -> {9D700AB0-33CE-4ab3-BD66-3A73CC2CEDE3} => -> Geen bestand ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0063A46C-44AF-4495-843D-F5B831EBFA36} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-16] (Google Inc.) Task: {0778DF60-9D2C-477A-AD05-3CF879DB459D} - System32\Tasks\{9CEEA1A6-8BAA-425B-926D-BE99E762B131} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/nl/abandoninstall?page=tsMain Task: {0A83F2F8-31E2-4811-96F9-35E6E233BD9C} - System32\Tasks\{FF2E075A-E181-46F6-B58A-D0A38E071435} => C:\Windows\system32\pcalua.exe -a C:\Windows\DiskPlayer\uninstall.exe -c "/U:C:\Program Files\DiskPlayer\Uninstall\uninstall.xml" Task: {138FD02C-189E-4DDD-8437-B9985907241E} - System32\Tasks\{960C2479-B263-43DD-A9A2-F3F1DE5CE0AF} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/nl/abandoninstall?page=tsMain Task: {182B3668-0349-49D9-A752-7B7FEF5613A4} - System32\Tasks\{8FF28318-62B2-46A3-AD2B-7819FDD7B369} => C:\Users\thuis\Desktop\app-find-vstarcam.exe Task: {214351CD-9433-4955-B866-122E6B089573} - System32\Tasks\{01B600AB-DC86-462D-8B92-E276C57791A6} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\ -c /autorun Task: {27E3AF3F-6443-4273-B264-7514194EC74E} - System32\Tasks\{59F3474D-ED71-4E37-9511-D0048972EF68} => C:\Users\thuis\Desktop\app-find-vstarcam.exe Task: {29984D49-7997-4630-A8CD-4E2310FFFB5C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.) Task: {2B2B7123-BFDF-4E24-B8FD-1396FB4CE123} - System32\Tasks\{52EDDEFA-DDC2-4A48-849C-EFE9CAC3A436} => C:\Windows\system32\pcalua.exe -a C:\Users\thuis\usb_driver\installer_x86.exe -d C:\Users\thuis\usb_driver -c "WinUSB_Generic_Device.inf" Task: {343491B8-9923-4ECA-A8B6-776753841643} - System32\Tasks\{A2178558-92FF-4477-92E4-CB8C6BA28C5C} => C:\Windows\system32\pcalua.exe -a C:\Users\thuis\Desktop\WLan_Driver_802.11n_Rel._4.80.28.7\80211n\engine32\DotNetInstaller.exe -d C:\Users\thuis\Desktop\WLan_Driver_802.11n_Rel._4.80.28.7\80211n\engine32 Task: {3485B431-6422-473A-9246-3DE72BC2771C} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) Task: {3C55455D-EEB8-4ACE-8E64-269603CD4A41} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe Task: {4022D44F-2022-4B5A-93AB-50AACFC61071} - System32\Tasks\HPCeeScheduleForthuis => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe Task: {40462C31-4578-491E-A78D-32DD40C190D2} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe Task: {47D9FC38-CB4F-46F7-8352-1B9AB719F07D} - System32\Tasks\{87F3A06C-ACED-4ADF-97E3-6AD1D90A6B6B} => C:\Windows\system32\pcalua.exe -a F:\BACKUP\dcce2_150\DCC_E2.exe Task: {4ADB9063-692F-4C4D-A94B-B254824626DF} - System32\Tasks\{B7EE8053-F310-4EA8-9C02-3204C6CA308A} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/nl/abandoninstall?page=tsMain Task: {5AC758D3-D280-48E8-AC84-00D01828FBB6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-16] (Piriform Ltd) Task: {6DFF331F-7D10-4755-8F0A-F872168AEF67} - System32\Tasks\{1F09DE7B-A185-4AE0-85A4-35D365D5CBAB} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/lt/abandoninstall?page=tsMain Task: {B54D038E-CEE0-49E7-996B-D6D56C94A71A} - System32\Tasks\HPLJCustParticipation => C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe [2014-10-19] (Hewlett Packard) Task: {B6F55257-8176-4FF8-B5C3-30FE7639BB7E} - System32\Tasks\{E0419266-A28F-4D0A-8690-5292392903D1} => C:\Windows\system32\pcalua.exe -a C:\Users\thuis\Desktop\dcce2_150\DCC_E2.exe -d C:\Users\thuis\Desktop\dcce2_150 Task: {BD5E53AE-A699-44F7-9F40-C8E2DDDE44B5} - System32\Tasks\{429C70DF-6DAE-4C26-8DB9-97648AB2C2D1} => C:\Users\thuis\Desktop\app-find-vstarcam.exe Task: {C49DBE9C-BFE4-4FEE-8F61-763A910E02C5} - System32\Tasks\{97DB51F5-7C9B-4000-BFAB-DBEC7A2D3017} => C:\Windows\system32\pcalua.exe -a "C:\Users\thuis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QL6E4Q84\JavaSetup8u121.exe" -d C:\Users\thuis\Desktop Task: {CEDE6F86-CBAE-42E9-92C7-2F03B1B1BC10} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {D02433D1-F2E1-4E0D-9A1E-1741E7B7D341} - System32\Tasks\{32F6A90F-2E27-41DA-81E6-83E06B31A725} => C:\Windows\system32\pcalua.exe -a C:\Users\thuis\Downloads\WinSetupFromUSB-1-8.exe -d C:\Users\thuis\Downloads Task: {D2701CB7-49D5-401E-9161-990718E8AA63} - System32\Tasks\{5B46769B-8218-43A8-9113-BC4FB72E48D9} => C:\Users\thuis\Downloads\NordVPNSetup.exe Task: {E11BE4E1-DF43-4602-B2A2-4F2D0CB12055} - System32\Tasks\{84C45012-00B2-4FCA-93BB-5196E403BD7B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\F-Secure\Uninstall\fsuninst.exe" -c /UninstRegKey:"F-Secure Anti-Virus" Task: {EAF6A1E7-CA8E-4FB7-8661-CCC18008A604} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-04-11] (Bitdefender) Task: {F1295EFD-7732-4583-8CEE-BD4E6D84A394} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-16] (Google Inc.) Task: {FC1A3107-19B1-4DBB-8FE5-9AA67B7FC134} - System32\Tasks\{F55A3C8C-A4CE-4E56-A666-AEBDAE0269AE} => "c:\program files\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/nl/abandoninstall?page=tsMain (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe Task: C:\Windows\Tasks\HPCeeScheduleForthuis.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\Windows\Tasks\{5B46769B-8218-43A8-9113-BC4FB72E48D9}.job => C:\Users\thuis\Downloads\NordVPNSetup.exeΖ/i C:\Users\thuis\AppData\Roaming\NordVPN\NordVPN 6.4.8\install\NordVPN Setup.msiAI_SETUPEXEPATH=C:\Users\thuis\Downloads\NordVPNSetup.exe SETUPEXEDIR=C:\Users\thuis\Downloads\ ADDLOCAL=Feature,Application,RequiredApplication_2 ACTION=Install PRIMARYFOLDER=APPDIR ROOTDRIVE=H:\ AI_PREREQFILES=\\?\C:\Users\thuis\AppData\Roaming\NordVPN\NordVPN\prerequisites\tap-windows-9.21.2-I601-default.exe AI_PREREQDIRS=C:\Users\thuis\AppData\Roaming\NordVPN AI_MISSING_PREREQS=Tap-NordVPN driver AI_FOUND_PREREQS=.NET Framework 4.5.2 (web installer)|Windows 7 x86 security update|Tap-NorVPN driver for Windows 10 AI_SETUPEXEPATH=C:\Users\thuis\Downloads\NordVPNSetup.exe SETUPEXEDIR=C:\Users\thuis\Downloads\ AI_CONTROL_VISUAL_STYLE=15925239;15138798;10395294;4108658 TARGETDIR=H:\ APPDIR=C:\Program Files\NordVPN\ AI_SETUPEXEPATH_ORIGINAL=C:\Users\thuis\Downloads\NordVPNSetup.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\thuis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7337fd9d5c1d999d\Make Notes.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" --app-id=cmgbghalpfijnkcooikfeoolfnllglkh ShortcutWithArgument: C:\Users\thuis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ==================== Geladen Modules (gefilterd) ============== 2017-07-13 20:51 - 2017-07-13 20:51 - 001041720 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-07-13 20:51 - 2017-07-13 20:51 - 000080184 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-05-26 03:18 - 2017-05-26 03:18 - 000408144 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll 2016-11-27 19:55 - 2016-11-27 19:55 - 000267952 _____ () C:\Program Files\Notepad++\NppShell_06.dll 2017-10-03 21:19 - 2017-09-21 06:57 - 003011928 _____ () C:\Program Files\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-10-03 21:19 - 2017-09-21 06:57 - 000086872 _____ () C:\Program Files\Google\Chrome\Application\61.0.3163.100\libegl.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\ProgramData:{34004D00-5100-3800-4500-650042004E00} [192] AlternateDataStreams: C:\ProgramData:{6F004C00-4500-7100-7100-2B0069007500} [640] AlternateDataStreams: C:\Users\All Users:{34004D00-5100-3800-4500-650042004E00} [192] AlternateDataStreams: C:\Users\All Users:{6F004C00-4500-7100-7100-2B0069007500} [640] AlternateDataStreams: C:\ProgramData\Application Data:{34004D00-5100-3800-4500-650042004E00} [192] AlternateDataStreams: C:\ProgramData\Application Data:{6F004C00-4500-7100-7100-2B0069007500} [640] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\.DEFAULT\...\amazon.com -> hxxps://amazon.com IE trusted site: HKU\S-1-5-21-3651363734-1596917187-1413340531-1001\...\amazon.com -> hxxps://amazon.com ==================== Hosts Inhoud: ========================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:04 - 2017-07-25 07:06 - 000001205 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 23.74.204.49 127.0.0.1 2.20.235.247 127.0.0.1 216.58.214.40 127.0.0.1 151.101.12.143 127.0.0.1 66.117.29.4 127.0.0.1 63.140.41.167 127.0.0.1 13.80.12.54 127.0.0.1 239.255.255.250 127.0.0.1 validation.sls.microsoft.com ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3651363734-1596917187-1413340531-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is uitgeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\Services: Amazon Assistant Service => 2 MSCONFIG\Services: bthserv => 3 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: hkmsvc => 3 MSCONFIG\Services: IEEtwCollectorService => 3 MSCONFIG\Services: ProductAgentService => 2 MSCONFIG\Services: SENS => 2 MSCONFIG\Services: SensrSvc => 3 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: TabletInputService => 3 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: wbengine => 3 MSCONFIG\Services: WcsPlugInService => 3 MSCONFIG\Services: WebClient => 3 MSCONFIG\Services: wlidsvc => 3 MSCONFIG\Services: WPCSvc => 3 MSCONFIG\startupreg: Adzworks => MSCONFIG\startupreg: BingSvc => C:\Users\thuis\AppData\Local\Microsoft\BingSvc\BingSvc.exe MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: HP Software Update => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: IpCamClient => MSCONFIG\startupreg: nppApplication => MSCONFIG\startupreg: StatusAlerts => "C:\Program Files\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{83719F23-7638-42E6-A8A7-C6A4A5511E21}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{9E6D04B1-0614-4320-B453-C4A3275DD719}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [UDP Query User{F5ED8E47-7A4A-4757-871E-9986A80E35D1}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [{C60C154F-F5F2-476D-817F-DFFE842B4800}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{23CBB82C-40A1-4B1E-9201-50CAB76ED8BD}] => (Allow) LPort=1688 FirewallRules: [{32F71513-600E-4E30-A0EA-3935113C062B}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{B1DC3EFD-3B91-48E1-8C1F-5D15B1D086FD}] => (Allow) LPort=2869 FirewallRules: [{13FF6B9D-1743-4EA5-9A66-60B4B1051A68}] => (Allow) LPort=1900 FirewallRules: [{B22F8735-5A3E-420D-A7C9-E9FE6CAADF34}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{F48B44FB-A3CA-40C8-BB8B-8B6F15866063}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [TCP Query User{B72E591F-2E53-4CCC-AE52-DDA3EF9F8EC5}F:\backup\dcce2_150\dcc_e2.exe] => (Allow) F:\backup\dcce2_150\dcc_e2.exe FirewallRules: [UDP Query User{54EF6870-21B5-44F8-B616-0DFC1A265FCD}F:\backup\dcce2_150\dcc_e2.exe] => (Allow) F:\backup\dcce2_150\dcc_e2.exe FirewallRules: [TCP Query User{8C563AE2-3918-4D03-B2B2-8E873E202F56}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{B1AFC837-1AE2-45AB-B3E1-8067A67BB7BC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{076A7315-40F4-4B40-9B0F-363471E80AA1}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{08690050-0D09-4E2A-86B8-460B6253975B}F:\backup\dcce2_150\dcc_e2.exe] => (Allow) F:\backup\dcce2_150\dcc_e2.exe FirewallRules: [UDP Query User{F5739701-7EE9-4CE2-A294-A7A427A27BDC}F:\backup\dcce2_150\dcc_e2.exe] => (Allow) F:\backup\dcce2_150\dcc_e2.exe FirewallRules: [{3E3D9F79-3464-4DB1-AFE1-3F4B0034EB10}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{62E31A18-2B3A-445E-A565-2FD582FA44B7}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1EEC87DE-D05D-4B91-8912-5AA0E5B8CF29}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{BF9478EC-E39E-4D05-ADC8-DC9198CD0F0D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C587B2B3-A937-478A-BC89-7F26CA106E6C}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{2717296A-63BD-4BE9-AEB2-685B4A022E6C}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{9F56E1D0-4620-48F7-B692-0E9F94D2BE8B}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{97DD4823-AAA0-4189-AA0F-8B0271701F4E}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{69650316-63A2-4486-9349-8FDA66743458}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{F47722D5-F373-4EDC-8DCF-87D015D497D2}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk.exe FirewallRules: [{70D9700F-E191-48CA-AA10-C518D6D5D9CF}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{3D705591-20F7-44AA-AB0C-02AFF1A2EC87}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{A59E2151-66B8-4220-9958-AAA74E5FAC5D}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{09833E35-38E5-42EC-8BD9-389C3B5F5E57}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{40F9A24F-F62C-4B66-8565-20F6FD995F48}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{B05103C1-9EFE-47DA-A769-02C79E6F7F99}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(1).exe FirewallRules: [{3417A74C-66FB-4C19-ABA5-E6D13AA1A105}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{1E7FC042-58E8-4EE7-B70F-61DA70B0DD0F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{C67FFFB8-E109-4D34-96CF-3EB94D412AFB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{E965271D-4379-4D7F-9DC1-A043A178DADA}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F8578037-8AF0-43DB-8C20-C0620EFDD08E}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(2).exe FirewallRules: [{417F2631-F026-4B7A-97E7-34769214D2ED}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(2).exe FirewallRules: [{A31070BF-91FC-45F7-B2B4-9ED0560B03DD}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(2).exe FirewallRules: [{9D6DB266-C610-4F59-A77B-B53DFFFB2072}] => (Allow) C:\Users\thuis\AppData\Roaming\Skype\My Skype Received Files\AnyDesk(2).exe FirewallRules: [{822680DC-E410-41FB-9F2D-5ED5877B9F34}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe FirewallRules: [{20EB2396-69FF-4D1D-BFF9-67B70C51E7AC}] => (Allow) C:\Program Files\HP\csiInstaller\7ef5f914-a8e1-4f35-8b91-5f5a3ea16c55\Installer\hpbcsiInstaller.exe FirewallRules: [{AAB6730F-2313-4AB1-8B99-00EDA0829EEC}] => (Allow) C:\Program Files\HP\csiInstaller\7ef5f914-a8e1-4f35-8b91-5f5a3ea16c55\Installer\hpbcsiInstaller.exe FirewallRules: [{37BAA338-DCE4-481B-A413-8AC86C28EF60}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{E4487E25-B7E7-4606-9A39-AE52743A8E2D}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{73C19373-ECE3-4254-B40E-07C60DE8EA19}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{D1C1A9C9-ECCC-408D-A165-A41B5971E38E}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{20FAC287-7C30-48D3-9A8A-B7D3075D44D4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{5151BFBC-4A9F-4558-B7FF-AC1E659E221D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{C15B0DF8-D454-478B-827A-E161B0166E95}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 17-09-2017 20:25:58 Installatie van apparaatstuurprogramma: TAP-Windows Provider V9 Netwerkadapters 21-09-2017 01:28:02 Removed Bonjour 21-09-2017 01:31:45 Removed iTunes 21-09-2017 13:22:36 Removed Apple Software Update 21-09-2017 13:51:58 Removed Creative Pack Volume 1. 22-09-2017 22:00:04 Installed Broadcom 802.11n Network Adapter 23-09-2017 21:42:30 Installed Broadcom 802.11n Network Adapter 01-10-2017 00:00:04 Gepland controlepunt 04-10-2017 06:38:35 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============= Name: Npcap Loopback Adapter Description: Microsoft Loopback-adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: msloop Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: PS/2-compatibele muis Description: PS/2-compatibele muis Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling-adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (10/05/2017 09:48:24 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma Skype.exe, versie 7.40.0.103 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 136c Starttijd: 01d33c7b11592544 Eindtijd: 26 Toepassingspad: C:\Program Files\Skype\Phone\Skype.exe Rapport-id: Error: (10/05/2017 09:48:17 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma DCC_E2.exe, versie 2.2.1.1 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 1780 Starttijd: 01d33d1f19754574 Eindtijd: 372 Toepassingspad: F:\BACKUP\dcce2_150\DCC_E2.exe Rapport-id: Error: (10/04/2017 03:59:16 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma DCC_E2.exe, versie 2.2.1.1 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 1450 Starttijd: 01d33d16f3771d89 Eindtijd: 12 Toepassingspad: F:\BACKUP\dcce2_150\DCC_E2.exe Rapport-id: Error: (10/04/2017 03:59:15 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma DCC_E2.exe, versie 2.2.1.1 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 1330 Starttijd: 01d33d00b64b6132 Eindtijd: 50 Toepassingspad: F:\BACKUP\dcce2_150\DCC_E2.exe Rapport-id: Error: (09/23/2017 09:42:28 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd. . Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces. Bewerking: Schrijvergegevens verzamelen Context: Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220} Naam van schrijver: System Writer Instantie-id van schrijver: {bf44476d-b2b2-401f-ae8f-27ec7ed65662} Error: (09/22/2017 10:00:04 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd. . Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces. Bewerking: Schrijvergegevens verzamelen Context: Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220} Naam van schrijver: System Writer Instantie-id van schrijver: {1ae78f94-54f2-4f4f-85fb-285d48c85c40} Error: (09/21/2017 01:52:38 PM) (Source: MsiInstaller) (EventID: 10005) (User: thuis-PC) Description: Product: Creative Pack Volume 1 -- Fout 2343. Specified path is empty. Error: (09/21/2017 01:52:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddWin32ServiceFiles: Unable to back up image of service Avast Antivirus since QueryServiceConfig API failed System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/21/2017 01:52:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddWin32ServiceFiles: Unable to back up image of service aswbIDSAgent since QueryServiceConfig API failed System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/21/2017 01:52:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary aswVmm. System Error: Het systeem kan het opgegeven bestand niet vinden. . Systeemfouten: ============= Error: (10/05/2017 09:50:59 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: De volgende opstartstuurprogramma's zijn niet geladen: VBoxNetAdp Error: (10/05/2017 09:48:43 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De TeamViewer 12-service is onverwacht gestopt. Dit is 2 keer gebeurd. De volgende herstelbewerking zal over 2000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (10/04/2017 03:56:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De TeamViewer 12-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 2000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (10/03/2017 10:28:13 PM) (Source: Disk) (EventID: 11) (User: ) Description: Het stuurprogramma heeft een controllerfout gevonden in \Device\Harddisk2\DR2. Error: (10/03/2017 10:28:13 PM) (Source: Disk) (EventID: 11) (User: ) Description: Het stuurprogramma heeft een controllerfout gevonden in \Device\Harddisk2\DR2. Error: (10/03/2017 10:28:12 PM) (Source: Disk) (EventID: 11) (User: ) Description: Het stuurprogramma heeft een controllerfout gevonden in \Device\Harddisk2\DR2. Error: (10/03/2017 10:28:12 PM) (Source: Disk) (EventID: 11) (User: ) Description: Het stuurprogramma heeft een controllerfout gevonden in \Device\Harddisk2\DR2. Error: (10/03/2017 09:05:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: De volgende opstartstuurprogramma's zijn niet geladen: VBoxNetAdp Error: (10/03/2017 09:01:26 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: De volgende opstartstuurprogramma's zijn niet geladen: VBoxNetAdp Error: (10/03/2017 09:01:03 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 20:58:08 op ‎3/‎10/‎2017 is onverwacht gebeurd. ==================== Geheugen info =========================== Processor: Pentium(R) Dual-Core CPU E5800 @ 3.20GHz Percentage geheugen in gebruik: 56% Totaal fysiek RAM-geheugen: 3519.25 MB Beschikbaar fysiek RAM-geheugen: 1530.99 MB Totaal Virtueel geheugen: 25036.82 MB Beschikbaar Virtual geheugen: 23162.54 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:232.88 GB) (Free:99.48 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)] Drive e: (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive f: () (Fixed) (Total:244.14 GB) (Free:188.37 GB) NTFS Drive h: (NieuwVolume) (Fixed) (Total:118.86 GB) (Free:20.51 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 55555555) Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3498F040) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=244.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=118.9 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================