Extra scanresultaten van Farbar Recovery Scan Tool (x86) Versie: 26-10-2017 Gestart door Glowing Starter (27-10-2017 11:15:16) Gestart vanaf C:\Users\Glowing Starter\Desktop Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-06-01 12:46:26) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-70928346-524487458-456366203-500 - Administrator - Disabled) Gast (S-1-5-21-70928346-524487458-456366203-501 - Limited - Disabled) Glowing Starter (S-1-5-21-70928346-524487458-456366203-1000 - Administrator - Enabled) => C:\Users\Glowing Starter HomeGroupUser$ (S-1-5-21-70928346-524487458-456366203-1005 - Limited - Enabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Microsoft Security Essentials (Enabled - Up to date) {108DAC43-C256-20B7-BB05-914135DA5160} AV: Norman Security Suite (Disabled - Up to date) {D038CA80-26F3-90BF-94AA-03C4D945E661} AS: Norman Security Suite (Disabled - Up to date) {6B592B64-00C9-9F31-AE1A-38B6A2C2ACDC} AS: Microsoft Security Essentials (Enabled - Up to date) {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Aangifte inkomstenbelasting 2013 (HKLM\...\Aangifte inkomstenbelasting 2013) (Version: - Belastingdienst) Adobe Acrobat Reader DC - Nederlands (HKLM\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe Digital Editions 4.5 (HKLM\...\Adobe Digital Editions 4.5) (Version: 4.5.0 - Adobe Systems Incorporated) Adobe Flash Player 27 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 27.0.0.183 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 27.0.0.170 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.) Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.) BibleWorks 8 (HKLM\...\{B038A58E-EAF0-44CB-ADCA-3895ECD0812D}) (Version: 1.00.000 - BibleWorks) BisonCam (HKLM\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 6.96.1728.10.9 - BisonCam) CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform) Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dropbox (HKU\S-1-5-21-70928346-524487458-456366203-1000\...\Dropbox) (Version: 37.4.29 - Dropbox, Inc.) f.lux (HKU\S-1-5-21-70928346-524487458-456366203-1000\...\Flux) (Version: - f.lux Software LLC) Filternet (HKLM\...\{D43F5471-28BA-4CEF-A8D8-CF84D8BB0E17}) (Version: - ) Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 8.5.2.2 - Sentelic) Google Chrome (HKLM\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software) Hotkey 3.0021 (HKLM\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 3.00.0021 - NoteBook) Hidden Hotkey 3.0021 (HKLM\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 3.00.0021 - NoteBook) HP ENVY 5530 series Basissoftware van het apparaat (HKLM\...\{6560F669-8994-4DC0-8FB7-8342C6623176}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) HP ENVY 5530 series Help (HKLM\...\{35A1FA23-AD44-4E6E-9CFD-AAC967677B13}) (Version: 30.0.0 - Hewlett Packard) HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - ) HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2202 - Intel Corporation) Java 8 Update 151 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.34.2 - JMicron Technology Corp.) Junk Mail filter update (HKLM\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Liedboek Concordantie v 1.6 voor Windows (HKLM\...\{F39759AE-2F69-489B-9CF4-6D3A8F24EE2E}_is1) (Version: 1.6 - Uitgeverij Boekencentrum) Logos Bible Software (HKLM\...\{2D6D8EB1-9674-4B3F-9E08-D85AAA573946}) (Version: 6.128.59 - Faithlife Corporation) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-70928346-524487458-456366203-1000\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation) Microsoft OneNote Home and Student 2016 - en-us (HKLM\...\OneNoteFreeRetail - en-us) (Version: 16.0.8528.2139 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (HKLM\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.4.0.6486 - Mozilla) Mozilla Thunderbird 52.4.0 (x86 nl) (HKLM\...\Mozilla Thunderbird 52.4.0 (x86 nl)) (Version: 52.4.0 - Mozilla) Nero 7 Essentials (HKLM\...\{F63C7908-08EA-46F5-9EDF-DFF9FD231043}) (Version: 7.02.5016 - Nero AG) NirSoft BlueScreenView (HKLM\...\NirSoft BlueScreenView) (Version: - ) Norton Security (HKLM\...\NS) (Version: 22.11.0.41 - Symantec Corporation) Octoshape add-in for Adobe Flash Player (HKU\S-1-5-21-70928346-524487458-456366203-1000\...\Octoshape add-in for Adobe Flash Player) (Version: - ) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8528.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.8528.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden OGA Notifier 2.0.0048.0 (HKLM\...\{B2544A03-10D0-4E5E-BA69-0362FFC20D18}) (Version: 2.0.0048.0 - Microsoft Corporation) Hidden PDFill FREE PDF Editor Basic (HKLM\...\{D1399216-81B2-457C-A0F7-73B9A2EF6902}) (Version: 14.0 - PlotSoft LLC) Photo Transport (HKLM\...\{CDC7F188-3A08-45C3-8C3C-99BE32911949}) (Version: 1.0.2 - CASIO COMPUTER CO., LTD.) Productverbeteringsonderzoek voor HP ENVY 5530 series (HKLM\...\{A383DE56-BA80-4128-8A14-5C052608B29B}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5943 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0126 - REALTEK Semiconductor Corp.) REOptimizer (HKU\S-1-5-21-70928346-524487458-456366203-1000\...\REOptimizer) (Version: - ) Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) trotux - Uninstall (HKLM\...\{7828879E-BAE9-4620-A979-9F6FCD1A8055}) (Version: - ) <==== AANDACHT Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update voor Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0413-0000-0000000FF1CE}_HOMESTUDENTR_{5CF7002F-6F49-4482-9564-5614FBE560FA}) (Version: - Microsoft) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0413-0000-0000000FF1CE}_HOMESTUDENTR_{15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}) (Version: - Microsoft) Update voor Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0413-0000-0000000FF1CE}_HOMESTUDENTR_{A66AE6A1-8D8C-4102-BC18-38CBDE40F809}) (Version: - Microsoft) VideoCam Suite (HKLM\...\{5F638781-7754-411F-974C-F20F27292E24}) (Version: 1.00.000 - Panasonic) Hidden Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR (HKLM\...\WinRAR archiver) (Version: - ) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{1FDDE0F5-2C2A-4FEF-B041-6C759464E9DA}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Local\Logos\System\L4SmrtTg.dll (Logos Bible Software) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{319A0316-DF84-4B3C-8117-349B7E98E613}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Logos\System\LogosCom.exe (Faithlife Corporation) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{449CFB1B-1C07-48EA-9A9A-7A7881C2B49B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\psuser.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{7FECCC6D-DB56-4D73-B28D-11EE159FF2F7}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Local\Logos\System\L4SmrtTg.dll (Logos Bible Software) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{E7A37920-253C-4FF1-B169-298A7CE6CAA9}\localserver32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-70928346-524487458-456366203-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\1.3.59.1\psuser.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.11.0.41\buShell.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.11.0.41\NavShExt.dll [2017-10-04] (Symantec Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers1_S-1-5-21-70928346-524487458-456366203-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers4_S-1-5-21-70928346-524487458-456366203-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers5_S-1-5-21-70928346-524487458-456366203-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2017-10-17] (Dropbox, Inc.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0A819DEB-7EF0-4153-BFAB-63FD4B822BB3} - System32\Tasks\Muvotionatfesy Log => C:\Program Files\Ansithershalopy\wudother.exe [2016-09-27] (Glarysoft Ltd) Task: {2A836A31-84DA-40F3-99DF-F92EF2E545D1} - System32\Tasks\{2961EA2E-DE8B-46B1-8923-D8382D47CC02} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\ Task: {3A68EFDD-2777-4978-9AC5-F7806D100C50} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe Task: {452EA210-BB0C-47BA-803D-97425D9F11A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-30] (Google Inc.) Task: {50570973-65F8-44DA-BDC2-E0ECE04487AA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {852431A2-C6A6-4FA3-8A5D-762B6BA8EA8C} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.11.0.41\SymErr.exe [2017-10-04] (Symantec Corporation) Task: {88B06E85-AD5C-4493-809E-6B052B9EAB19} - System32\Tasks\{E2F86A55-F45F-4F93-9DED-9FA795006F76} => C:\Windows\system32\pcalua.exe -a D:\games\VirtualHottie2\Setup.exe -d D:\games\VirtualHottie2 Task: {8963E97A-6E14-47DB-99CB-D6C21E0A2D9A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-27] (Adobe Systems Incorporated) Task: {89D0BD5F-2D64-46B9-BDCA-0D21FFD45B2A} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {9488168A-B2DC-4C96-A350-1F4DA9F4957C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-70928346-524487458-456366203-1000Core => C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.) Task: {96CFCA8A-B64A-4990-AE49-D7F45F01B98C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd) Task: {98DE6933-3778-4E83-BB93-E13CC3930F48} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.11.0.41\SymErr.exe [2017-10-04] (Symantec Corporation) Task: {99E76259-90CA-40FF-BED6-F019D29A584A} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.11.0.41\WSCStub.exe [2017-10-04] (Symantec Corporation) Task: {9C270E11-A90D-47F5-B72B-F94BB4EB3324} - System32\Tasks\{56432B7F-354E-412F-ADAA-502F5B378332} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Virtual Hottie 2\Default\Setup.exe" -d "C:\Program Files\Virtual Hottie 2\Default" Task: {A01816BE-3D14-498A-AA1A-789FA52C2784} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-70928346-524487458-456366203-1000UA => C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.) Task: {AA9327DA-42F8-4976-8BA3-43A40BC2FC26} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-20] () Task: {AC409066-E6FB-4F69-A52F-752FDA20FB4F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-20] () Task: {D71D0780-1B4D-4978-A8BD-3F70B447E21E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-30] (Google Inc.) Task: {D891E7A4-F906-4568-9671-9581D6663A0B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-12] (Microsoft Corporation) Task: {DFF313FD-EC61-47F2-A0CC-5D86FFDFD767} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2017-10-04] (Symantec Corporation) Task: {E5CE32C9-3740-4B4A-B569-1A63EF23E4E4} - System32\Tasks\{310DD241-2D5A-4FB9-B4FF-169FCD5351AB} => C:\Windows\system32\pcalua.exe -a "C:\Users\Glowing Starter\Downloads\ID_CS2_UE_NonRet.exe" -d "C:\Users\Glowing Starter\Downloads" Task: {E8B419BE-D120-4FF4-8F15-765E37C95913} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-12] (Microsoft Corporation) Task: {FFBB2F9E-BD6D-47AE-AE1C-4264F14D6E3B} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-70928346-524487458-456366203-1000Core.job => C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-70928346-524487458-456366203-1000UA.job => C:\Users\Glowing Starter\AppData\Local\Dropbox\Update\DropboxUpdate.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Glowing Starter\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ==================== Geladen Modules (gefilterd) ============== 2014-03-14 20:26 - 2012-08-31 16:01 - 000151552 _____ () C:\Windows\System32\HP1100LM.DLL 2013-03-16 21:17 - 2012-08-31 16:01 - 000069632 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\HP1100PP.DLL 2010-06-01 15:25 - 2009-02-18 21:57 - 000028672 _____ () C:\Program Files\BisonCam\KBHookDLL.dll 2011-08-10 18:56 - 2010-03-15 11:28 - 000141824 _____ () C:\Program Files\WinRAR\rarext.dll 2009-10-06 17:31 - 2009-10-06 17:31 - 000031744 _____ () C:\Program Files\Hotkey\PowerBiosServer.exe 2010-06-01 14:52 - 2009-08-31 06:43 - 000053248 _____ () C:\Program Files\FSP\KbdHook.dll 2010-06-01 14:52 - 2009-08-31 06:43 - 000073728 _____ () C:\Program Files\FSP\FspLib.dll 2009-10-06 16:54 - 2009-10-06 16:54 - 002409984 _____ () C:\Program Files\Hotkey\Hotkey.exe 2009-06-06 14:50 - 2009-06-06 14:50 - 000019968 _____ () C:\Program Files\Hotkey\Audiodll.dll 2006-12-11 02:10 - 2006-12-11 02:10 - 000049152 _____ () C:\Program Files\Hotkey\AudioControlDLL.dll 2017-09-07 18:12 - 2017-09-07 18:12 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2017-10-20 11:58 - 2017-10-17 17:48 - 000771904 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll 2017-10-20 11:58 - 2017-10-17 17:48 - 001804608 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll 2017-10-20 11:58 - 2017-10-17 17:47 - 000100296 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\_ctypes.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000018888 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\select.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000020800 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000035792 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000694224 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\unicodedata.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000021848 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000130512 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 001856848 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000022864 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000145864 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\pyexpat.pyd 2017-10-20 11:58 - 2017-10-17 17:48 - 000116688 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\pywintypes27.dll 2017-10-20 11:58 - 2017-10-17 17:47 - 000105928 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32api.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000022864 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000062784 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000024528 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32event.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000040248 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\fastpath.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000020936 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\mmapfile.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000124880 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32file.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000116176 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32security.pyd 2017-10-20 11:58 - 2017-10-17 17:48 - 000392656 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\pythoncom27.dll 2017-10-20 11:58 - 2017-10-17 17:50 - 000392512 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000026456 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000024016 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32clipboard.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000175560 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32gui.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000030160 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32pipe.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000043472 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32process.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000026056 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32job.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000048592 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32service.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000057808 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32evtlog.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000021824 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000023368 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000022856 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000066392 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 001796920 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000084424 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\sip.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 001956152 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 003859264 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000154440 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000521024 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000045888 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000042304 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000131384 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000218944 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000204096 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000025432 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000060880 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32print.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000054608 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000024016 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32profile.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000022864 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000028616 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\win32ts.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000022360 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000021848 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000022360 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000027488 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd 2017-10-20 11:58 - 2017-10-17 17:47 - 000349128 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winxpgui.pyd 2017-10-20 11:58 - 2017-10-17 17:50 - 000023896 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000025424 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd 2017-10-20 11:58 - 2017-10-17 17:48 - 000036296 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\librsync.dll 2017-10-20 11:58 - 2017-10-17 17:49 - 000181056 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL 2017-10-20 11:58 - 2017-10-17 17:50 - 000030536 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000024368 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\libEGL.DLL 2017-10-20 11:58 - 2017-10-17 17:49 - 001638200 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2017-10-20 11:58 - 2017-10-17 17:50 - 000026456 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000545080 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000359224 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd 2017-10-20 11:58 - 2017-10-17 17:49 - 000038208 _____ () C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.pyd ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\Windows\system32\msln.exe:f312fc16291504f990341efb17191ac7 [866] AlternateDataStreams: C:\Users\Glowing Starter:zylomtest [0] AlternateDataStreams: C:\Users\Glowing Starter:zylomtr{000HQ7FF-AD7A-3FG3-1EMN-28M5NPU00VRD} [34] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts Inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2010-12-30 17:42 - 2009-06-10 23:39 - 000000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-70928346-524487458-456366203-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Glowing Starter\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\startupreg: Norman ZANDA => C:\Norman\Nvc\BIN\ZLH.EXE /LOAD /SPLASH ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [TCP Query User{4E969F79-7B4C-4D6B-B9B2-7D33CA263599}C:\program files\mohaa.exe] => (Allow) C:\program files\mohaa.exe FirewallRules: [UDP Query User{4EA4A9E7-3D70-4E5F-9626-0661CCE33F50}C:\program files\mohaa.exe] => (Allow) C:\program files\mohaa.exe FirewallRules: [TCP Query User{EEF25203-642A-49F3-970D-F0187A2ED9B2}C:\program files\ea games\mohaa\mohaa.exe] => (Block) C:\program files\ea games\mohaa\mohaa.exe FirewallRules: [UDP Query User{5E1AB087-7136-43FE-8EFD-2C5955278249}C:\program files\ea games\mohaa\mohaa.exe] => (Block) C:\program files\ea games\mohaa\mohaa.exe FirewallRules: [{783F747C-051F-477D-B4DC-D6793D6371F0}] => (Allow) svchost.exe FirewallRules: [TCP Query User{2C69C9E4-0C8F-4C0C-9261-7217EC45B337}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe FirewallRules: [UDP Query User{C62A6446-FB67-400E-B3E8-FB34C783FD03}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe FirewallRules: [{C48B1DB2-B5B6-4D92-AE95-440B1CE6EB43}] => (Allow) C:\Program Files\FrostWire\FrostWire.exe FirewallRules: [{DF787E35-7647-4F6C-9508-CDFB8B3516C5}] => (Allow) C:\Program Files\FrostWire\FrostWire.exe FirewallRules: [TCP Query User{CC2D8232-D9F0-4D74-83AA-D438F2938649}C:\program files\bearshare applications\bearshare\bearshare.exe] => (Allow) C:\program files\bearshare applications\bearshare\bearshare.exe FirewallRules: [UDP Query User{BB1F3E15-D5D0-43B8-B1E8-1AB4217F3738}C:\program files\bearshare applications\bearshare\bearshare.exe] => (Allow) C:\program files\bearshare applications\bearshare\bearshare.exe FirewallRules: [TCP Query User{233E6391-6486-495C-A8DB-2D12F629B075}D:\bittorrent\bittorrent.exe] => (Allow) D:\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{D110B244-D00E-4B4B-9C37-4D5D6D2E3E78}D:\bittorrent\bittorrent.exe] => (Allow) D:\bittorrent\bittorrent.exe FirewallRules: [TCP Query User{4FCAAD88-A773-4BD3-B2A0-F87961B409C8}D:\games\emule\emule.exe] => (Allow) D:\games\emule\emule.exe FirewallRules: [UDP Query User{2A752718-F0EF-4B8B-A660-4BC462D8AEE0}D:\games\emule\emule.exe] => (Allow) D:\games\emule\emule.exe FirewallRules: [{F40DEC5B-82A6-46CC-A7FE-6B4C5300A787}] => (Allow) D:\games\FrostWire\FrostWire.exe FirewallRules: [{146FF8BF-2D6E-4AB7-9291-E21FE1448068}] => (Allow) D:\games\FrostWire\FrostWire.exe FirewallRules: [TCP Query User{F92AC8A6-11FF-4A56-8234-AE59DD89B366}C:\program files\imesh applications\imesh\imesh.exe] => (Allow) C:\program files\imesh applications\imesh\imesh.exe FirewallRules: [UDP Query User{B1607FC0-39EE-49AD-B3AB-7AF2C925B827}C:\program files\imesh applications\imesh\imesh.exe] => (Allow) C:\program files\imesh applications\imesh\imesh.exe FirewallRules: [TCP Query User{5F4ABB19-82A5-469E-A98C-C88A83EC4893}C:\program files\nero\nero 7\nero showtime\showtime.exe] => (Allow) C:\program files\nero\nero 7\nero showtime\showtime.exe FirewallRules: [UDP Query User{AC4D13F5-4D32-4254-9272-BA7755EF9DB2}C:\program files\nero\nero 7\nero showtime\showtime.exe] => (Allow) C:\program files\nero\nero 7\nero showtime\showtime.exe FirewallRules: [{CB19DEEE-2120-410E-95D6-D86534B73829}] => (Allow) D:\games\BitComet\BitComet.exe FirewallRules: [{5AA64D9E-B1C1-46F3-987C-3C01C9DBF5AB}] => (Allow) D:\games\BitComet\BitComet.exe FirewallRules: [{38AEDBEA-09C1-40D8-A0B6-C35DBD937609}] => (Allow) C:\FrostWire\FrostWire.exe FirewallRules: [{42DC3185-0AA6-4BD0-B748-0D0268BF43D6}] => (Allow) C:\FrostWire\FrostWire.exe FirewallRules: [TCP Query User{FE072C8E-4361-408C-80A7-225625814ED8}C:\users\glowing starter\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe] => (Allow) C:\users\glowing starter\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe FirewallRules: [UDP Query User{A2BC9DB8-A0F2-4705-80FE-155A4439C177}C:\users\glowing starter\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe] => (Allow) C:\users\glowing starter\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe FirewallRules: [TCP Query User{0BAC34AC-D2CF-4277-9D3A-78940BD80071}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{146477DE-72A9-4DBA-8423-FEA52AB182F8}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{C5AC7C3F-AE9D-4149-88A9-4FF95BC2A337}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{5DF70F8E-EF87-4173-8A04-8BDFE216087F}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [TCP Query User{310E215D-866A-41C0-97C3-AF00681C8715}C:\program files\bearflix\bearflix.exe] => (Block) C:\program files\bearflix\bearflix.exe FirewallRules: [UDP Query User{B73C9174-F592-46C1-8E75-4430DC14F9E7}C:\program files\bearflix\bearflix.exe] => (Block) C:\program files\bearflix\bearflix.exe FirewallRules: [TCP Query User{312FC370-8C03-4ED9-AFE2-A2E1BDE4EA05}C:\program files\shareaza\shareaza.exe] => (Block) C:\program files\shareaza\shareaza.exe FirewallRules: [UDP Query User{A87556AE-FE36-493A-92E4-2085301A4A35}C:\program files\shareaza\shareaza.exe] => (Block) C:\program files\shareaza\shareaza.exe FirewallRules: [TCP Query User{9217ED4E-7EBD-4CCF-A967-DD64EDA7737F}C:\program files\limewire plus\limewire.exe] => (Allow) C:\program files\limewire plus\limewire.exe FirewallRules: [UDP Query User{0647195C-43AD-435D-B678-0D2AE622ED24}C:\program files\limewire plus\limewire.exe] => (Allow) C:\program files\limewire plus\limewire.exe FirewallRules: [{A10CE794-F013-4040-A71D-8B1884995575}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{F0B3E830-8BD4-47E9-9501-11A56F997520}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{44C96CA7-B276-49BB-87EA-E735DD908D09}] => (Allow) C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{24541824-9EA3-41BE-8171-62BB216CB8C0}] => (Allow) C:\Users\Glowing Starter\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{D0FFE38F-15CA-4D59-BEC4-2BADC9748DDB}C:\program files\1clickdownload\1clickdownloader.exe] => (Allow) C:\program files\1clickdownload\1clickdownloader.exe FirewallRules: [UDP Query User{4C4DEDE0-A63E-45C6-BDA3-72CD18D54042}C:\program files\1clickdownload\1clickdownloader.exe] => (Allow) C:\program files\1clickdownload\1clickdownloader.exe FirewallRules: [{84552A0C-98DA-403E-825B-52C926714EAE}] => (Allow) C:\Program Files\iMesh Applications\iMesh\iMesh.exe FirewallRules: [{5F1117A3-663B-45CD-B1D8-1F51C87D0EEA}] => (Allow) C:\Program Files\iMesh Applications\iMesh\iMesh.exe FirewallRules: [{C5464CDA-219E-425A-84CF-5BEFB8E5AA19}] => (Allow) C:\Program Files\iMesh Applications\iMesh\iMesh.exe FirewallRules: [{FCB00364-328B-42CA-987B-F1F3FB0BFF70}] => (Allow) C:\Program Files\iMesh Applications\iMesh\iMesh.exe FirewallRules: [TCP Query User{D8571D8C-56A5-4B10-B764-2E5DCC39D9F1}C:\program files\participatory culture foundation\miro\miro_downloader.exe] => (Block) C:\program files\participatory culture foundation\miro\miro_downloader.exe FirewallRules: [UDP Query User{EB616A9D-305F-42E4-BA96-7FA52C505B03}C:\program files\participatory culture foundation\miro\miro_downloader.exe] => (Block) C:\program files\participatory culture foundation\miro\miro_downloader.exe FirewallRules: [{F48C237E-E734-4B39-ABA0-FEF496BCF44D}] => (Allow) C:\Program Files\BearShare Applications\BearShare\BearShare.exe FirewallRules: [{528CA8C1-23B1-4605-A9A9-5C6C961EA063}] => (Allow) C:\Program Files\BearShare Applications\BearShare\BearShare.exe FirewallRules: [{BA53AE78-CB4B-4464-85E8-E74C01AD4E4B}] => (Allow) C:\Program Files\BearShare Applications\BearShare\BearShare.exe FirewallRules: [{D422E5AB-A490-461C-8BA7-CCAFABD6D895}] => (Allow) C:\Program Files\BearShare Applications\BearShare\BearShare.exe FirewallRules: [TCP Query User{DAAEDBCF-D016-450D-9980-0FF4156FA353}C:\users\glowing starter\downloads\bittorrent.exe] => (Block) C:\users\glowing starter\downloads\bittorrent.exe FirewallRules: [UDP Query User{CBF3854C-6CE7-4B8E-A102-D081ED4E21EE}C:\users\glowing starter\downloads\bittorrent.exe] => (Block) C:\users\glowing starter\downloads\bittorrent.exe FirewallRules: [TCP Query User{93BF7515-B14A-4EDB-A6C9-F9955A869494}C:\program files\utorrent\utorrent.exe] => (Block) C:\program files\utorrent\utorrent.exe FirewallRules: [UDP Query User{47A4C639-0229-4212-B309-79FB6935677A}C:\program files\utorrent\utorrent.exe] => (Block) C:\program files\utorrent\utorrent.exe FirewallRules: [TCP Query User{11C47A71-E736-49B2-B926-B0828FA19E02}C:\users\glowing starter\downloads\utorrent.exe] => (Block) C:\users\glowing starter\downloads\utorrent.exe FirewallRules: [UDP Query User{B1AC558F-9ABD-4B97-8EDE-FE0623B5FF15}C:\users\glowing starter\downloads\utorrent.exe] => (Block) C:\users\glowing starter\downloads\utorrent.exe FirewallRules: [{96553530-F2BD-4CDC-AFD3-3BB39003A5AE}] => (Allow) LPort=9100 FirewallRules: [{901C0CC9-4BB2-4138-9F77-34B2DCD46220}] => (Allow) LPort=427 FirewallRules: [{6181E0DD-8576-47D6-90A7-1578E9B5E62B}] => (Allow) LPort=161 FirewallRules: [TCP Query User{F2444916-6B92-40DC-9EDF-B6B274B9060E}C:\users\glowing starter\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\glowing starter\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{46345A50-A066-4510-9F97-91C6D981CF7C}C:\users\glowing starter\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\glowing starter\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{1FA1D3CB-3911-489B-BBFA-9C783A1A1203}C:\users\glowing starter\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\glowing starter\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{C6539932-B7FC-40E6-8E33-C1EB4E634327}C:\users\glowing starter\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\glowing starter\appdata\roaming\spotify\spotify.exe FirewallRules: [{88E35A35-33F0-4019-A826-018B60EE597A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{E5F2116A-1972-4327-8285-05EA92DFF794}C:\program files\ea games\mohaa\mohaa.exe] => (Allow) C:\program files\ea games\mohaa\mohaa.exe FirewallRules: [UDP Query User{5EA695E3-7D97-4208-B4F2-C2578F2B44CB}C:\program files\ea games\mohaa\mohaa.exe] => (Allow) C:\program files\ea games\mohaa\mohaa.exe FirewallRules: [{0F864A12-ECBC-4CC8-80E7-6A06743F22DE}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0B80CC26-7B14-4629-8FA3-4FC309B588C1}] => (Allow) LPort=2869 FirewallRules: [{D3707C97-9EB3-403D-90C7-111897080C01}] => (Allow) LPort=1900 FirewallRules: [{94926180-F49A-43A2-B5F8-B5EEDFE8F050}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe FirewallRules: [TCP Query User{5D15BB72-D117-4609-B00D-A9A56BF6CAE8}C:\users\glowing starter\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\glowing starter\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{6385C23B-5859-4B97-A9CC-9CB779F08789}C:\users\glowing starter\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\glowing starter\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [{FB1FFC02-AADB-4739-8B2A-5BFE5B82817E}] => (Allow) C:\Program Files\Itibiti Soft Phone\Itibiti.exe FirewallRules: [{A26543BB-E1AA-42BD-9533-1A8CFE12A7FF}] => (Allow) C:\Program Files\Itibiti Soft Phone\Itibiti.exe FirewallRules: [{370CE7DE-AFDE-45F1-83D5-7804FD5725BA}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{4FF57637-2FC5-40A0-868F-FB162394D241}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [TCP Query User{C7DC2C60-5D84-424C-8FAC-C85BEEAE4E26}C:\users\glowing starter\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\glowing starter\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{37C905F6-44DE-4FB0-AF30-F0AA33AC08F9}C:\users\glowing starter\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\glowing starter\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{E8DBABAA-4517-44D3-B373-175E5C611F43}] => (Allow) C:\Users\Glowing Starter\AppData\Local\Microsoft\OneDrive\OneDrive.exe FirewallRules: [{112BAE32-E5EC-4ECF-9519-B5C5E2429C84}] => (Allow) C:\Program Files\Popcorn Time\Updater.exe FirewallRules: [{3E084DFA-5E4E-4455-BE84-BEE47C10FF17}] => (Allow) C:\Program Files\Popcorn Time\Updater.exe FirewallRules: [{D2AC1A3F-8996-455A-ABED-A0379D7F34F8}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{BE53A13B-C795-4574-960E-0E5805E3489D}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe FirewallRules: [{9749AD82-EB38-4C44-9A8B-9AF8A55499F8}] => (Allow) LPort=5357 FirewallRules: [{C6B3859A-6AA2-45C0-B6A9-58E2D5A87A55}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{7A782785-E05D-4329-8CE5-5FFD2F1F9696}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 06-10-2017 17:35:56 Windows Update 10-10-2017 13:53:56 Windows Update 11-10-2017 23:08:38 Windows Update 20-10-2017 13:22:43 Restore Point Created by FRST ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (10/26/2017 03:10:53 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files\HP\HP ENVY 5530 series\DriverStore\Yeti\V3\amd64\hpinkinsC311.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/25/2017 01:44:51 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files\HP\HP ENVY 5530 series\DriverStore\Yeti\V3\amd64\hpinkinsC311.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/24/2017 02:12:02 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files\HP\HP ENVY 5530 series\DriverStore\Yeti\V3\amd64\hpinkinsC311.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/23/2017 10:16:01 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files\HP\HP ENVY 5530 series\DriverStore\Yeti\V3\amd64\hpinkinsC311.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/22/2017 07:57:50 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files\HP\HP ENVY 5530 series\DriverStore\Yeti\V3\amd64\hpinkinsC311.exe' niet maken. Kan afhankelijke assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/21/2017 11:02:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: AdwCleaner.exe, versie: 7.0.3.1, tijdstempel: 0x59cee86f Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutoffset: 0x00740057 Id van proces met fout: 0x1be8 Starttijd van toepassing met fout: 0x01d34a4b34a1ee37 Pad naar toepassing met fout: C:\Users\Glowing Starter\Downloads\AdwCleaner.exe Pad naar module met fout: unknown Rapport-id: 96800c5b-b63e-11e7-bbe4-0090f59c7105 Error: (10/21/2017 11:00:58 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: AdwCleaner.exe, versie: 7.0.3.1, tijdstempel: 0x59cee86f Naam van module met fout: KERNELBASE.dll, versie: 6.1.7601.23889, tijdstempel: 0x598d4d1e Uitzonderingscode: 0xe06d7363 Foutoffset: 0x0000845d Id van proces met fout: 0x554 Starttijd van toepassing met fout: 0x01d34a4afcd1b2e0 Pad naar toepassing met fout: C:\Users\Glowing Starter\Downloads\AdwCleaner.exe Pad naar module met fout: C:\Windows\system32\KERNELBASE.dll Rapport-id: 59e565bf-b63e-11e7-bbe4-0090f59c7105 Error: (10/21/2017 11:00:45 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: AdwCleaner.exe, versie: 7.0.3.1, tijdstempel: 0x59cee86f Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutoffset: 0x00740057 Id van proces met fout: 0x554 Starttijd van toepassing met fout: 0x01d34a4afcd1b2e0 Pad naar toepassing met fout: C:\Users\Glowing Starter\Downloads\AdwCleaner.exe Pad naar module met fout: unknown Rapport-id: 5280e4ea-b63e-11e7-bbe4-0090f59c7105 Error: (10/21/2017 10:57:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: adwcleaner_7.0.3.1.exe, versie: 7.0.3.1, tijdstempel: 0x59cee86f Naam van module met fout: KERNELBASE.dll, versie: 6.1.7601.23889, tijdstempel: 0x598d4d1e Uitzonderingscode: 0xe06d7363 Foutoffset: 0x0000845d Id van proces met fout: 0x89c Starttijd van toepassing met fout: 0x01d34a4a5ddb6294 Pad naar toepassing met fout: C:\Users\Glowing Starter\Downloads\adwcleaner_7.0.3.1.exe Pad naar module met fout: C:\Windows\system32\KERNELBASE.dll Rapport-id: d0fadea7-b63d-11e7-bbe4-0090f59c7105 Error: (10/21/2017 10:55:18 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: adwcleaner_7.0.3.1.exe, versie: 7.0.3.1, tijdstempel: 0x59cee86f Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutoffset: 0x00740057 Id van proces met fout: 0x2d4 Starttijd van toepassing met fout: 0x01d34a4a344a3664 Pad naar toepassing met fout: C:\Users\Glowing Starter\Downloads\adwcleaner_7.0.3.1.exe Pad naar module met fout: unknown Rapport-id: 8f5b5afa-b63d-11e7-bbe4-0090f59c7105 Systeemfouten: ============= Error: (10/27/2017 11:01:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Symantec Eraser Service-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (10/26/2017 03:01:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Symantec Eraser Service-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (10/25/2017 10:19:05 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {2EAD57C2-492A-4713-A340-8272B88BFF1B} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (10/25/2017 09:53:34 PM) (Source: BROWSER) (EventID: 8032) (User: ) Description: De Browser-service heeft te vaak de reservelijst op transport \Device\NetBT_Tcpip_{A4E30119-DCA7-4F99-8F61-DEA22BEEC64F} niet kunnen ophalen. De reservebrowser is gestopt. Error: (10/25/2017 09:50:19 PM) (Source: bowser) (EventID: 8003) (User: ) Description: De masterbrowser heeft een servermelding ontvangen van computer TRUDYLAPTOP die meent de masterbrowser voor het domein te zijn op transport NetBT_Tcpip_{A4E30119-DCA7-4F99-8F61-DEA22B. De masterbrowser wordt gestopt of er wordt een verkiezing afgedwongen. Error: (10/25/2017 09:46:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Symantec Eraser Service-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (10/25/2017 01:47:35 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (10/25/2017 01:47:32 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {2EAD57C2-492A-4713-A340-8272B88BFF1B} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (10/25/2017 01:34:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Symantec Eraser Service-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (10/24/2017 08:44:46 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. ==================== Geheugen info =========================== Processor: Celeron(R) Dual-Core CPU T3000 @ 1.80GHz Percentage geheugen in gebruik: 71% Totaal fysiek RAM-geheugen: 3004.87 MB Beschikbaar fysiek RAM-geheugen: 843.78 MB Totaal Virtueel geheugen: 6008.06 MB Beschikbaar Virtual geheugen: 3524.67 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:185.55 GB) (Free:53.98 GB) NTFS Drive d: () (Fixed) (Total:112.44 GB) (Free:112.18 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 96E90656) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=185.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=112.4 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================