Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 21.02.2018 Gestart door Gebruiker (21-02-2018 19:43:30) Gestart vanaf D:\Users\Gebruiker\Downloads Windows 7 Professional Service Pack 1 (X64) (2014-03-07 09:50:52) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1243184377-1695436347-1374857548-500 - Administrator - Disabled) Gast (S-1-5-21-1243184377-1695436347-1374857548-501 - Limited - Disabled) Gebruiker (S-1-5-21-1243184377-1695436347-1374857548-1000 - Administrator - Enabled) => C:\Users\Gebruiker HomeGroupUser$ (S-1-5-21-1243184377-1695436347-1374857548-1002 - Limited - Enabled) UpdatusUser (S-1-5-21-1243184377-1695436347-1374857548-1003 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Ad-Aware Antivirus (HKLM\...\{6D1428BD-E5F2-4378-B620-E7442E7C2BFB}_AdAwareUpdater) (Version: 11.4.6792.0 - Lavasoft) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 18.011.20036 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.2.1.650 - Adobe Systems Incorporated) Adobe Flash Player 28 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Flash Player ActiveX Free Download Packages (HKU\S-1-5-21-1243184377-1695436347-1374857548-1000\...\Adobe Flash Player ActiveX Free Download Packages) (Version: - ) <==== AANDACHT Adobe Flash Player ActiveX Free Download Packages (HKU\S-1-5-21-1243184377-1695436347-1374857548-1003\...\Adobe Flash Player ActiveX Free Download Packages) (Version: - ) <==== AANDACHT Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ArcSoft MediaImpression 2 (HKLM-x32\...\{397C5D1A-B7E6-453B-9A64-23206F73E0E5}) (Version: 2.0.26.939 - ArcSoft) Basissoftware voor HP Deskjet 3050A J611 series (HKLM\...\{C9E3B4DA-C235-4F8C-BCC5-55F4CE7294E2}) (Version: 25.0.571.0 - Hewlett-Packard Co.) Belgium e-ID middleware 4.0.7 (build 7453) (HKLM\...\{824563DE-75AD-4166-9DC0-B6482F207453}) (Version: 4.0.7453 - Belgian Government) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) Chromium (HKLM-x32\...\{4C7CA4BC-1CFC-753C-AD7C-05BC7DFCD63C}) (Version: - ) CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - CutePDF.com) DIGIPASS Native Bridge 2.3.2 (HKLM-x32\...\{D9145E6A-FEDE-4922-8EB0-6154E4C528CB}) (Version: 2.3.2 - VASCO Data Security) Hidden DIGIPASS Native Bridge 2.3.2 (HKU\S-1-5-21-1243184377-1695436347-1374857548-1000\...\{cb889cb5-6c91-49f3-81bc-f71cb51da123}) (Version: 2.3.2 - VASCO Data Security) eID Chrome Middleware 1.1.5 (HKLM-x32\...\eID Chrome Middleware 1.1.5) (Version: 1.1.5 - ) Elements 9 Organizer (HKLM-x32\...\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}) (Version: 9.0 - Uw bedrijfsnaam) Hidden Fotor 3.0.0 (HKLM-x32\...\Fotor) (Version: 3.0.0 - Everimaging Co., Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Gramblr (HKLM\...\Gramblr) (Version: 2.9.116 - Gramblr Team) HP Deskjet 3050A J611 series Haelp (HKLM-x32\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden iCloud (HKLM\...\{0493048C-CB1A-44B7-8BB3-8467AF7BA9E4}) (Version: 6.1.2.13 - Apple Inc.) iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.) Kingsoft PDF to Word SDK (2.0.1) (HKLM\...\{F0915BBA-A86F-4672-807D-30F38DFC2B44}) (Version: 2.0.1 - Zhuhai Kingsoft Office Software Co.,Ltd) K-Lite Codec Pack 4.1.7 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.1.7 - ) Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech) Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Moo0 Disk Cleaner 1.23 (HKLM-x32\...\Moo0 DiskCleaner) (Version: - ) Moo0 Video Cutter 1.07 (HKLM-x32\...\Moo0 VideoCutter) (Version: - ) Moo0 YouTube Downloader 1.07 (HKLM-x32\...\Moo0 Utube-DL) (Version: - ) Mozilla Firefox 40.0.3 (x86 nl) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 nl)) (Version: 40.0.3 - Mozilla) Mozilla Firefox 58.0.2 (x64 nl) (HKLM\...\Mozilla Firefox 58.0.2 (x64 nl)) (Version: 58.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla) NVIDIA Grafisch stuurprogramma 310.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 310.90 - NVIDIA Corporation) NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Productverbeteringonderzoek HP Deskjet 3050A J611 series (HKLM\...\{6A79DED1-48AB-4976-AB55-CAE7D6E922D1}) (Version: 25.0.571.0 - Hewlett-Packard Co.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6818 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) Stuurprogrammapakket voor Windows - Fedict SmartCard (03/25/2014 4.0.7.4) (HKLM\...\B02255EDA75F867B4D85C5A5D23E13D9EF71E8AE) (Version: 03/25/2014 4.0.7.4 - Fedict) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer) Trust mouse utility 1.0 (HKLM-x32\...\Trust mouse utility 1.0) (Version: - ) TVDownloader (HKLM-x32\...\TVDownloader) (Version: 1.16.0.0 - XPloRR) VASCO Card Reader Plug-In (64-Bit) (HKLM\...\{47659F12-27AE-6400-9B8A-2BD803020302}) (Version: 3.2.3.2 - VASCO Data Security) Hidden VASCO Smart Card Reader Plug-In (User) (HKU\S-1-5-21-1243184377-1695436347-1374857548-1000\...\{8bc0c044-0d13-4fe6-90c1-af39c36cb927}) (Version: 3.2.3.2 - VASCO Data Security) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN) WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. ) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1243184377-1695436347-1374857548-1000_Classes\CLSID\{9E436272-69C3-5FBA-9C1D-15694337F4AC}\InprocServer32 -> C:\Users\Gebruiker\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin64.dll (VASCO Data Security) ContextMenuHandlers1: [FileAssociationHelper] -> {D5CF14A2-B3CA-49DC-8E3E-0BB233B26D09} => C:\Program Files\File Association Helper\FAHDll.dll [2014-01-28] (Nico Mak Computing) ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-01-17] (Apple Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2012-12-29] (NVIDIA Corporation) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {02DC4C7B-378C-4575-BAFC-BBBE385545F1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_161_pepper.exe [2018-02-08] (Adobe Systems Incorporated) Task: {071AA6FA-61E7-47AB-8EC9-F9E0B7EF1CBA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {21BB2E17-B65F-4968-BB02-E8E8B0CA53B3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-08] (Adobe Systems Incorporated) Task: {2F6330DE-DB6A-419A-8744-D99CAE62FB63} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {87D4889C-B093-45F5-BB29-DD9B186CDC3C} - System32\Tasks\AdobeAAMUpdater-1.0-Gebruiker-PC-Gebruiker => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated) Task: {8AC0913D-8D44-442C-9866-B463B4DEBBD7} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] () Task: {A0AAFA2B-BD7F-4332-8F6D-011C1FB5E8C5} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08] (Hewlett-Packard Co.) Task: {B0B9FC28-0BE6-4DA1-95E8-DE5AF71B5C04} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd) Task: {B15BE618-5A89-4B3C-8418-DCC57AEA735D} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\VideoCutter 1.07\VideoCutter.exe [2013-10-07] (Moo0) Task: {C0A0B095-22FF-42B3-9D3D-FF8163E4429B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-01-17] (Adobe Systems Incorporated) Task: {D6CB6109-6438-4E74-AB1D-0679554E2FF7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.) Task: {DA42F2E3-9DCA-428B-91A1-4F7661F6B794} - System32\Tasks\{D9721298-AB9B-4D79-BA2F-3AF3F7ED70EF} => C:\Users\Gebruiker\AppData\Local\Popcorn Time\nw.exe (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2014-03-07 13:04 - 2012-12-29 09:40 - 000087480 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-04-07 14:39 - 2012-10-04 18:49 - 000087152 _____ () C:\Windows\System32\cpwmon64.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-02-28 14:09 - 2018-02-10 11:02 - 011883088 _____ () C:\Program Files\Gramblr\gramblr.exe 2017-11-15 20:41 - 2017-12-11 16:26 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2014-06-02 12:18 - 2014-06-02 12:18 - 000429568 _____ () C:\Program Files (x86)\Trust mouse utility\1.0\mouse32a.exe 2014-12-12 23:25 - 2014-12-12 23:25 - 000061440 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2018-01-06 12:32 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-06 12:32 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 001041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 000080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2014-06-02 12:18 - 2014-06-02 12:18 - 000073728 _____ () C:\Program Files (x86)\Trust mouse utility\1.0\MOUSEDLL.DLL ==================== Alternate Data Streams (gefilterd) ========= ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2017-02-07 18:32 - 2017-02-07 18:32 - 000000355 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-1243184377-1695436347-1374857548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 195.130.130.3 - 195.130.131.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{2BE5B5CE-1CCA-4A3E-9260-E59F356CDE96}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{D9FF478C-335F-4B2A-BEE4-4433A4F0C2BE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{F019D023-8614-4336-B74B-9A5EB175313D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{7F485E80-73A2-4A11-B255-D5BF626448FC}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe FirewallRules: [{17713C9F-5EFA-4FA7-B220-DE407BD1A3F1}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{3AC51CD3-A028-4E72-A90E-1B9CC17C48EB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9B2D2BFA-9611-4B14-B791-F2802C7AD419}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{28E1D19B-BC77-49C1-9CAB-958FD978A2CC}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{0BCD4B65-F905-4DDA-87BE-83C49D436A39}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{27646891-F962-40AF-B9D2-BCB652F631EF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{42C9A7B2-9135-4338-B94C-C7149238E00B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{10D086BF-ACF7-476A-9642-1EB67A0B622F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{0AACE9A4-9099-4974-BF6B-E99C573E8C0A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{590C242D-F5E7-456A-B28E-190EEADA6408}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{F0338162-EDF1-492D-85C1-3BBA3D8290B5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Herstelpunten ========================= 15-11-2017 19:42:58 zoek.exe restore point 16-11-2017 00:24:02 Windows Update 16-11-2017 11:47:53 16.11.2017 21-11-2017 10:56:32 Windows Update 25-11-2017 15:58:05 Installed Microsoft Office Home and Student 2010 26-11-2017 19:59:46 Windows Update 28-11-2017 00:06:41 Windows Update 29-11-2017 20:05:56 Windows Update 07-12-2017 13:47:56 Gepland controlepunt 14-12-2017 16:45:09 Installed Samsung Kies 14-12-2017 17:02:36 Removed Samsung Kies 22-12-2017 13:35:11 Gepland controlepunt 30-12-2017 13:39:46 Gepland controlepunt 07-01-2018 15:37:58 Gepland controlepunt 15-01-2018 15:13:27 Gepland controlepunt 22-01-2018 16:03:30 Gepland controlepunt 29-01-2018 16:52:31 Gepland controlepunt 05-02-2018 19:11:11 Gepland controlepunt 15-02-2018 15:26:09 Gepland controlepunt 21-02-2018 11:34:55 AA11 21-02-2018 11:38:28 AA11 21-02-2018 11:44:13 AA11 21-02-2018 16:29:43 Removed Bonjour ==================== Defecte Apparaatbeheer Apparaten ============= Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling-adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (02/21/2018 04:27:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen. Error: (02/21/2018 11:27:33 AM) (Source: MsiInstaller) (EventID: 11922) (User: Gebruiker-PC) Description: Application: Kaspersky Free -- Error 1922. Service Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) could not be deleted. Verify that you have sufficient privileges to remove system services.<<31922>><<31709>> Error: (02/21/2018 11:27:02 AM) (Source: MsiInstaller) (EventID: 11922) (User: Gebruiker-PC) Description: Application: Kaspersky Free -- Error 1922. Service Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) could not be deleted. Verify that you have sufficient privileges to remove system services.<<31922>><<31709>> Error: (02/21/2018 11:26:26 AM) (Source: MsiInstaller) (EventID: 11922) (User: Gebruiker-PC) Description: Application: Kaspersky Free -- Error 1922. Service Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) could not be deleted. Verify that you have sufficient privileges to remove system services.<<31922>><<31709>> Error: (02/21/2018 11:11:23 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen. Error: (02/20/2018 10:58:22 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen. Error: (02/20/2018 10:27:41 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen. Error: (02/19/2018 09:24:14 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Gebeurtenisfilter met query SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 kan niet opnieuw worden geactiveerd in naamruimte //./root/CIMV2 vanwege fout 0x80041003. Mogelijk worden er geen gebeurtenissen via dit filter doorgegeven totdat het probleem is verholpen. Systeemfouten: ============= Error: (02/21/2018 04:24:34 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (02/21/2018 04:10:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Kaspersky Anti-Virus Service 18.0.0-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (02/19/2018 11:41:54 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (02/18/2018 11:50:07 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (02/18/2018 09:39:04 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: AVP18.0.0. Error: (02/17/2018 12:57:48 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: De server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} heeft zich binnen de vereiste termijn niet bij DCOM geregistreerd. Error: (02/16/2018 12:01:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: AVP18.0.0. Error: (02/15/2018 01:51:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: ShellHWDetection. Windows Defender: =================================== Date: 2014-11-18 13:37:17.187 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Huidig Foutcode:0x80070002 Foutbeschrijving:Het systeem kan het opgegeven bestand niet vinden. Handtekeningversie:0.0.0.0 Engineversie:0.0.0.0 ==================== Geheugen info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz Percentage geheugen in gebruik: 70% Totaal fysiek RAM-geheugen: 4095.18 MB Beschikbaar fysiek RAM-geheugen: 1196.75 MB Totaal Virtueel geheugen: 8188.54 MB Beschikbaar Virtual geheugen: 4919.21 MB ==================== Schijven ================================ Drive c: (Windows 7 Pro) (Fixed) (Total:224.51 GB) (Free:107.42 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)] Drive d: (D) (Fixed) (Total:241.14 GB) (Free:147.46 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 9E199E19) Partition 1: (Active) - (Size=224.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=241.1 GB) - (Type=0F Extended) ==================== Eind van Addition.txt ============================