Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 25.04.2018 Gestart door Milan (03-05-2018 10:38:52) Gestart vanaf C:\Users\Milan\Downloads Windows 10 Home Versie 1709 16299.371 (X64) (2017-11-14 15:36:42) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-917116123-3600031174-3772831410-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-917116123-3600031174-3772831410-503 - Limited - Disabled) defaultuser0 (S-1-5-21-917116123-3600031174-3772831410-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gast (S-1-5-21-917116123-3600031174-3772831410-501 - Limited - Disabled) Milan (S-1-5-21-917116123-3600031174-3772831410-1001 - Administrator - Enabled) => C:\Users\Milan WDAGUtilityAccount (S-1-5-21-917116123-3600031174-3772831410-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Adobe Photoshop CS6 (HKLM-x32\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony) APP Shop v1.0.26 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.26 - ASRock Inc.) Apple Application Support (32-bit) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{9E005AAA-81A3-478E-8944-532D350952EE}) (Version: 11.3.1.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.) aTube Catcher versie 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.3.2333 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 64.0.387.186 - AVAST Software) Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CAM (HKLM-x32\...\{DF87346E-1BEB-4FB1-84BE-7233CE985F20}) (Version: 3.5.80 - NZXT) CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform) Chromium (HKLM-x32\...\{D2713AB1-82F1-EB31-3371-9BB1E3F14831}) (Version: - ) Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - ) De Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.37.35.1010 - Electronic Arts Inc.) Discord (HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{F7118EF5-320C-4340-99F4-25F970B428A3}) (Version: 1.1.125.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Express Zip File Compression (HKLM-x32\...\ExpressZip) (Version: 3.03 - NCH Software) Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.34.6893 - FreeDownloadManager.ORG) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden iClone v7.1 Trial (HKLM-x32\...\{13398646-FA8A-4389-8C4D-91F6677E2DD7}) (Version: 7.1.1116.1 - Reallusion Inc.) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation) Intel(R) Network Connections 21.1.29.0 (HKLM\...\PROSetDX) (Version: 21.1.29.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) iSpring Free Cam 8 (HKLM-x32\...\{9E6D2789-25C1-4884-ACAA-32F187F96410}) (Version: 8.3.15297 - iSpring Solutions Inc.) iTunes (HKLM\...\{111374E0-BD24-4A7D-AF1D-FCE99B1ABBE0}) (Version: 12.7.4.80 - Apple Inc.) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) KORG KONTROL Editor (HKLM-x32\...\{2994E3F1-B6A3-40FD-860E-A54363FC266C}) (Version: 1.50.0000 - KORG Inc.) KORG USB-MIDI Driver Tools for Windows 10 (HKLM-x32\...\{C7B06DB0-64A6-436E-B473-0E0EECC5E174}) (Version: 1.15.2203 - Korg Inc.) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) MakeMKV v1.10.7 (HKLM-x32\...\MakeMKV) (Version: v1.10.7 - GuinpinSoft inc) ManyCam 5.8.0 (HKLM-x32\...\ManyCam) (Version: 5.8.0 - Visicom Media Inc.) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.7.190 - McAfee, Inc.) Microsoft OneDrive (HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.2 - Notepad++ Team) NVIDIA 3D Vision stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 19.0.2 - OBS Project) Origin (HKLM-x32\...\Origin) (Version: 10.5.14.38647 - Electronic Arts, Inc.) PlanetSide 2 (HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment) Power Mixer 3.8 (HKLM-x32\...\Power Mixer) (Version: 3.8.10 - Actual Solution) Pulseway (HKLM\...\{698382F2-C9AD-47FA-9558-DA73BF779217}) (Version: 5.3.2 - MMSOFT Design) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.) Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.18.115 - Razer Inc.) Reallusion Hub (HKLM-x32\...\{CFF2760B-B727-4717-8635-5D668A0C9C4F}) (Version: 4.01.1318.1 - Reallusion Inc. ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7917 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.8 - Rockstar Games) Shotcut (HKLM-x32\...\Shotcut) (Version: - ) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) Software voor Intel® Chipset-apparaten (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) Spotify (HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\Spotify) (Version: 1.0.75.483.g7ff4a0dc - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.11.7 (HKLM\...\SteelSeries Engine 3) (Version: 3.11.7 - SteelSeries ApS) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer) VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WALTR version 1.1.36 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.36 - Softorino, Inc.) WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== AANDACHT Wondershare TunesGo ( Version 9.6.0 ) (HKLM-x32\...\{0B31C808-8274-460D-8846-C711D40544A0}_is1) (Version: 9.6.0 - Wondershare) WorldofWarships (HKLM-x32\...\WorldofWarships) (Version: - ) ZBrush 4R7 Trial (HKLM-x32\...\ZBrush 4R7 Trial 4R7 Trial) (Version: 4R7 Trial - Pixologic) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-05] (AVAST Software) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-11-27] () ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-05] (AVAST Software) ContextMenuHandlers1: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2017-06-12] () ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-05] (AVAST Software) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-05] (AVAST Software) ContextMenuHandlers6: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2017-06-12] () ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {00987E09-F1EA-4601-8A40-B9B8FE5F15FE} - System32\Tasks\Chromium sisin => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\{5A339F50-D071-1596-56B7-8BD4CCF5001A}\nima.txt" "68747470733a2f2f6b6174756e61712e636f6d" "433a5c50726f6772616d446174615c7b35413333394635302d443037312d313539362d353642372d3842443443434635303031417d5c746f6469726f" "433a5c50726f6772616d446174615c7b35413333394635302d443037312d313539362d (de data item heeft 84 meer tekens). <==== AANDACHT Task: {0324B434-433A-4367-A50D-3436CDB1C86D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.) Task: {033A1E54-81EF-4854-A5DC-A64A94F694BB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-04-05] (AVAST Software) Task: {0FCAB708-C07A-4AD4-A800-A9628F1DA535} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd) Task: {1B63EED4-683A-4293-A021-EF689E4254DA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.) Task: {1E96096B-1FF9-41E4-A8A7-DE6BDDB42F37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd) Task: {2C01FF78-12BE-45C7-B48C-874629C2150F} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe [2018-03-02] () Task: {347DB2FB-42E0-44DF-A553-C9E69F9841D1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-26] (AVAST Software) Task: {411820E4-FAAD-44FA-BCE5-130C851DFEE7} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-26] (AVAST Software) Task: {5B984081-7188-4070-B309-F6EA96A09682} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-24] (Google Inc.) Task: {9163746B-AD8E-446F-8419-1B6F88D09DE4} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [2018-01-10] (FreeDownloadManager.org) Task: {B43C4121-39F8-45D7-9FBE-9FCCC9E0F89E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-04-14] (AVAST Software) Task: {FAE985A3-7DAF-446B-A7B0-0ACF1511ABEB} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {FF449ADD-5B6B-4A4C-AD95-5A99AFC4C59A} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Chromium sisin.job => Wscript.exe C:\ProgramData\{5A339F50-D071-1596-56B7-8BD4CCF5001A}\nima.txt <==== AANDACHT ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WOW\WorldofWarships.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=772&aff_id=1034&aff_sub=100 --app-window-size=1920,1080 ShortcutWithArgument: C:\Users\Milan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofWarships.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=772&aff_id=1034&aff_sub=100 --app-window-size=1920,1080 ==================== Geladen Modules (gefilterd) ============== 2017-09-19 19:16 - 2018-01-10 15:27 - 000037376 _____ () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\WinDivert.dll 2017-07-20 01:09 - 2017-07-20 01:09 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2018-03-16 15:19 - 2018-03-16 15:19 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2018-03-16 15:19 - 2018-03-16 15:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-07-04 10:27 - 2017-07-04 10:27 - 000190208 _____ () C:\Program Files (x86)\ClownfishVoiceChanger\ClownfshAPO64.dll 2017-10-13 17:58 - 2016-11-23 21:11 - 000055744 _____ () C:\Program Files\WALTR\x86\AnimationService.exe 2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-07-12 20:54 - 2017-10-27 18:12 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-03-02 10:13 - 2018-03-02 10:13 - 007481968 _____ () C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe 2018-03-19 11:44 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-03-19 11:44 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-05-02 11:32 - 2018-05-02 11:32 - 000376720 _____ () C:\Users\Milan\Desktop\Fortnite\FortniteGame\Binaries\Win64\FortniteLauncher.exe 2018-05-02 11:55 - 2018-04-26 05:14 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\libglesv2.dll 2018-05-02 11:55 - 2018-04-26 05:14 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\libegl.dll 2017-11-17 13:29 - 2017-11-17 13:29 - 000282112 _____ () C:\Program Files (x86)\NZXT\CAM\GSyncLib.dll 2018-04-06 09:00 - 2018-05-03 08:22 - 000308736 _____ () C:\Program Files (x86)\NZXT\CAM\NVAPIHelper.dll 2013-11-13 22:00 - 2013-11-13 22:00 - 000008704 _____ () C:\Program Files (x86)\Power Mixer\Wheel.dll 2018-04-05 17:58 - 2018-04-05 17:58 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2018-03-18 15:18 - 2018-03-18 15:18 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-04-05 17:58 - 2018-04-05 17:58 - 000349912 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll 2018-04-05 17:58 - 2018-04-05 17:58 - 000295640 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2018-04-05 17:58 - 2018-04-05 17:58 - 000281816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-03-24 20:57 - 2018-05-01 09:32 - 000788256 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2017-03-24 20:57 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2017-03-24 20:57 - 2018-05-02 11:04 - 002633504 _____ () C:\Program Files (x86)\Steam\video.dll 2017-03-24 20:57 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2017-03-24 20:57 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2017-12-14 11:42 - 2017-12-20 03:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2017-12-14 11:42 - 2017-12-20 03:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2017-12-14 11:42 - 2017-12-20 03:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2017-12-14 11:42 - 2017-12-20 03:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2017-12-14 11:42 - 2017-12-20 03:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2018-03-10 10:51 - 2018-05-02 11:03 - 000977184 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2017-03-24 20:57 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2018-05-02 11:31 - 2018-04-30 23:01 - 001891672 _____ () C:\Users\Milan\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-05-02 11:32 - 2018-05-02 11:32 - 001728344 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node 2018-05-02 11:32 - 2018-05-02 11:32 - 009659736 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-05-02 11:32 - 2018-05-02 11:32 - 001530712 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-05-02 11:31 - 2018-04-30 23:01 - 001937752 _____ () C:\Users\Milan\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-05-02 11:31 - 2018-04-30 23:01 - 000095576 _____ () C:\Users\Milan\AppData\Local\Discord\app-0.0.301\libegl.dll 2018-05-02 11:32 - 2018-05-02 11:32 - 000512856 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-05-02 11:32 - 2018-05-02 11:32 - 001910104 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-05-02 11:32 - 2018-05-02 11:32 - 000422744 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-05-02 11:32 - 2018-05-02 11:32 - 000145240 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-05-02 11:32 - 2018-05-03 08:18 - 001578840 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-05-02 11:32 - 2018-05-02 11:32 - 002722648 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-05-02 11:32 - 2018-05-02 11:32 - 002760536 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-05-02 11:32 - 2018-05-02 11:32 - 001249112 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node 2018-05-02 11:32 - 2018-05-02 11:32 - 001636696 _____ () \\?\C:\Users\Milan\AppData\Roaming\discord\0.0.301\modules\discord_hook\discord_hook.node 2017-06-09 15:45 - 2018-05-01 09:32 - 000788256 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-03-24 20:58 - 2017-12-13 23:16 - 071471392 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-03-24 20:57 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2017-09-29 15:42 - 2017-09-29 15:42 - 000986520 _____ () C:\Windows\System32\speech\engines\tts\MSTTSEngine.dll 2017-09-29 15:42 - 2017-09-29 15:42 - 000512512 _____ () C:\Windows\System32\speech\engines\tts\MSTTSLoc.DLL ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\Public\AppData:CSM [480] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-917116123-3600031174-3772831410-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Milan\Desktop\mossawi_233826756011_20150715184439_985157627146.jpg DNS Servers: 195.130.130.4 - 195.130.131.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\StartupFolder: => "Reallusion Hub.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "Razer Synapse" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "BingSvc" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "ManyCam" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "Free Download Manager" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-917116123-3600031174-3772831410-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_CB85782E66E64E3D4C966D34381FDB94" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [UDP Query User{2D2AF98F-9C5D-4172-B346-74AEF1BA7750}C:\users\milan\desktop\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\users\milan\desktop\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{884A7FD2-97DB-4D81-8265-22DC126510FB}C:\users\milan\desktop\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\users\milan\desktop\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{2E4C4B2D-DA71-46E7-8F2A-1F578E0ECD88}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{CD99D4A7-10E2-481E-B2AC-7B1E694386C3}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{D815BC26-C304-4F14-BC58-3A7CEF93758A}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{D0EFA3D6-66C8-4962-8BA1-78D6D8EC246F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{B645E18E-5E69-428F-92DF-4F8EDF3AF836}] => (Allow) LPort=2333 FirewallRules: [{CF127E95-3B0F-4826-9B9F-260D3DBA998F}] => (Allow) LPort=9143 FirewallRules: [UDP Query User{9B085883-897B-4497-969A-FA7D7AD5EC97}C:\users\milan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\milan\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{7D8D9BCA-3CE0-44F9-A91E-42995AAE4A62}C:\users\milan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\milan\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{1920EAE9-E606-45AE-8FDD-9E6146680593}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{B1101C3A-BA23-4B83-BA0E-1F8E3075D64C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{C1C0735F-CA13-4FB6-B537-B9B84914E25D}C:\program files (x86)\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe FirewallRules: [TCP Query User{60F56006-F9F1-4559-A91C-4715F1E0EDC6}C:\program files (x86)\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ben and ed - blood party\baebloodparty\binaries\win32\baebloodparty-win32-debuggame.exe FirewallRules: [{13091C0E-323E-4631-B4F4-B09DEB33C03E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ben and Ed - Blood Party\BaEBloodParty.exe FirewallRules: [{7C09CE47-E3EA-46D1-A1D5-FF1941D01FDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ben and Ed - Blood Party\BaEBloodParty.exe FirewallRules: [UDP Query User{B74B07A3-9ED3-41F4-8B44-012DFDE2E410}C:\program files (x86)\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe FirewallRules: [TCP Query User{127F1DB6-77B2-4965-94A3-725295F89E77}C:\program files (x86)\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ben and ed\benanded\binaries\win32\benanded.exe FirewallRules: [{78DE1A89-F864-414B-902C-0725D3965B3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ben and Ed\BenAndEd.exe FirewallRules: [{3EC34186-C630-44A1-B9C0-EB005EA57092}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ben and Ed\BenAndEd.exe FirewallRules: [{4E6E8121-80C3-4B60-9735-62FFE8DCD2B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark and Light\DNL\Binaries\Win64\DNL.exe FirewallRules: [{7166F184-BB7D-40EF-AE84-A5EDF2CB5A8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark and Light\DNL\Binaries\Win64\DNL.exe FirewallRules: [{319DF8D3-EB39-470A-96EF-8E289F529609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{D72493DE-10FF-457C-92D9-16159FC2915D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [UDP Query User{768D2D29-AF12-49A8-A0F4-738C56208AFC}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [TCP Query User{68A1B523-27AA-4E89-BE8F-A4101AF346C9}C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dota 2 beta\game\bin\win32\dota2.exe FirewallRules: [{1937E7A3-FB4C-4776-B514-19491912BDB5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{B9FA8FF1-CB5F-409A-BAAC-5B5DE1B641FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{A9F06216-5116-4360-809C-E7246B2B12C7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{F43896F4-9823-4F52-B5CD-286FB297EF48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{A0539EA9-8077-49CF-A0BB-ECD267D776F9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9C740DE6-D731-431F-9F19-82B178546721}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F8BF999C-EAB5-4999-9547-95EAB45800DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{53EA99A0-7FC6-4A8D-ADB2-708FF2DA0C58}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{C9969811-57BB-4E19-A150-DE63D8756298}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{DA1FCFCF-BBD9-4294-991A-86DE7CA97A61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zula EU\zula_launcher.exe FirewallRules: [{ABA4853B-0BA9-4B30-9B52-616B100C45D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zula EU\zula_launcher.exe FirewallRules: [{25D3CCB1-77C4-43B6-8DEE-B147319F3170}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe FirewallRules: [{33F2249B-BC45-4BBA-91B7-451FC1010D39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe FirewallRules: [{BB641DD0-A969-432E-8901-AD383668079A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{CF263C92-151B-45AA-9574-5C101117CB30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{5BBC536F-F844-4651-8C25-4479CBE1EA38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{B73413B7-5E10-4879-BD03-D2A5F1CC57EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{040D43BD-F78A-48F7-A7DD-8775CBBED6D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{61F3F55A-83D0-4618-A1F9-1CB958F41A1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [TCP Query User{8B147896-D68E-41D4-83B2-13D4810D935D}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{313B4713-EBCB-4FAA-8927-F6E4BB0BB425}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{A6DE3C0B-0A1A-4DB5-805E-A42DD6C2E04E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C514F6BE-1981-4AD6-BCE6-1C3BE6F72717}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{06B4470D-508D-42C9-B090-2002A67878E4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{DAF7A175-9197-4F25-BAD4-3975DC23E723}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{CB7B2F93-B1D7-4010-962E-F6667C8E01C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A55CC1F9-611B-4D78-AF8D-1442FB468B01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{8D918B02-0284-4308-9369-CEB977CEF2D5}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{D8B1F421-9061-4615-B6B3-0E5876795939}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{213BDCCA-F3B8-4684-95E3-10151E17B3E4}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{69C69E77-AA9D-47F6-B0CC-BD1EE78026C8}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{BA01EB61-FD46-4BB0-827C-054B4BC0B4A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BlockNLoad\BlockNLoadLauncher.exe FirewallRules: [{B22B844A-E112-4E13-B101-85B4068CFF58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BlockNLoad\BlockNLoadLauncher.exe FirewallRules: [TCP Query User{C37A2EE6-6431-41FC-AB4A-207E750A90D1}C:\program files (x86)\steam\steamapps\common\blocknload\win64\blocknload.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blocknload\win64\blocknload.exe FirewallRules: [UDP Query User{5301B67E-2860-4772-B1AF-4278EC7155BA}C:\program files (x86)\steam\steamapps\common\blocknload\win64\blocknload.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blocknload\win64\blocknload.exe FirewallRules: [{3CDCED8D-1B0C-4518-9C5C-9B5F4488E8FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe FirewallRules: [{9F78A773-5A9A-469C-99B4-4FD2461D3385}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe FirewallRules: [{10DD9058-BCAC-4076-8A2F-8BC438F2FFC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{33AFC369-4531-4BA3-8036-9D10EA61B1A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [TCP Query User{09FA5D53-D464-45D6-8B17-16398A36ACC2}C:\users\milan\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\milan\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{DB8C58DA-D6CB-4458-9696-EDE2A44DF57A}C:\users\milan\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\milan\appdata\roaming\spotify\spotify.exe FirewallRules: [{E06BAC7C-8C0F-450C-B9D9-1ABE21C2153E}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{5560CE58-6B60-4728-9F49-B8598C0C83BE}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{D475E077-66EC-4A29-8C24-21BBD53380C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{9C37EF4E-78D5-4BB6-86FA-8D1F25665E87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{3AA4A68C-8137-4717-884B-592D5B306940}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{379FCD7B-FCE5-45D2-AF58-FBA98AA001E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [TCP Query User{D3E3BF36-24AB-473C-A203-89C42840A014}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{1463CB2C-0E81-448F-A837-32796859BB10}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{1A5260BC-A42F-4E94-A766-BD32327E6D26}] => (Allow) C:\Users\Milan\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{6CD31ABC-F28F-4D28-B778-B3C2C5F85620}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [{881062C5-9BF0-43B1-A94C-4297C8EC1240}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [TCP Query User{516D7BB8-2AB0-4E4B-A6D9-A52DB95F7CAE}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [UDP Query User{CE67883D-034C-4D53-966C-46C45CD5C541}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [{B063FEF5-BBC1-45A3-BDF7-66D6D19F911E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{A59B1B07-53BA-4887-A53D-F3163D59718E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F4565BAD-9E72-4184-80B4-177CE1079685}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{ACAD5986-B850-4647-9DB7-430216057219}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{B25832A5-D573-41A0-B407-70E8E1D2AE3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [{5E9A7DCA-03E9-41DE-8828-207582B7A185}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [{1C3E6177-206E-4113-937B-2323D91BB4F2}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe FirewallRules: [TCP Query User{7AC3ABDC-8F1F-4CAD-9D44-923C1408592E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe FirewallRules: [UDP Query User{B95DEC1E-A0DC-41D5-9CA8-BF9426FA2207}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe FirewallRules: [TCP Query User{EBD12F08-A476-4C60-BA22-5CC6C13E2F3A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [UDP Query User{428D9B12-B2DE-4154-9FD4-A91FF3EF6FFD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [{5ADB1A30-E82F-43F8-9695-2A5D1BDB5A77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{EE45D152-7497-4061-AF17-1965F91E5436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{7A3110AC-F9CF-455D-9343-9E665E82EF79}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe FirewallRules: [{111C3819-35A7-4A26-A916-61524A82F5A6}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{B1FEA169-1A46-4A5E-904D-9A10C6FE83F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darwin Project\Darwin.exe FirewallRules: [{51AC713B-CA88-4A89-95FB-653D84794C41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darwin Project\Darwin.exe FirewallRules: [{E4391AD8-177F-4AC3-8DE2-97F8E231D027}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 15-04-2018 12:54:31 Installed CAM 23-04-2018 17:58:12 Gepland controlepunt ==================== Defecte Apparaatbeheer Apparaten ============= Name: Onbekend USB-apparaat (verzoek voor apparaatdescriptor is mislukt) Description: Onbekend USB-apparaat (verzoek voor apparaatdescriptor is mislukt) Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standaard USB Host Controller) Service: Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (05/02/2018 11:06:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 18453 Error: (05/02/2018 11:06:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 18453 Error: (05/02/2018 11:06:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/02/2018 11:06:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 17313 Error: (05/02/2018 11:06:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 17313 Error: (05/02/2018 11:06:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/02/2018 11:06:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 16156 Error: (05/02/2018 11:06:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 16156 Systeemfouten: ============= Error: (05/03/2018 08:31:37 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9TKM1BC) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-9TKM1BC\Milan SID (S-1-5-21-917116123-3600031174-3772831410-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/03/2018 08:18:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Steam Client Service-service kan vanwege de volgende fout niet worden gestart: De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord. Error: (05/03/2018 08:18:31 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Steam Client Service. Error: (05/03/2018 08:16:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/03/2018 08:16:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/03/2018 08:16:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/03/2018 08:16:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/03/2018 08:16:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. CodeIntegrity: =================================== Date: 2018-05-03 10:37:27.770 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:37:27.769 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:32:46.459 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:32:46.458 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:31:45.687 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:31:45.686 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:22:16.535 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-05-03 10:22:16.533 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i3-7100 CPU @ 3.90GHz Percentage geheugen in gebruik: 72% Totaal fysiek RAM-geheugen: 8155.61 MB Beschikbaar fysiek RAM-geheugen: 2281.8 MB Totaal Virtueel geheugen: 15086.86 MB Beschikbaar Virtueel geheugen: 6356.55 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:930.96 GB) (Free:281.83 GB) NTFS Drive f: (HDDRIVE2GO) (Fixed) (Total:1397.26 GB) (Free:1354.38 GB) NTFS \\?\Volume{9ee13b15-2ff4-42b9-bab5-79c62248f16b}\ (Herstel) (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS \\?\Volume{5fce020d-a419-4b62-b27c-8283ca282ac5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ================== ==================== Eind van Addition.txt ============================