Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 11.11.2018 Gestart door rataplan (12-11-2018 07:42:02) Gestart vanaf C:\Users\rataplan\Downloads Windows 10 Pro Versie 1803 17134.376 (X64) (2018-05-18 01:28:09) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3411020503-2963188553-1366743928-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3411020503-2963188553-1366743928-503 - Limited - Disabled) Gast (S-1-5-21-3411020503-2963188553-1366743928-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3411020503-2963188553-1366743928-1003 - Limited - Enabled) rataplan (S-1-5-21-3411020503-2963188553-1366743928-1001 - Administrator - Enabled) => C:\Users\rataplan WDAGUtilityAccount (S-1-5-21-3411020503-2963188553-1366743928-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 3DMark (HKLM\...\{4951649C-3DF1-44FE-9D1C-2894D2D84698}) (Version: 2.6.6174.0 - UL) Hidden 3DMark (HKLM-x32\...\{d4d743ac-3702-4de2-9a4e-6a2f9bfd2004}) (Version: 2.6.6174.0 - UL) 7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{AEC70A45-D98B-C34A-F1DC-CA46F2D46F5E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) ANT Drivers Installer x64 (HKLM\...\{7664AF65-7B0D-4171-9F0F-50455278B428}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden APP Shop v1.0.28 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.28 - ASRock Inc.) ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.) ASRock XFast RAM v2.0.28 (HKLM\...\ASRock XFast RAM_is1) (Version: - ASRock Inc.) Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform) Clean Master (HKLM-x32\...\cmpc) (Version: 6.0 - Cheetah Mobile) Core Temp 1.12 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.12 - ALCPU) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.3.0 - devolo AG) Disk Master Free version 4.5.1 (HKLM\...\{8213CE5C-49D8-45CC-98C1-7355D18995C5}_is1) (Version: 4.5.1 - QILING Tech Co., Ltd.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden Elevated Installer (HKLM-x32\...\{1052502B-4C91-43F9-B160-AE39ED57C9F0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com) FINAL FANTASY XV BENCHMARK (HKLM\...\{D9872156-2547-4435-A4AD-21AEDF3C61BB}_is1) (Version: 1.0.114.1288 - SQUARE ENIX CO., LTD.) Futuremark SystemInfo (HKLM-x32\...\{54A3802E-DFED-4235-85A7-A604FE1CC64D}) (Version: 5.14.693.0 - Futuremark) Garmin Express (HKLM-x32\...\{BCC7CA85-E57F-452D-BB44-15A1CE018BD0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express (HKLM-x32\...\{bd8bd200-9a60-4969-b267-6b565f36e3da}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Garmin Express Tray (HKLM-x32\...\{DA9C865D-6762-4931-8588-0B13B7A0796B}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.) Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Photosmart 5520 series Basissoftware van het apparaat (HKLM\...\{D2FFE8A1-980E-4CF9-A48F-453D767BA661}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photosmart 5520 series Help (HKLM-x32\...\{193C95A3-E4D5-4482-A9C9-1510E29849E4}) (Version: 27.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden inst (HKLM-x32\...\{677920A6-CA0B-434A-88AA-5D7D656942DB}) (Version: 1.0.0.0 - Creative Software Solutions GmbH) Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Malwarebytes versie 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.11001.20074 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 63.0.1 (x64 nl) (HKLM\...\Mozilla Firefox 63.0.1 (x64 nl)) (Version: 63.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.1 - Mozilla) MSI Afterburner 4.6.0 Beta 9 (HKLM-x32\...\Afterburner) (Version: 4.6.0 Beta 9 - MSI Co., LTD) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.1.0.12 - MSI) MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA 3D Vision controllerstuurprogramma 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation) NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Uw bedrijfsnaam) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden PCMark 7 (HKLM-x32\...\{75C3C9C0-6CE6-42FA-A0E9-658E8F539124}) (Version: 1.4.0 - Futuremark) PerformanceTest v9.0 (HKLM\...\PerformanceTest 9_is1) (Version: 9.0.1027.0 - Passmark Software) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.24.1208.2017 - Realtek) Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 2.0.2.12 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) Rise of Nations: Extended Edition (HKLM-x32\...\Rise of Nations: Extended Edition_is1) (Version: - Microsoft Studios) RivaTuner Statistics Server 7.2.0 Beta 5 (HKLM-x32\...\RTSS) (Version: 7.2.0 Beta 5 - Unwinder) Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung) SiSoftware Sandra Lite Titanium.SP1b (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 28.26.2018.8 - SiSoftware) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype versie 8.30 (HKLM-x32\...\Skype_is1) (Version: 8.30 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9C4F3AF4-21D8-43BD-A69C-517BB96012CF}) (Version: 2.12.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) YouTube Downloader 4.6.995 (HKLM-x32\...\{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1) (Version: - HOW Inc.) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers1-x32: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers2-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers2-x32: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers4-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers4-x32: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2017-12-22] (Cheetah Mobile,Inc.) ContextMenuHandlers4-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-07-15] (Advanced Micro Devices, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {00798E63-10B5-4E67-BE21-C2410099D0A6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {00D0D464-9ED3-40D5-ABCD-0CD3281703E3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-10-23] (Piriform Ltd) Task: {0568DA79-134B-4274-A2FF-18FF9B7B230D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation) Task: {06ADC0FA-6A4A-4DBD-9F64-A2F3B4BCBC20} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {0BC629A3-0FA1-428E-B534-004EFB0D27CE} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe Task: {0DC5BB4E-46F9-4ADA-A51E-2CCF6CB8D91A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12] (Adobe Systems Incorporated) Task: {0FB8B3A3-EBE9-472E-A3D7-325DB99AC943} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-22] (Microsoft Corporation) Task: {128F4E94-C35E-42F3-B635-575F4F09E0AC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {15FCFE5A-B903-4585-AA6C-779C82850740} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation) Task: {2703A50F-E00F-4377-A078-B2BE82ADE095} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {2F08A397-9DA0-45A2-B8A2-BFA6575CE42E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {31471FDE-8C73-4D69-AE47-3AD0FFD1440A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {327A535A-7337-44B8-A799-95FAF05FE2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {38BC4C74-67F8-4FAB-9AD0-B16876EA772A} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [2016-12-09] (Micro-Star INT'L CO., LTD.) Task: {4A5952E0-133F-4B01-97CB-52BB39A692B1} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {4AB383F7-C8B7-4ADF-AF1E-5CB224BA9609} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {4FA5A429-5D03-4135-A75F-C153171A6A3A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {52E9907D-4A28-4416-990D-1727AF410D07} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {58CEFBD7-BF48-410B-92F9-73A5596EC4AA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-24] (Microsoft Corporation) Task: {5A251ECB-89EA-4242-B319-57ED058E5243} - System32\Tasks\{61963E69-0917-45B9-8BF2-3068CEB0E4D7} => C:\Windows\system32\pcalua.exe -a M:\eFilmLt.exe -d M:\ Task: {5CAAA0D8-36EA-442E-BB18-EF67F5475BCE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-22] (Microsoft Corporation) Task: {5F1F3DC0-5AF6-42E3-B259-C35F1229A24D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-10-09] (Microsoft Corporation) Task: {5F4DD7BB-71F6-4116-A885-D1260DBE902C} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {6EEA2FAE-4D28-4AD3-8738-2F6264FEC568} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation) Task: {720B88B3-31C2-489D-929D-1DCB0E21C235} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {733B47E9-4EDB-4678-9771-4B32DBCA3C0A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-11-03] (Microsoft Corporation) Task: {7A72DA09-FE84-4379-8CA7-094827969960} - System32\Tasks\S-1-5-21-3411020503-2963188553-1366743928-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation) Task: {7B5FD439-DE24-4B7C-968D-4C7DD09010F9} - System32\Tasks\FSTU => C:\Program Files (x86)\Fatal1ty Utility\FSTU\Bin\FSTU.exe Task: {818900BE-C429-49F0-872E-F5EC820A15C5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-30] (AVAST Software) Task: {83C72BAF-C315-46CA-926D-D57A6366EAA3} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-03-28] () Task: {882C91E0-802B-4483-95EC-A500F0FBCAFD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-03] (Microsoft Corporation) Task: {885F1D92-C4CF-4882-84AF-2B4080C0915E} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [2015-08-18] (MSI) Task: {8EA28C2F-2F36-47B5-9A22-C6EA66B07041} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-11-03] (Microsoft Corporation) Task: {9183F834-FE02-4F32-BD9B-E763A7F8ACC9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {922E010C-C8D0-4F46-8E6F-ED6C72800F77} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-03] (Microsoft Corporation) Task: {94B3EA24-D727-4C6F-A4CE-FADEA369EB6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-22] (Microsoft Corporation) Task: {9DAE4291-EB3E-4D29-B1B6-2C119992F702} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {ACDF4E8C-4A90-47CE-881F-8098E3744EDB} - System32\Tasks\Core Temp Autostart rataplan => C:\Program Files\Core Temp\Core Temp.exe [2018-05-19] (ALCPU) Task: {B089A3A5-6334-46BD-B636-CE348639F20D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {B3FBF7EE-3E6E-42B1-8FC3-AA944C90661C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-22] (Microsoft Corporation) Task: {C356DF25-EB04-4975-B6BB-897BE866655F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {C99E438A-64D9-47B2-ACEE-ED8E6C9F1C2A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-08] (Google Inc.) Task: {D5C95972-6349-44BB-8EFD-65B222006FFA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-11-03] (Microsoft Corporation) Task: {D6625513-CD3A-47B1-B39B-7EA5928EFF32} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-08] (Google Inc.) Task: {D7977804-E9FA-4EAE-ADD7-05E1D5E7953B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {D811A025-1EBC-4966-92C0-316709EC517B} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.) Task: {DECBC887-9D39-41D9-AE2B-DDB49CC35BD6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {E3521CA0-5BDF-46A1-B88A-13D89320A31A} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2018-09-22] () Task: {E9876393-2562-46D8-815F-2A55A87A95F4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-24] (Microsoft Corporation) Task: {EF5219B7-AF72-4B79-896C-683499E754BB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-10-23] (Piriform Ltd) Task: {F7F48153-7015-44D2-AF40-66C10BFCE280} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {FBB34614-78B5-4C1F-825A-9769626E1B2B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {FD34E665-DA41-4602-9B22-DE416CE208CB} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2015-07-15 20:39 - 2015-07-15 20:39 - 000214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2014-02-11 06:08 - 2014-02-11 06:08 - 000817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll 2014-02-11 06:08 - 2014-02-11 06:08 - 003650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll 2018-10-03 16:42 - 2018-10-31 22:08 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-06-05 23:58 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-07-03 13:31 - 2011-09-08 12:41 - 000008192 _____ () C:\Program Files\Core Temp\plugins\CoreTempRemoteServer\SystemInfo.dll 2017-06-02 13:45 - 2016-06-14 15:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll 2018-09-22 17:31 - 2018-09-22 17:31 - 000745256 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-10-26 03:44 - 2018-10-21 08:15 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-16 14:52 - 2018-10-16 14:52 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-10-26 21:42 - 2018-10-26 21:43 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-10-26 21:42 - 2018-10-26 21:43 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-10-26 21:42 - 2018-10-26 21:43 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-09-26 08:43 - 2017-09-26 08:43 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-10-26 21:42 - 2018-10-26 21:43 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll 2018-10-22 23:45 - 2018-10-22 23:45 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-06-05 23:58 - 2018-10-10 21:03 - 101252136 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-06-05 23:58 - 2018-10-10 21:03 - 004619816 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll 2018-06-05 23:58 - 2018-10-10 21:03 - 000108584 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll 2018-11-08 16:55 - 2018-11-08 16:55 - 001434384 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11001.20083.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll 2017-02-14 08:42 - 2017-02-14 08:42 - 000326144 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\GpsImgWrapper.dll 2017-03-28 14:32 - 2017-03-28 14:32 - 000073216 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\FixBootSector.dll 2017-06-02 13:45 - 2016-06-14 15:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll 2018-09-22 16:50 - 2018-09-22 16:50 - 000072704 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2018-09-22 16:50 - 2018-09-22 16:50 - 000232448 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2018-09-22 16:50 - 2018-09-22 16:50 - 000057344 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2018-09-22 16:50 - 2018-09-22 16:50 - 000357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2018-09-22 16:51 - 2018-09-22 16:51 - 000605184 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2017-06-03 21:37 - 2018-10-10 21:04 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\malwarebytes.com -> hxxps://malwarebytes.com IE trusted site: HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\malwarebytes.com -> hxxp://malwarebytes.com ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 195.130.131.5 - 195.130.130.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == Als een item is opgenomen in de fixlist, zal het worden verwijderd. HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\StartupApproved\Run: => "FileHippo.com" HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\StartupApproved\Run: => "GarminExpressTrayApp" HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\StartupApproved\Run: => "FreeYouTubeDownloader" HKU\S-1-5-21-3411020503-2963188553-1366743928-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{2E496E56-3BEE-4AC2-8F3C-18EE9655574B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{DC692B3F-1DA1-4732-B768-15767D74C0D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{F2228CCA-CC3E-4079-BAFC-68CDEE4AF42D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{E92F42A4-7062-4DD1-9C3C-63A8AB5AD932}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{D0F42AB9-C260-451A-A643-234275653160}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{C16B8E22-E00B-47AF-8A5E-0B2C45485D85}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{BA1A8C41-8A97-4CA3-B3D4-8E056F1B0DEF}] => (Allow) LPort=2333 FirewallRules: [{FAF9BB9C-7E9E-4FCB-86F4-06E257742A96}] => (Allow) LPort=9143 FirewallRules: [{A40010B8-1EE8-417C-9F56-822C0E5C9B7C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0CA037A2-0A0E-4B53-8861-36610D32183C}] => (Allow) LPort=2869 FirewallRules: [{CD8012BB-F0D5-4D61-8465-4FF182EEBD27}] => (Allow) LPort=1900 FirewallRules: [{F9C4FD33-D9F0-4AEF-A219-F2086D1E2FB3}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe FirewallRules: [{CE324FF6-21BD-4ED3-A5C2-4AF95232D91F}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{76DED897-918D-4462-95F6-B1D0B51099D6}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{EFF7A2FD-0C5E-47E4-A646-0DE1098FBF59}] => (Allow) C:\Users\rataplan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{012D3C92-BD21-4044-A34A-F9A03B4A6209}] => (Allow) C:\Users\rataplan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D7983C29-4E83-4DDA-8725-2A3673EB984A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{0BE757F5-B2BB-4A73-B440-E938C8CB5566}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{B731270E-C212-4F03-B87C-2A33F17B8D19}C:\program files\core temp\core temp.exe] => (Allow) C:\program files\core temp\core temp.exe FirewallRules: [UDP Query User{EB1CA059-CD90-40CB-9D5F-0CDCF6D9AB84}C:\program files\core temp\core temp.exe] => (Allow) C:\program files\core temp\core temp.exe FirewallRules: [{8D35CDA8-301E-4300-9ABA-45BB5F2A8E8C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{C7291321-F995-4CBE-86AD-835CE6D0023A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{A1C265B2-E03D-4089-A11B-8A29B7526A05}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{315198FB-A8E0-47AD-B570-4D3333A5707E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{03806DDA-4BB8-4574-B291-02A75B557EF2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{1BAC7C10-1F9E-476C-BA21-71DB7EA85E53}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{64D7AE62-A2E7-4B29-B12D-BF48F1AB116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe FirewallRules: [{E446B01F-7C66-4DF3-86A6-FD8008BCCF64}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe FirewallRules: [{5F7CEE1A-E24D-49A6-A8C2-3343FAFE2222}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{5A4ACEB3-7792-473A-883B-D3045C5846FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{3ADB3874-A92E-44F5-BED3-925B39F4D92A}] => (Allow) LPort=26789 FirewallRules: [TCP Query User{43C78203-CA4C-427C-953F-4D06AF079940}C:\windows\system32\rundll32.exe] => (Block) C:\windows\system32\rundll32.exe FirewallRules: [UDP Query User{F1549374-24A6-4ED1-AAE3-2F62929B48F3}C:\windows\system32\rundll32.exe] => (Block) C:\windows\system32\rundll32.exe FirewallRules: [{49C677DF-C9E5-4241-B190-C3106839FF18}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [{5CA77899-0C4F-4F39-BCF7-6FA381649930}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [{ABD55B97-282E-463F-9400-7E1645A8D417}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{500B1D52-13D3-421B-A12C-57235543A29B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D3419B8D-EE51-4055-B49E-DA377FE2FE96}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{695A20F4-F4AD-4393-9608-F79B2AF0B5FE}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe FirewallRules: [{83374BE1-1B40-4595-A52D-40EB440CFA31}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{31B925F4-3684-48FC-A27F-CE09CC4A6E02}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{8E0EBCE3-649D-4535-8085-73F6B9F66942}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{AF411ED6-300D-49E0-97C1-651454BE55E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{22668DF0-5466-4B94-8158-0D3418536A9B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{93319FB7-8369-403D-82BA-D8DF2D95BBB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6D04B994-279A-41C5-B6B9-955A5AF00541}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F4B8D0E8-B73C-424F-A71F-017BC19C21BC}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{25130D48-F905-41CC-B7C6-61F358DCC299}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{463D1F9B-9F90-4859-8AFC-0584AF2F6851}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\RpcSandraSrv.exe ==================== Herstelpunten ========================= 30-10-2018 21:00:44 Installatieprogramma voor Windows-modules 31-10-2018 21:07:28 Installatieprogramma voor Windows-modules 01-11-2018 22:30:17 Installatieprogramma voor Windows-modules 03-11-2018 00:29:45 Installatieprogramma voor Windows-modules 04-11-2018 02:29:18 Installatieprogramma voor Windows-modules 05-11-2018 14:28:16 Installatieprogramma voor Windows-modules 07-11-2018 00:28:19 Installatieprogramma voor Windows-modules 08-11-2018 02:28:17 Installatieprogramma voor Windows-modules 09-11-2018 04:28:15 Installatieprogramma voor Windows-modules 10-11-2018 08:28:21 Installatieprogramma voor Windows-modules 11-11-2018 16:34:39 Installatieprogramma voor Windows-modules ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (11/12/2018 07:24:37 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: esu.exe, versie: 1.0.0.0, tijdstempel: 0x58dac8d5 Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.319, tijdstempel: 0x5ea0e53d Uitzonderingscode: 0xe0434352 Foutmarge: 0x001117d2 Id van proces met fout: 0x1e74 Starttijd van toepassing met fout: 0x01d47a50612bb9a9 Pad naar toepassing met fout: C:\Program Files (x86)\Garmin\Express SelfUpdater\esu.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 8cac86b1-b990-4929-9bd3-0e584dcb2b0f Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (11/12/2018 07:24:37 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (11/12/2018 07:24:37 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: esu.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.IO.FileNotFoundException bij Garmin.Omt.Service.Shared.Overrides+d__61.MoveNext() bij System.Runtime.CompilerServices.AsyncTaskMethodBuilder.Start[[Garmin.Omt.Service.Shared.Overrides+d__61, ExpressSelfUpdater, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]](d__61 ByRef) bij Garmin.Omt.Service.Shared.Overrides.UpdateDatacenterOverridesAsync(Boolean) bij Garmin.Omt.Service.Shared.Overrides..cctor() Uitzonderingsinformatie: System.TypeInitializationException bij Garmin.Omt.Service.Shared.Overrides.get_OmtBaseUrl() bij Garmin.Omt.Express.SelfUpdater.Program.RealMain() bij Garmin.Omt.Express.SelfUpdater.Program.Main(System.String[]) Error: (11/11/2018 09:34:19 PM) (Source: Service1) (EventID: 0) (User: ) Description: Verwerking van sessiewijziging is mislukt. System.ComponentModel.Win32Exception (0x80004005): Het systeem kan het opgegeven bestand niet vinden bij System.Diagnostics.Process.StartWithShellExecuteEx(ProcessStartInfo startInfo) bij GamingApp_Service.Service1.OnSessionChange(SessionChangeDescription changeDescription) bij System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId) Error: (11/11/2018 08:58:51 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: NahimicMonitor.exe, versie: 1.0.1.5, tijdstempel: 0x58231164 Naam van module met fout: NAHIMICV3NSControl.dll, versie: 3.4.5.31485, tijdstempel: 0x56d4257e Uitzonderingscode: 0xc0000005 Foutmarge: 0x00005177 Id van proces met fout: 0x197c Starttijd van toepassing met fout: 0x01d47994622980cd Pad naar toepassing met fout: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NahimicMonitor.exe Pad naar module met fout: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NAHIMICV3NSControl.dll Rapport-id: 04c83d4a-a58d-4f7c-8d85-d686a0166f24 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (11/11/2018 08:58:51 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: NahimicMonitor.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.AccessViolationException bij NahimicMonitor.App.InitNahimicSettings() bij NahimicMonitor.App.Application_Startup(System.Object, System.Windows.StartupEventArgs) bij System.Windows.Application.OnStartup(System.Windows.StartupEventArgs) bij System.Windows.Application.<.ctor>b__1_0(System.Object) bij System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) bij System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) bij System.Windows.Threading.DispatcherOperation.InvokeImpl() bij System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bij MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) bij System.Windows.Threading.DispatcherOperation.Invoke() bij System.Windows.Threading.Dispatcher.ProcessQueue() bij System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) bij System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) bij System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) bij System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) bij MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) bij MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) bij System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) bij System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) bij System.Windows.Application.RunDispatcher(System.Object) bij System.Windows.Application.RunInternal(System.Windows.Window) bij System.Windows.Application.Run(System.Windows.Window) bij NahimicMonitor.App.Main() Error: (11/11/2018 07:21:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: esu.exe, versie: 1.0.0.0, tijdstempel: 0x58dac8d5 Naam van module met fout: KERNELBASE.dll, versie: 10.0.17134.319, tijdstempel: 0x5ea0e53d Uitzonderingscode: 0xe0434352 Foutmarge: 0x001117d2 Id van proces met fout: 0x28b0 Starttijd van toepassing met fout: 0x01d47986d4e516fd Pad naar toepassing met fout: C:\Program Files (x86)\Garmin\Express SelfUpdater\esu.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: fe61ccf1-02d5-4b40-8ea1-eb574640a8c7 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (11/11/2018 07:21:54 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: esu.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.IO.FileNotFoundException bij Garmin.Omt.Service.Shared.Overrides+d__61.MoveNext() bij System.Runtime.CompilerServices.AsyncTaskMethodBuilder.Start[[Garmin.Omt.Service.Shared.Overrides+d__61, ExpressSelfUpdater, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]](d__61 ByRef) bij Garmin.Omt.Service.Shared.Overrides.UpdateDatacenterOverridesAsync(Boolean) bij Garmin.Omt.Service.Shared.Overrides..cctor() Uitzonderingsinformatie: System.TypeInitializationException bij Garmin.Omt.Service.Shared.Overrides.get_OmtBaseUrl() bij Garmin.Omt.Express.SelfUpdater.Program.RealMain() bij Garmin.Omt.Express.SelfUpdater.Program.Main(System.String[]) Systeemfouten: ============= Error: (11/12/2018 07:21:36 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (11/12/2018 07:21:36 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (11/12/2018 07:21:36 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (11/11/2018 09:34:32 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 5 Error: (11/11/2018 09:34:11 PM) (Source: DCOM) (EventID: 10010) (User: RATAPLAN) Description: De server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (11/11/2018 09:34:11 PM) (Source: DCOM) (EventID: 10010) (User: RATAPLAN) Description: De server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (11/11/2018 08:38:36 PM) (Source: DCOM) (EventID: 10016) (User: RATAPLAN) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker rataplan\rataplan SID (S-1-5-21-3411020503-2963188553-1366743928-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (11/11/2018 04:36:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID Windows.SecurityCenter.WscDataProtection en APPID Niet beschikbaar aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Windows Defender: =================================== Date: 2018-11-02 01:17:58.027 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {2BA42C20-7401-4C6E-8D24-71E1EC1A70F1} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-10-30 21:01:34.588 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {DD2F07F2-E2AD-4B8B-8060-C1A6F0709711} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-10-25 01:33:31.152 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {A6A14A26-CB7C-463A-AE47-2D5A92F95FFC} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-10-24 16:28:20.325 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {891703B2-12E1-49AF-82D2-6D2B4B379055} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-10-24 16:20:52.807 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {B063633A-A369-4896-960E-ACE39D8951BE} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM CodeIntegrity: =================================== Date: 2018-11-11 17:54:11.575 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-11 17:54:11.560 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-11 17:54:11.539 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-11 17:54:11.105 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-11 17:54:11.095 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-11 17:54:11.001 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-10 18:21:49.049 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-11-10 18:21:49.039 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. ==================== Geheugen info =========================== Processor: AMD FX(tm)-8350 Eight-Core Processor Percentage geheugen in gebruik: 32% Totaal fysiek RAM-geheugen: 12259.01 MB Beschikbaar fysiek RAM-geheugen: 8277.41 MB Totaal Virtueel geheugen: 14115.01 MB Beschikbaar Virtueel geheugen: 8096.81 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:231.66 GB) (Free:51.32 GB) NTFS Drive d: (Door systeem gereserveerd) (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] Drive e: (Media) (Fixed) (Total:1020.51 GB) (Free:229.79 GB) NTFS Drive f: () (Fixed) (Total:842.51 GB) (Free:842.15 GB) NTFS Drive g: () (Fixed) (Total:465.75 GB) (Free:465.55 GB) NTFS \\?\Volume{cb0ea805-0000-0000-0000-20003a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS \\?\Volume{cb0ea805-0000-0000-0000-401c3a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E3E7E3E7) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: CB0EA805) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: D3A81E5C) Partition 1: (Not Active) - (Size=1020.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=842.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (Protective MBR) (Size: 119.2 GB) (Disk ID: 00000000) Partition: GPT. ==================== Eind van Addition.txt ============================