Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 20.02.2019 Gestart door gebruiker (20-02-2019 19:19:08) Gestart vanaf C:\Users\gebruiker\Desktop Windows 10 Home Versie 1803 17134.590 (X64) (2018-06-07 19:42:56) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-545769206-971983297-48503871-500 - Administrator - Disabled) => C:\Users\Administrator DefaultAccount (S-1-5-21-545769206-971983297-48503871-503 - Limited - Disabled) Gast (S-1-5-21-545769206-971983297-48503871-501 - Limited - Disabled) gebruiker (S-1-5-21-545769206-971983297-48503871-1001 - Administrator - Enabled) => C:\Users\gebruiker HomeGroupUser$ (S-1-5-21-545769206-971983297-48503871-1003 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-545769206-971983297-48503871-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) 7-Zip 18.01 (HKLM-x32\...\7-Zip) (Version: 18.01 - Igor Pavlov) 7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 19.010.20091 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated) AirDroid 3.3.1.1 (HKLM-x32\...\AirDroid) (Version: 3.3.1.1 - Sand Studio) Albelli Fotoboeken (HKU\S-1-5-21-545769206-971983297-48503871-1001\...\{B7961CCE-CF36-4858-BC1A-D06D3D25ECE5}_is1) (Version: 11.3.0.2053 - albelli NL) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG) Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros) AVSDK5 (HKLM\...\{D5A6E342-907C-4CEF-96CC-FC2F4990DC9C}) (Version: 5.4.30 - CYREN Inc.) Hidden Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.) Bonjour-afdrukservices (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.47 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP) Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.2.0 - Conexant) DTS Sound (HKLM-x32\...\{2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}) (Version: 1.01.2700 - DTS, Inc.) EaseUS Todo Backup Home 11.5 Trial (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 11.5 - CHENGDU YIWO Tech Development Co., Ltd) FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft) FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.8 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.) Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden HP Support Solutions Framework (HKLM-x32\...\{48EC231C-438C-48EC-B9AC-482C32A4232D}) (Version: 12.0.30.81 - Hewlett-Packard Company) Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Intel(R) Driver Update Utility 2.4 (HKLM-x32\...\{B731F5C4-E304-4DFA-9C84-F67FF849B408}) (Version: 2.4.0.15 - Intel) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Product Improvement Program (HKLM-x32\...\{E954D7C1-36FA-4FE8-8927-97DBDEB5A15F}) (Version: 2.1.27.3 - Intel) Hidden Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{1b09c4de-9cae-4122-b17c-65d395062b50}) (Version: 2.4.0.15 - Intel) iSkysoft Data Recovery(Build 1.3.2.2) (HKLM-x32\...\{656DB838-DB63-4acd-82E3-BB363ED99116}_is1) (Version: 1.3.2.2 - iSkysoft Software Co.,Ltd.) iSkysoft Helper Compact 2.5.2 (HKLM-x32\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.2 - iSkysoft) Kernel for Outlook PST Repair Evaluation ver 18.1 (HKLM-x32\...\Kernel for Outlook PST Repair - Evaluation Version_is1) (Version: - Lepide Software Pvt.Ltd.) Malware Killer (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.427 - Iolo Technologies, LLC) Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.11231.20174 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-545769206-971983297-48503871-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MP3jam 1.1.1.12 (HKLM-x32\...\MP3jam_is1) (Version: 1.1.1.12 - MP3jam) MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8372 - MyHeritage.com) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.11231.20174 - Microsoft Corporation) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.306 - Qualcomm Atheros) Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.) Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Secunia PSI (3.0.0.11005) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11005 - Secunia) ShiftN 4.0 (HKLM-x32\...\ShiftN_is1) (Version: 4.0.0.1 - Marcus Hebel) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Slideshow Creator (HKLM-x32\...\{4E1A63B1-F547-4CFC-91F7-F32F1A6BF430}_is1) (Version: 2.2 - Bolide Software) Softwarenetz Adressen3 (HKLM-x32\...\Adressen3) (Version: - Softwarenetz) Sticky Password 8.0.12.127 (HKLM-x32\...\Sticky Password_is1) (Version: 8.0 - Lamantine Software) Super-Druckstudio (HKLM-x32\...\{61CAFCB7-713F-4330-B9D4-2999236CE39A}) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.38 - Synaptics Incorporated) System Mechanic (HKLM\...\{1E5E7177-5156-4541-B8D5-B0C7E9064329}) (Version: - ) Hidden System Mechanic (HKLM-x32\...\{95129D61-FF52-4FA8-A403-3E31FC5D9696}) (Version: 18.0.0.233 - iolo technologies, LLC) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.2.0.6404 - Toshiba Corporation) TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.1.0001.6403 - Toshiba Corporation) TOSHIBA Gesture Controller (HKLM-x32\...\{8C5B4504-3996-4F30-8F01-DA7A8455430B}) (Version: 4.0.110.2 - Toshiba Corporation) TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA) TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0030 - Toshiba Corporation) TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.1.2.32001 - Toshiba Corporation) TreeSize Free V4.2.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.2.2 - JAM Software) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-545769206-971983297-48503871-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Phoenix360\MalwareKiller\ZAMShellExt64.dll [2018-08-17] (iolo technologies, LLC -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) ContextMenuHandlers1: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => C:\Program Files (x86)\Phoenix360\System Mechanic\x64\Incinerator.dll [2018-06-26] (IOLO TECHNOLOGIES, LLC -> iolo technologies, LLC) ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) ContextMenuHandlers4: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => C:\Program Files (x86)\Phoenix360\System Mechanic\x64\Incinerator.dll [2018-06-26] (IOLO TECHNOLOGIES, LLC -> iolo technologies, LLC) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Phoenix360\MalwareKiller\ZAMShellExt64.dll [2018-08-17] (iolo technologies, LLC -> ) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0FE2CD54-8ECF-4DF8-BE87-CE0685980E85} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {12F8320A-1FA5-43D0-A32B-4190F1B46C8C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {1A2B91AC-63B3-4563-A2C6-30A14D9487FB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.) Task: {1FD983BA-5576-4119-8601-FA2631F68CC4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation) Task: {2521BDE1-7816-47DC-8FCD-CF91731BA461} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {2EA36AE2-9FB2-474E-A6CE-55EDB0DC0F74} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {36555F68-D7B7-4977-99C9-3F1DEFD0756A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {3B6F37CA-02CE-450F-A285-B0AD9630F8BD} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {3BB794B8-6651-4017-8F93-28B5772AE38D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {3D0B3AF1-2499-4942-883F-EF6AB6E5E176} - System32\Tasks\ActiveMessenger-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\ActiveMessenger.exe Task: {3D84E2B9-5B51-49FA-B235-13ED1C895E78} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {4514891E-561E-4702-BE90-D29653827CED} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation) Task: {4574DD20-3BD4-4630-AB54-31B02AF8767A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {45868824-FA46-42B6-B83F-71112D734DEF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {5761C90F-404B-4243-9592-E38718ED2479} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {5AC9374D-C96B-4E90-99E8-873EE6AB7FC0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {6444ECD4-E6C3-40C0-9123-29DAF1A2683D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation) Task: {6EBD3066-C89E-437D-8765-BE0774D40019} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation) Task: {7962C9CC-690F-40C0-B054-EECE7289C36C} - System32\Tasks\ActiveMessenger-MalwareKiller => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\ActiveBridge.exe (IOLO TECHNOLOGIES, LLC -> iolo technologies, LLC) Task: {79895C20-056F-48DD-86C4-3768E6E7ECC0} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {81F5B95A-A9D4-4A03-A20A-B32C76882EA6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {878CE6E3-F050-4068-BB4D-EDA6FED55C34} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {918B5340-DE0C-454F-83E2-0A9C096BA664} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {96FC23B2-D7B8-4A0D-AE02-9003D61A48FF} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs" Task: {A023DED6-424F-4883-8E6C-BD6F30EB6D93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {A1BDAB5F-096E-41BC-ABDC-3E67719E26E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {A479BEF0-BE5C-4D69-BCFF-4292B517CC3F} - System32\Tasks\ActiveSync-MalwareKiller => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\activebridge.exe (IOLO TECHNOLOGIES, LLC -> iolo technologies, LLC) Task: {AAEFCE51-CEBB-49D1-8CF5-7D333476079F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {B013C156-C2A9-4FB4-9ED7-900B3AB570AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {B6DC7EEF-C299-4BF5-B8C9-25CF736E6FC1} - System32\Tasks\ActiveSync-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\activesync.exe Task: {B774C43E-6ED5-462A-9388-0E0E2834DC32} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {B7FAC5A1-29F1-4FC6-8AB2-AFD8C1F38EF9} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe (Intel(R) Software -> Intel Corporation) Task: {C283E883-47A9-4702-B74B-6188B14D37C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {CC9F37FB-BDEC-4C1E-8E34-776725664BDE} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {D6576DA8-F0DD-4B50-B4F3-003199E29C44} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {D72FCECE-C383-4C44-A4F0-CF1C89CA5166} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe () [Bestand niet getekend] Task: {DD86EEC1-EC7D-4C67-80A2-8C97B98FF006} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd -> Piriform Ltd) Task: {E9A00CB4-E336-44FD-BDCE-97F2D3D25D2F} - \WPD\SqmUpload_S-1-5-21-545769206-971983297-48503871-1001 -> Geen bestand <==== AANDACHT Task: {EDEF227E-94EA-4EF1-B727-74DE5400F0C2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation) Task: {F5714F19-BE2E-41B9-81D5-483DD3C2098C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation) Task: {F59FB245-9609-458D-81C1-7DBB13A31DC4} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe Task: {F78743E4-2E9F-4E5F-A5F1-E4FDD3C38579} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {FA756D8F-420A-4D4A-ACC0-6F587CB988EE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ==================== Geladen Modules (gefilterd) ============== 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2013-09-10 20:54 - 2013-09-10 20:54 - 000019792 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe 2016-04-18 20:41 - 2016-03-09 19:43 - 000416408 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe 2016-04-18 20:41 - 2016-03-09 19:43 - 000709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000130712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000025752 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000059544 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000194712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000159896 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000158360 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000050840 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000032920 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-11-28 22:45 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-08-17 16:49 - 2018-08-17 16:49 - 000156560 _____ () C:\Program Files (x86)\Phoenix360\MalwareKiller\ZAMShellExt64.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000270480 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe 2014-05-09 15:05 - 2013-08-28 17:08 - 000053248 _____ () C:\Windows\SysWOW64\UMonit64.exe 2019-02-17 17:51 - 2019-02-06 03:25 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-04 09:09 - 2018-10-04 09:11 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 010541568 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\LibWrapper.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 002933760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\skypert.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 000688640 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 002362096 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\Processing.NDI.Lib.UWP.x64.dll 2019-02-15 14:05 - 2019-02-15 14:05 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-09-19 09:12 - 2018-09-19 09:12 - 000096760 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2016-04-18 20:41 - 2016-03-09 19:43 - 000460952 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe 2016-04-18 20:41 - 2016-03-09 19:43 - 000188568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll 2019-02-09 10:06 - 2019-02-09 10:07 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe 2019-02-08 18:23 - 2019-02-08 18:23 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-10-24 07:54 - 2018-10-24 07:54 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2018-11-30 16:33 - 2018-11-30 16:34 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2019-02-08 18:23 - 2019-02-08 18:23 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll 2019-02-08 18:23 - 2019-02-08 18:23 - 009338368 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntPlat.dll 2019-01-31 07:15 - 2019-01-31 07:16 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2019-01-31 07:15 - 2019-01-31 07:16 - 080636416 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-10-05 07:15 - 2017-10-05 07:16 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2019-01-31 07:15 - 2019-01-31 07:16 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2019-01-18 17:50 - 2019-01-18 17:51 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2019-01-31 07:15 - 2019-01-31 07:16 - 014225408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2019-01-31 07:15 - 2019-01-31 07:16 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-08-31 08:19 - 2018-08-31 08:21 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-07-27 16:02 - 2018-07-27 16:03 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-11-07 14:12 - 2018-10-10 11:01 - 000109712 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000019600 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll 2018-11-07 14:12 - 2016-03-07 18:08 - 001291264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll 2018-11-07 14:12 - 2004-10-05 03:08 - 000055808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000024720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000188560 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000195728 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000163472 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt_RTTO.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000055952 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000018064 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000058000 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000704144 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuActiveOnline.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000487568 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EULicenseDLL.DLL 2018-11-07 14:11 - 2018-10-22 14:17 - 000021648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\fsclog.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000264336 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AuthorizedMng.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000112272 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CalcScheduleTime.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000085648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000032912 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000070800 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000169616 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000539280 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000318608 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSUtil.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000078480 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000026256 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CallbackOperator.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000211088 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000074384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000141968 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000089232 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 002458768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000266384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000162960 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000029328 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000131216 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000026768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000024720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000034448 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000054416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000066192 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000026768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000072848 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000292496 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000078992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000021648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000138384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000075408 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlExBrowser.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000585872 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlSMOCPlusPlus.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000119952 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSearch.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000045200 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000367760 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000142992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000149136 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000052368 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000064144 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll 2018-11-07 14:11 - 2018-10-22 14:16 - 000091792 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll 2018-11-07 14:11 - 2018-10-22 14:17 - 000058512 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll 2014-05-09 14:49 - 2013-09-03 16:53 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2018-11-07 14:11 - 2018-10-22 14:18 - 000220304 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll 2019-01-03 14:44 - 2019-02-04 10:11 - 001074776 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\ADDINS\UmOutlookAddin.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\gebruiker\Downloads\HPSupportSolutionsFramework-12.0.30.81.exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (1).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (2).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (3).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (4).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (5).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (6).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn (7).exe:BDU [0] AlternateDataStreams: C:\Users\gebruiker\Downloads\pse_350_esn.exe:BDU [0] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 14:25 - 2016-04-11 19:33 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-545769206-971983297-48503871-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gebruiker\Pictures\Kerst\kerstchalet1280x1024.jpg DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == Als een item is opgenomen in de fixlist, zal het worden verwijderd. MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AJRouter => 3 MSCONFIG\Services: ALG => 3 MSCONFIG\Services: Appinfo => 3 MSCONFIG\Services: AppReadiness => 3 MSCONFIG\Services: AtherosSvc => 2 MSCONFIG\Services: AxInstSV => 3 MSCONFIG\Services: BDESVC => 3 MSCONFIG\Services: Bonjour Service => 3 MSCONFIG\Services: Browser => 3 MSCONFIG\Services: BthHFSrv => 3 MSCONFIG\Services: bthserv => 3 MSCONFIG\Services: CertPropSvc => 3 MSCONFIG\Services: COMSysApp => 3 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: CxAudMsg => 2 MSCONFIG\Services: DcpSvc => 3 MSCONFIG\Services: defragsvc => 3 MSCONFIG\Services: DeviceInstall => 3 MSCONFIG\Services: DevQueryBroker => 3 MSCONFIG\Services: diagnosticshub.standardcollector.service => 3 MSCONFIG\Services: DmEnrollmentSvc => 3 MSCONFIG\Services: dot3svc => 3 MSCONFIG\Services: DsmSvc => 3 MSCONFIG\Services: DsSvc => 3 MSCONFIG\Services: EapHost => 3 MSCONFIG\Services: EFS => 3 MSCONFIG\Services: embeddedmode => 3 MSCONFIG\Services: EntAppSvc => 3 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: fdPHost => 3 MSCONFIG\Services: FDResPub => 3 MSCONFIG\Services: FontCache3.0.0.0 => 3 MSCONFIG\Services: FrameServer => 3 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: hidserv => 3 MSCONFIG\Services: HomeGroupListener => 3 MSCONFIG\Services: HomeGroupProvider => 3 MSCONFIG\Services: HvHost => 3 MSCONFIG\Services: ICCS => 3 MSCONFIG\Services: icssvc => 3 MSCONFIG\Services: IKEEXT => 3 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: irmon => 3 MSCONFIG\Services: KeyIso => 3 MSCONFIG\Services: KtmRm => 3 MSCONFIG\Services: lfsvc => 3 MSCONFIG\Services: LicenseManager => 3 MSCONFIG\Services: lltdsvc => 3 MSCONFIG\Services: lmhosts => 3 MSCONFIG\Services: Microsoft SharePoint Workspace Audit Service => 3 MSCONFIG\Services: MSDTC => 3 MSCONFIG\Services: MSiSCSI => 3 MSCONFIG\Services: msiserver => 3 MSCONFIG\Services: NcaSvc => 3 MSCONFIG\Services: NcbService => 3 MSCONFIG\Services: NcdAutoSetup => 3 MSCONFIG\Services: Netlogon => 3 MSCONFIG\Services: Netman => 3 MSCONFIG\Services: netprofm => 3 MSCONFIG\Services: NetSetupSvc => 3 MSCONFIG\Services: NetTcpPortSharing => 4 MSCONFIG\Services: ose64 => 3 MSCONFIG\Services: osppsvc => 3 MSCONFIG\Services: p2pimsvc => 3 MSCONFIG\Services: p2psvc => 3 MSCONFIG\Services: PerfHost => 3 MSCONFIG\Services: PhoneSvc => 3 MSCONFIG\Services: pla => 3 MSCONFIG\Services: PlugPlay => 3 MSCONFIG\Services: PNRPAutoReg => 3 MSCONFIG\Services: PNRPsvc => 3 MSCONFIG\Services: PolicyAgent => 3 MSCONFIG\Services: PrintNotify => 3 MSCONFIG\Services: QWAVE => 3 MSCONFIG\Services: RasAuto => 3 MSCONFIG\Services: RasMan => 3 MSCONFIG\Services: RemoteAccess => 4 MSCONFIG\Services: RemoteRegistry => 4 MSCONFIG\Services: RetailDemo => 3 MSCONFIG\Services: RmSvc => 3 MSCONFIG\Services: RpcLocator => 3 MSCONFIG\Services: SCardSvr => 4 MSCONFIG\Services: ScDeviceEnum => 3 MSCONFIG\Services: SCPolicySvc => 3 MSCONFIG\Services: SDRSVC => 3 MSCONFIG\Services: seclogon => 3 MSCONFIG\Services: SensorDataService => 3 MSCONFIG\Services: SensorService => 3 MSCONFIG\Services: SensrSvc => 3 MSCONFIG\Services: SessionEnv => 3 MSCONFIG\Services: SharedAccess => 3 MSCONFIG\Services: shpamsvc => 4 MSCONFIG\Services: smphost => 3 MSCONFIG\Services: SNMPTRAP => 3 MSCONFIG\Services: SSDPSRV => 3 MSCONFIG\Services: SstpSvc => 3 MSCONFIG\Services: ss_conn_service => 3 MSCONFIG\Services: StateRepository => 3 MSCONFIG\Services: StorSvc => 3 MSCONFIG\Services: svsvc => 3 MSCONFIG\Services: swprv => 3 MSCONFIG\Services: SystemUsageReportSvc_WILLAMETTE => 3 MSCONFIG\Services: TabletInputService => 3 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: TermService => 3 MSCONFIG\Services: TieringEngineService => 3 MSCONFIG\Services: TrustedInstaller => 3 MSCONFIG\Services: tzautoupdate => 4 MSCONFIG\Services: UI0Detect => 3 MSCONFIG\Services: UmRdpService => 3 MSCONFIG\Services: upnphost => 3 MSCONFIG\Services: USER_ESRV_SVC_WILLAMETTE => 3 MSCONFIG\Services: UsoSvc => 3 MSCONFIG\Services: VaultSvc => 3 MSCONFIG\Services: vds => 3 MSCONFIG\Services: vmicguestinterface => 3 MSCONFIG\Services: vmicheartbeat => 3 MSCONFIG\Services: vmickvpexchange => 3 MSCONFIG\Services: vmicrdv => 3 MSCONFIG\Services: vmicshutdown => 3 MSCONFIG\Services: vmictimesync => 3 MSCONFIG\Services: vmicvmsession => 3 MSCONFIG\Services: vmicvss => 3 MSCONFIG\Services: VSS => 3 MSCONFIG\Services: W32Time => 3 MSCONFIG\Services: WalletService => 3 MSCONFIG\Services: wbengine => 3 MSCONFIG\Services: wcncsvc => 3 MSCONFIG\Services: WebClient => 3 MSCONFIG\Services: Wecsvc => 3 MSCONFIG\Services: WEPHOSTSVC => 3 MSCONFIG\Services: wercplsupport => 3 MSCONFIG\Services: WerSvc => 3 MSCONFIG\Services: WiaRpc => 3 MSCONFIG\Services: WinHttpAutoProxySvc => 3 MSCONFIG\Services: WinRM => 3 MSCONFIG\Services: wisvc => 3 MSCONFIG\Services: wlidsvc => 3 MSCONFIG\Services: wmiApSrv => 3 MSCONFIG\Services: WMPNetworkSvc => 3 MSCONFIG\Services: workfolderssvc => 3 MSCONFIG\Services: WPDBusEnum => 3 MSCONFIG\Services: wuauserv => 3 MSCONFIG\Services: wudfsvc => 3 MSCONFIG\Services: XblAuthManager => 3 MSCONFIG\Services: XblGameSave => 3 MSCONFIG\Services: XboxNetApiSvc => 3 HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk" HKLM\...\StartupApproved\Run: => "cAudioFilterAgent" HKLM\...\StartupApproved\Run: => "TecoResident" HKLM\...\StartupApproved\Run: => "TCrdMain" HKLM\...\StartupApproved\Run: => "TSSSrv" HKLM\...\StartupApproved\Run: => "Bdagent" HKLM\...\StartupApproved\Run32: => "KiesTrayAgent" HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update" HKU\S-1-5-21-545769206-971983297-48503871-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 Schermopname en Snel starten.lnk" HKU\S-1-5-21-545769206-971983297-48503871-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-545769206-971983297-48503871-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-545769206-971983297-48503871-1001\...\StartupApproved\Run: => "BingSvc" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{D9FBB6B6-06AD-4EA8-96C3-F913DC07BA9F}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) FirewallRules: [{8A9903F7-14CC-41B8-B10D-FE5EEA4D686B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) FirewallRules: [{960FE589-B2C6-4434-965F-88F49FD995C7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{407D7F86-FBB4-4917-B559-0A64F9BC6DFC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{E083FCCA-F718-4868-BA40-4433605704FE}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.) FirewallRules: [{6A36A7DE-2058-458C-B0A0-7386ACFC3590}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.) FirewallRules: [{DE07A645-08E2-49C1-A9E9-29634AD587F9}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{EBAE7D9A-F73E-4DB9-98E9-457E0BDC91ED}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{983076DB-CF7A-4DEC-87CD-61CF02BFBBB4}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) FirewallRules: [{BDDE436B-39C5-40E9-9043-0CB57527956A}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) FirewallRules: [{6F9BEEB5-5661-4E06-8B66-722ED5305982}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) FirewallRules: [{2590FEDF-047A-46B6-BAAE-AE07E4D9881B}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) FirewallRules: [{4C1123B4-56E1-407C-8FBE-1F4ED32A1531}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) FirewallRules: [{18026AC4-637E-45BC-BF74-56CF568F1354}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) FirewallRules: [{81149F8A-96C8-4966-A24E-06C1F9AE54AD}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) FirewallRules: [{2BC6B6D7-E09E-418A-A50A-6195BE81C83F}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) FirewallRules: [{9B318248-9EA7-49F4-9F46-2623C103983C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1BE7FF4D-2F95-41D2-8DB6-A228D1234312}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DE058DF7-F37A-47CA-933A-275ACFDA3C0A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5D2A3AEC-748B-4A6E-8CEC-9A08290E1FE5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{82225581-567B-43EE-ACA7-5068CAC8C237}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CF577D09-7600-4A9D-BCA2-83F57D1436E7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) ==================== Herstelpunten ========================= 16-02-2019 12:26:30 Gepland controlepunt 17-02-2019 22:01:05 Herstelbewerking ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (02/20/2019 06:44:35 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: httphttp-2147467263 Error: (02/20/2019 06:44:35 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: brave hendrikbrave hendrik-2147467263 Error: (02/20/2019 06:42:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: httphttp-2147467263 Error: (02/20/2019 06:42:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: brave hendrikbrave hendrik-2147467263 Error: (02/20/2019 06:41:23 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: httphttp-2147467263 Error: (02/20/2019 06:41:22 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: brave hendrikbrave hendrik-2147467263 Error: (02/20/2019 06:38:32 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: httphttp-2147467263 Error: (02/20/2019 06:38:32 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: TOSHIBA) Description: brave hendrikbrave hendrik-2147467263 Systeemfouten: ============= Error: (02/20/2019 07:10:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 06:43:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 06:42:31 PM) (Source: DCOM) (EventID: 10016) (User: TOSHIBA) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker toshiba\gebruiker SID (S-1-5-21-545769206-971983297-48503871-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 06:34:42 PM) (Source: DCOM) (EventID: 10016) (User: TOSHIBA) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker toshiba\gebruiker SID (S-1-5-21-545769206-971983297-48503871-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 06:29:27 PM) (Source: DCOM) (EventID: 10016) (User: TOSHIBA) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker toshiba\gebruiker SID (S-1-5-21-545769206-971983297-48503871-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 05:30:37 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {F3B4E234-7A68-4E43-B813-E4BA55A065F6} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (02/20/2019 05:28:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/20/2019 05:12:42 PM) (Source: DCOM) (EventID: 10016) (User: TOSHIBA) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker toshiba\gebruiker SID (S-1-5-21-545769206-971983297-48503871-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Windows Defender: =================================== Date: 2019-02-20 18:25:17.741 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {BE64291D-AD47-480D-A73E-9A423475F0DC} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-02-20 17:32:21.504 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {E44D92A2-B181-4628-88F8-1A5013101853} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-02-20 15:39:56.123 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {F8AE314B-80B3-4C82-904C-1E9C69C3CAE2} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-02-20 15:00:33.608 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {6ACEEDE0-7250-4E5E-BC53-F242B59FC2DC} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-02-20 14:55:35.450 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {97CBA4A9-2673-46E5-8D58-1C64C10C5D2A} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-02-17 22:26:34.344 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.287.189.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15700.8 Foutcode: 0x80070643 Foutbeschrijving: Onherstelbare fout bij installatie. Date: 2019-02-15 20:38:46.161 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.285.1563.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15600.4 Foutcode: 0x80072ee2 Foutbeschrijving: Er heeft een time-out van de bewerking plaatsgevonden. Date: 2019-02-13 20:34:00.836 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.285.1448.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15600.4 Foutcode: 0x80240438 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-02-10 16:22:01.866 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.285.1211.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15600.4 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-01-28 19:17:33.612 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.285.327.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15600.4 Foutcode: 0x80240438 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. ==================== Geheugen info =========================== Processor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz Percentage geheugen in gebruik: 47% Totaal fysiek RAM-geheugen: 6035.27 MB Beschikbaar fysiek RAM-geheugen: 3197.79 MB Totaal Virtueel geheugen: 6419.27 MB Beschikbaar Virtueel geheugen: 3237.38 MB ==================== Schijven ================================ Drive c: (TI31250700A) (Fixed) (Total:453.58 GB) (Free:275.88 GB) NTFS Drive e: () (Fixed) (Total:0.82 GB) (Free:0.8 GB) NTFS \\?\Volume{ce89416a-634e-11e3-acf3-afd3e5a6abca}\ (System) (Fixed) (Total:1 GB) (Free:0.61 GB) NTFS \\?\Volume{2a3aea9c-d794-11e3-b2ed-c454445b5f32}\ (Recovery) (Fixed) (Total:10.13 GB) (Free:0.93 GB) NTFS \\?\Volume{ce894172-634e-11e3-acf3-afd3e5a6abca}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32 ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Einde van Addition.txt ============================