Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 17.03.2019 Gestart door Beast (07-04-2019 11:38:31) Gestart vanaf C:\Users\Beast\Downloads Windows 7 Professional Service Pack 1 (X64) (2013-11-09 19:11:17) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3473739808-715647190-2127078386-500 - Administrator - Disabled) Beast (S-1-5-21-3473739808-715647190-2127078386-1000 - Administrator - Enabled) => C:\Users\Beast Gast (S-1-5-21-3473739808-715647190-2127078386-501 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.) 7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated) Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft) ANT Drivers Installer x64 (HKLM\...\{15E1B393-3CCA-4C5B-A187-ACBC36019E73}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden ANT Drivers Installer x64 (HKLM\...\{4CBCD610-92A0-4B1E-893F-FC1E889F8B90}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden AOMEI Backupper Trial (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software) Belgium e-ID middleware 4.4.4 (build 3838) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73838}) (Version: 4.4.3838 - Belgian Government) Brave (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Brave) (Version: 0.25.304 - Brave Software) Brave (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\BraveSoftware Brave-Browser) (Version: 73.0.62.51 - De auteurs van Brave) Brother MFL-Pro Suite DCP-L2500D series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.2.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform) Cisco WebEx Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Daedalus (HKLM-x32\...\Daedalus) (Version: 1.1.4883.0 - IOHK) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Delta 1.0.0 (only current user) (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0161ecdc-2041-5655-9e4e-ee442fb322e0) (Version: 1.0.0 - Opus Labs NV) Discord (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Discord) (Version: 0.0.305 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.11 - NVIDIA Corporation) Hidden Eid Reader plugin 1.1.2 (HKLM\...\2008-1418-6737-7883) (Version: 1.1.2 - ) f.lux (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Flux) (Version: - f.lux Software LLC) foobar2000 v1.4.3 (HKLM-x32\...\foobar2000) (Version: 1.4.3 - Peter Pawlowski) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.4.1.16828 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) HWiNFO64 Version 6.04 (HKLM\...\HWiNFO64_is1) (Version: 6.04 - Martin Malík - REALiX) Intel(R) Driver Update Utility 2.6 (HKLM-x32\...\{2B710CA5-99F0-4D29-962C-29A7CFF7A989}) (Version: 2.6.0.32 - Intel) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation) Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4414 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation) IOTA Wallet 2.5.7 (only current user) (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\85125e2a-0211-5c49-9018-9358da1074b1) (Version: 2.5.7 - IOTA Foundation) IrfanView 4.52 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.52 - Irfan Skiljan) Kodi (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Kodi) (Version: - XBMC-Foundation) Ledger Wallet Ripple version 1.0.3 (HKLM-x32\...\{2A226916-F20B-403D-B564-F2CF5CF8CEF8}_is1) (Version: 1.0.3 - Ledger) Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech) Logitech Gaming Software 8.78 (HKLM\...\Logitech Gaming Software) (Version: 8.78.129 - Logitech Inc.) Malwarebytes versie 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes) Media Preview (HKLM\...\{52AFC3E1-0FAA-4C05-88FF-373911EA68F5}) (Version: 1.4.3.429 - BabelSoft) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.7.03062 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0413-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) MiniLyrics (HKLM-x32\...\MiniLyrics) (Version: 7.7.49 - Crintsoft) MOUSE Editor (HKLM-x32\...\{3A4218DE-B9DB-4AD5-9DB2-5853D3AA0335}) (Version: 12.08.0006 - Uw bedrijfsnaam) Hidden Mouse Editor (HKLM-x32\...\InstallShield_{3A4218DE-B9DB-4AD5-9DB2-5853D3AA0335}) (Version: 12.08.0006 - Uw bedrijfsnaam) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 66.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 66.0.2 (x64 en-US)) (Version: 66.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2 - Mozilla) MPC-HC 1.8.6 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.8.6 - MPC-HC Team) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MusicBee 3.2 (HKLM-x32\...\MusicBee) (Version: 3.2 - Steven Mayall) MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.302 - Logitech) Neon 0.1.4 (only current user) (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\211a501f-25dd-501b-8c98-509ac17aedfa) (Version: 0.1.4 - Ethan Fast) NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles) Nuance PaperPort 12 (HKLM-x32\...\{2A770862-7142-4C77-8117-F933E4110A3F}) (Version: 12.1.0006 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden NVIDIA 3D Vision controllerstuurprogramma 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.11 - NVIDIA Corporation) NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.11 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.) PC Sleep (HKLM-x32\...\{11BD0F20-27DC-4584-AD10-9E99F32F8501}) (Version: 2.2.0 - www.pc-sleep.com) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Recorder Devices for ShareX 0.12.8 (HKLM\...\Recorder Devices for ShareX_is1) (Version: 0.12.8 - ) Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Scansoft PDF Professional (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version: - ) Hidden SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 12.4.1 - ShareX Team) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.) SoulseekQt (HKLM-x32\...\SoulseekQt) (Version: - ) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Spotify (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Spotify) (Version: 1.0.96.181.gf6bc1b6b - Spotify AB) SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC) SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1032 - SUPERAntiSpyware.com) TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer) TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) WhoCrashed 6.60 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{06B74C04-E813-4DD4-A972-172836EFA8D6}\InprocServer32 -> C:\Users\Beast\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll (Brave Software, Inc. -> BraveSoftware Inc.) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{06C9646D-2807-44C0-97D2-6DA0DB623DB4}\localserver32 -> C:\Users\Beast\AppData\Local\BraveSoftware\Brave-Browser\Application\73.0.62.51\notification_helper.exe (Brave Software, Inc. -> Brave Software, Inc.) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\Beast\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll (AddGadgets IT -> ) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Users\Beast\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GPU_Meter_V2.4.gadget\GPUStatusReader.dll (AddGadgets IT -> Orbmu2k) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{C08BA3C2-E6F8-4F89-A2AF-1719847F5570}\InprocServer32 -> C:\Users\Beast\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll (Brave Software, Inc. -> BraveSoftware Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-21] (AVAST Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-21] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-21] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-12-25] (Foxit Software Incorporated -> Foxit Software Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-21] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-21] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-12-25] (Foxit Software Incorporated -> Foxit Software Inc.) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0B04E106-61E2-4756-8248-6986052C5385} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {15A06516-0907-40D9-A7B0-950C5B5835AF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {174D2C7E-A843-49C0-A9A4-DA91B9648D69} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {1CDEFFA3-BA51-4A8E-B707-D70ED76FC121} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software) Task: {2B637BED-E0A0-46D7-95C5-77B7E74DD120} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {42AD7DA5-7A9F-4FD5-B30F-39A173BF9CEA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {54BB882B-9AED-4F0C-A4E2-499F49AE4423} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {62A9B50F-B690-46E2-93CD-5337916D32FA} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {722C6FC4-9CDF-4E3E-B560-CB439B92841E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {83B6ED74-1950-4DF7-92E2-5265E5D0DA9F} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-3473739808-715647190-2127078386-1000Core => C:\Users\Beast\AppData\Local\BraveSoftware\Update\BraveUpdate.exe (Brave Software, Inc. -> BraveSoftware Inc.) <==== AANDACHT Task: {98AE9305-F4D8-42B0-A5A0-CA42B3DFB6ED} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software) Task: {A0E6DFBE-2AAE-4889-AA6F-BF2E0017A3F9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {A5A3F553-DA35-46C9-B406-3CDE8641C5A5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {A7C6A1D2-C7C3-425D-9BEF-D4BCD5966EE6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {AF5F0F0B-E161-4314-A58D-82A2606C705D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe Task: {B8163D71-9D06-42CC-8BCC-9FD1CA0DE151} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {B8F3469D-8207-4D49-80A8-A73A92F797B0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {CA1A8D77-FC98-453F-8483-936A401E32A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E010E755-A283-4FEB-8640-61C5098F4A48} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {E3312364-C09B-4334-A0EE-258457B9257E} - System32\Tasks\{3B1542A5-AEC6-4E21-8E86-5FB365C2C6F7} => C:\Windows\system32\pcalua.exe -a C:\Users\Beast\Downloads\UtilityOnlineMarch09\64-bit\setup.exe -d C:\Users\Beast\Downloads\UtilityOnlineMarch09\64-bit Task: {E4EA1CE1-0D68-480D-9C3E-8450C529919C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {E981D63A-812C-41DA-A62C-0F58B6AE98C9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) Task: {F1DCCBDF-8AE4-4322-A3A4-407A31301930} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {F8D3530F-3BD7-428A-A9CE-760D312806BD} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-3473739808-715647190-2127078386-1000UA => C:\Users\Beast\AppData\Local\BraveSoftware\Update\BraveUpdate.exe (Brave Software, Inc. -> BraveSoftware Inc.) <==== AANDACHT (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=beimhnaefocolcplfimocfiaiefpkgbf ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Wallet Bitcoin.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kkdpmhnladdopljabkgpacgpliggeeaf ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Wallet Ethereum.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmlhkialjkaldndjnlcdfdphcgeadkkm ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> -incognito ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\aeea6001c9fdcab9\Click&Clean.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ghgabhipcejejjmhhchfonmamedcbeod ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\93be5e3e2dbc3663\Ledger Wallet Ripple.lnk -> C:\Program Files (x86)\Ledger Wallet Ripple\ledger_wallet_ripple.exe (Ledger) -> --user-data-dir="C:\Users\Beast\AppData\Local\Ledger Wallet Ripple\User Data" --profile-directory=Default --app-id=bmghlmpgpmgfkddeiopgfghnlndpaihg ==================== Geladen Modules (gefilterd) ============== 2017-10-12 13:37 - 2011-04-27 10:46 - 000027648 _____ (Nuance Communications, Inc.) [Bestand niet getekend] C:\Windows\system32\spool\DRIVERS\x64\3\NuanUI.DLL 2017-10-12 13:37 - 2011-04-27 10:46 - 000194048 _____ (Nuance Communications, Inc.) [Bestand niet getekend] C:\Windows\system32\spool\DRIVERS\x64\3\nuanoemuires.dll 2010-04-05 00:08 - 2010-04-05 00:08 - 001253376 _____ (Florian Gilles) [Bestand niet getekend] C:\Program Files\NetSpeedMonitor\nsm.dll 2019-02-21 22:00 - 2019-02-21 22:00 - 000078336 _____ (Igor Pavlov) [Bestand niet getekend] C:\Program Files\7-Zip\7-zip.dll 2014-08-08 16:11 - 2014-08-08 16:11 - 001654784 _____ (Microsoft Corporation) [Bestand niet getekend] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL 2017-10-12 13:39 - 2018-01-19 11:26 - 002976256 _____ (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe 2017-10-12 13:39 - 2018-01-18 15:39 - 000314368 _____ (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\BrYNSvc.exe 2014-07-29 17:38 - 2014-07-29 17:38 - 000065536 _____ (Microsoft Corporation) [Bestand niet getekend] C:\Windows\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll 2013-11-09 21:23 - 2012-12-21 16:43 - 000073728 ____R (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll 2005-09-07 13:03 - 2005-09-07 13:03 - 000036864 _____ (Black Ice Software, Inc.) [Bestand niet getekend] C:\Program Files (x86)\Nuance\PaperPort\blicectr.dll 2017-10-12 13:39 - 2009-02-27 16:38 - 000139264 ____R () [Bestand niet getekend] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2017-10-12 13:39 - 2018-01-18 15:39 - 001720832 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2017-10-12 13:39 - 2018-01-18 15:39 - 000208896 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2017-10-15 11:17 - 2016-10-08 17:03 - 001506304 _____ () [Bestand niet getekend] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll 2017-10-15 11:17 - 2016-07-21 10:54 - 000137728 _____ () [Bestand niet getekend] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll 2017-10-15 11:17 - 2016-10-08 17:04 - 000708608 _____ (Wondershare) [Bestand niet getekend] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSProducstInfo.dll 2017-10-12 13:39 - 2018-01-18 15:39 - 000519168 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\BrMonitor.dll 2017-10-12 13:39 - 2017-12-22 12:53 - 000122880 _____ ( ) [Bestand niet getekend] C:\Program Files (x86)\Browny02\brlmw03a.dll 2017-10-12 13:39 - 2017-12-22 12:53 - 000025299 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\brlm03a.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [252] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\webcompanion.com -> hxxp://webcompanion.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1001movie.com -> 1001movie.com Er zijn 6091 Meer websites. ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2019-01-04 17:22 - 000000938 _____ C:\Windows\system32\drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;C:\ProgramData\chocolatey\bin;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-3473739808-715647190-2127078386-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 195.130.131.4 - 195.130.130.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == Als een item is opgenomen in de fixlist, zal het worden verwijderd. MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" MSCONFIG\startupreg: OscarEditor => "C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe" Minimum MSCONFIG\startupreg: SmartSwitchPDLR.exe => C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPDLR.exe Run Kies4 ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{61309DD7-5909-443A-9515-0A596866726D}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{4C940DE9-3044-440D-BDA8-25A3C674720E}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{94C142DF-4682-4E68-BDB7-C4C342E02C6F}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Bestand niet getekend] FirewallRules: [UDP Query User{42C80B00-5E82-4924-8C0D-55461D21D58C}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [Bestand niet getekend] FirewallRules: [{ECCA5B09-762D-41C7-BA31-FBE6344DAB2E}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{014371CB-252D-48B0-B3A3-11218E35A4AC}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{7C79F78E-50CA-48CB-8976-4B2F989EDC99}] => (Allow) C:\Program Files (x86)\GAMES\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{887562D4-AC8E-42B0-B40E-9F0FAA61A2AB}] => (Allow) C:\Program Files (x86)\GAMES\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{2125A8E2-B64E-40A2-AACA-45BE07C4CD01}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [Bestand niet getekend] FirewallRules: [UDP Query User{8DB924C2-67D7-4A0C-8B51-2E9B0216EF01}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [Bestand niet getekend] FirewallRules: [TCP Query User{D7B9ECBD-B6A4-4F3B-B66F-F457426FE0F9}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{D5CA4FF9-D731-49A4-8327-126DA176E5DE}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{D0DBA362-48AA-4D8B-88FF-DBAEFB0F7522}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1061D8B7-B6CD-4AC4-B1E9-91ADF10F60B9}] => (Allow) LPort=2869 FirewallRules: [{C8BAD22C-58E1-4261-8A5B-5B166114E9B5}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{02FD1A25-91F5-4B34-AA68-906F2ADE819B}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{D9B0652F-7FF3-487C-8AFD-F012427B47EB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{1292D386-8294-4F25-BF9E-7241D64242C3}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{00F7C63C-B5CC-43BB-83F4-DD76EF80EDAD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{1A1AD925-41BC-4F06-B3B0-93BBF014CA3A}] => (Allow) LPort=3935 FirewallRules: [{2CC607BF-A9CC-44FD-9E3A-C856853B9730}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{91916B52-4B93-4DBB-9661-1FEDE87A03DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{470D28D8-1C69-42A1-96D6-3639D1208C5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{24DDFF58-7A7E-41C7-855F-54D558ED9242}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{963B74CE-4F0B-4B1A-A8B7-80902C4B828F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{26C71D2E-C613-45F4-9C46-35B1F468D15C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{1A6C713E-19B0-4215-9649-A8905BE59CD7}C:\program files\sdi\sdi_x64_r1793.exe] => (Allow) C:\program files\sdi\sdi_x64_r1793.exe (www.SamLab.ws -> www.SamLab.ws) [Bestand niet getekend] FirewallRules: [UDP Query User{3BAE3260-36CC-47AE-976B-4CF79A7D74FF}C:\program files\sdi\sdi_x64_r1793.exe] => (Allow) C:\program files\sdi\sdi_x64_r1793.exe (www.SamLab.ws -> www.SamLab.ws) [Bestand niet getekend] FirewallRules: [{13CE98E8-7B96-4BC5-9761-53E9EDF097B8}] => (Allow) C:\Program Files\Daedalus\cardano-node.exe (Input Output HK Limited -> ) FirewallRules: [{6F95849C-2B1C-4B91-B697-9460A6BECFCC}] => (Allow) C:\Program Files\Daedalus\cardano-node.exe (Input Output HK Limited -> ) FirewallRules: [{7BFD56D0-0FC5-4E78-BC24-870D0D8A192A}] => (Allow) C:\Program Files (x86)\GAMES\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{696386D7-1B5F-4E8F-871D-AD947788AC1C}] => (Allow) C:\Program Files (x86)\GAMES\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{6120A415-86B2-413A-8C35-158FFEC5C598}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{512CBCB6-EE23-46F3-B98C-DEE62BAF93BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{D2883960-BE02-4DA8-9033-4F75554237B8}C:\users\beast\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beast\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{CF533163-F8B9-4091-8ACF-CDDB15D429C6}C:\users\beast\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\beast\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{44EEBFF8-BD75-4C2F-8340-4D90DA547ACB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{066BDB28-C30F-467C-9878-4B34F2A85251}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{E199E25D-130E-4595-9E8D-F5D295A93429}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) FirewallRules: [{ECEC8E44-3D02-4C22-B383-654ACB901984}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) FirewallRules: [{A8E0044D-5174-49EB-907C-8F51DDEA56A1}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) FirewallRules: [{651008C5-1038-4B4B-AB7F-F2FF50F429BF}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) FirewallRules: [{7F4F3511-AB10-4EBC-90A1-32386A3B8BA5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{72E749E7-90F1-4B00-930B-927D17A0CECD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{590E0E53-EC23-44DF-9D28-82619E494C76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8F6DD238-3E16-4832-A24D-4688809E816E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6AE2D5E3-7589-4659-9A26-E231DBB17C87}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{89D47011-87E1-49A4-A715-AFCCCA3281C6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{A5E1AC00-EE4F-47E0-8BE2-966B1DC1A921}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{B6875577-1205-4EE8-BBB7-288E5C3EBB25}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [TCP Query User{EA7D225B-F4FF-4DA1-B104-690D178A5D8E}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [Bestand niet getekend] FirewallRules: [UDP Query User{335E51D0-56A2-43CB-AB5A-542B95AF0153}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [Bestand niet getekend] FirewallRules: [{0E8D43C3-FBF7-4D9E-B737-1D817749309D}] => (Allow) C:\Users\Beast\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) FirewallRules: [{A7C0422A-5C21-495D-B81A-6266CD9FA2CE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) ==================== Herstelpunten ========================= 27-03-2019 19:35:08 Gepland controlepunt 30-03-2019 10:01:48 Windows Update 06-04-2019 10:15:58 Windows Update 07-04-2019 09:50:01 voor adapter uninstall ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (04/07/2019 10:07:42 AM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (04/07/2019 09:49:11 AM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (04/06/2019 10:42:05 AM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (04/06/2019 10:16:14 AM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (04/05/2019 11:30:26 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Gegevens voor het Programma voor verbetering van de gebruikerservaring kunnen niet naar Microsoft worden verzonden. (Fout 80004005). Error: (04/05/2019 10:56:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Het uitpakken van een basislijst uit het CAB-bestand voor automatische updates is mislukt op met de fout: Het certificaat is niet geldig voor het aangevraagde gebruik. . Error: (04/05/2019 10:56:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Het uitpakken van een basislijst uit het CAB-bestand voor automatische updates is mislukt op met de fout: Het certificaat is niet geldig voor het aangevraagde gebruik. . Error: (04/05/2019 10:56:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Het uitpakken van een basislijst uit het CAB-bestand voor automatische updates is mislukt op met de fout: Het certificaat is niet geldig voor het aangevraagde gebruik. . Systeemfouten: ============= Error: (04/07/2019 11:38:10 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 40. Error: (04/07/2019 11:38:10 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Error: (04/07/2019 11:36:43 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 40. Error: (04/07/2019 11:36:43 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Error: (04/07/2019 11:35:45 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 40. Error: (04/07/2019 11:35:44 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Error: (04/07/2019 11:35:11 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 40. Error: (04/07/2019 11:35:11 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Windows Defender: =================================== Date: 2015-03-01 19:00:55.005 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Back-up Foutcode:0x8050800c Foutbeschrijving:Er is een onverwacht probleem opgetreden. Installeer beschikbare updates en probeer het programma opnieuw te starten. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates. Handtekeningversie:1.193.395.0 Engineversie:1.1.11400.0 Date: 2015-03-01 19:00:53.711 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Huidig Foutcode:0x8050800c Foutbeschrijving:Er is een onverwacht probleem opgetreden. Installeer beschikbare updates en probeer het programma opnieuw te starten. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates. Handtekeningversie:1.193.395.0 Engineversie:1.1.11400.0 Date: 2015-02-28 19:38:49.949 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Huidig Foutcode:0x8050800c Foutbeschrijving:Er is een onverwacht probleem opgetreden. Installeer beschikbare updates en probeer het programma opnieuw te starten. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates. Handtekeningversie:1.193.395.0 Engineversie:1.1.11400.0 Date: 2015-02-26 18:42:56.907 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Huidig Foutcode:0x80070002 Foutbeschrijving:Het systeem kan het opgegeven bestand niet vinden. Handtekeningversie:0.0.0.0 Engineversie:0.0.0.0 Date: 2015-02-22 12:16:01.290 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen:Back-up Foutcode:0x80096010 Foutbeschrijving:De digitale handtekening van het object kan niet worden gecontroleerd. Handtekeningversie:1.193.217.0 Engineversie:1.1.11400.0 ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Percentage geheugen in gebruik: 76% Totaal fysiek RAM-geheugen: 8081.99 MB Beschikbaar fysiek RAM-geheugen: 1874.67 MB Totaal Virtueel geheugen: 16162.13 MB Beschikbaar Virtueel geheugen: 9332.36 MB ==================== Schijven ================================ Drive c: (SSD) (Fixed) (Total:223.47 GB) (Free:29.11 GB) NTFS Drive e: (HD-1 (main disk)) (Fixed) (Total:1863.01 GB) (Free:290.68 GB) NTFS Drive f: (HD-2 (backup disk)) (Fixed) (Total:1863.01 GB) (Free:181.74 GB) NTFS \\?\Volume{4214b6c5-4972-11e3-809f-806e6f6e6963}\ (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: D8BC332F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: D8BC3357) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 1CCF65C9) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Einde van Addition.txt ============================