Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-10-2019 Ran by hugok (22-10-2019 15:33:34) Running from C:\Users\hugok\Downloads Windows 10 Home Version 1903 18362.418 (X64) (2019-07-28 13:28:59) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1167631334-2873795934-467515027-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1167631334-2873795934-467515027-503 - Limited - Disabled) Guest (S-1-5-21-1167631334-2873795934-467515027-501 - Limited - Disabled) hugok (S-1-5-21-1167631334-2873795934-467515027-1001 - Administrator - Enabled) => C:\Users\hugok WDAGUtilityAccount (S-1-5-21-1167631334-2873795934-467515027-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: F-Secure SAFE (Disabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: F-Secure SAFE (Enabled - Up to date) {31A9D001-F96D-024E-EACB-7693DE78B727} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 19.021.20048 - Adobe Systems Incorporated) Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden Dell Customer Connect (HKLM-x32\...\{04A41EBC-AB30-4574-A14D-E0CDFE31AB70}) (Version: 1.5.1.0 - Dell Inc.) Dell Digital Delivery Services (HKLM-x32\...\{40B4F37A-DBE4-49AE-9B42-B4C49A81D2C9}) (Version: 4.0.41.0 - Dell Inc.) Dell Help & Support (HKLM\...\{8917AEA5-01A5-476F-AA27-A52EA6C94212}) (Version: 2.6.1.0 - Dell Inc.) Hidden Dell Help & Support (HKLM-x32\...\InstallShield_{8917AEA5-01A5-476F-AA27-A52EA6C94212}) (Version: 2.6.1.0 - Dell Inc.) Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Dell SupportAssist (HKLM\...\{95BD6E30-2B18-4FB0-B5AE-8250E5584831}) (Version: 3.3.3.13 - Dell Inc.) Dell SupportAssist Remediation (HKLM\...\{8FA6BC9C-CF6A-45E7-92BD-1585DFAFB32C}) (Version: 4.4.1.9851 - Dell Inc.) Hidden Dell SupportAssist Remediation (HKLM-x32\...\{5f9ca6e9-c7d9-49c9-88fa-196d35d8eb82}) (Version: 4.4.1.9851 - Dell Inc.) Dell Update - SupportAssist Update Plugin (HKLM\...\{77C86F54-9452-4EB6-B4C3-8A57FBF72D2B}) (Version: 4.4.0.9836 - Dell Inc.) Hidden Dell Update - SupportAssist Update Plugin (HKLM-x32\...\{d2a00335-3e50-405c-8c5d-32e2a636bbe1}) (Version: 4.4.0.9836 - Dell Inc.) Dell Update (HKLM-x32\...\{5EBBC1DA-975F-44A0-B438-F325BCD45577}) (Version: 3.0.1 - Dell Inc.) DIGIPASS Native Bridge 2.3.2 (HKLM-x32\...\{D9145E6A-FEDE-4922-8EB0-6154E4C528CB}) (Version: 2.3.2 - VASCO Data Security) Hidden DIGIPASS Native Bridge 2.3.2 (HKU\S-1-5-21-1167631334-2873795934-467515027-1001\...\{9417bcae-5ec1-4171-81d5-46bf5bf9b573}) (Version: 2.3.2 - VASCO Data Security) Epson Event Manager (HKLM-x32\...\{4B22C430-7EA8-4534-8358-376FD900B953}) (Version: 3.10.0042 - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{29F4F2C2-CB73-418D-BA99-7BB5ECD9F7BF}) (Version: 4.4.6 - Seiko Epson Corporation) EpsonNet SetupManager V2 (HKLM-x32\...\{485863E4-C20E-4629-A3B1-B4C8E706A7CB}) (Version: 2.2.7 - SEIKO EPSON CORPORATION) Hidden EpsonNet SetupManager V2 (HKLM-x32\...\InstallShield_{485863E4-C20E-4629-A3B1-B4C8E706A7CB}) (Version: 2.2.7 - SEIKO EPSON CORPORATION) F-Secure KEY (HKLM-x32\...\{0D08F070-294A-44E6-B77F-4FA3240557F4}) (Version: 4.9.241 - F-Secure) F-Secure KEY: User Data (HKLM-x32\...\{F6A4621C-F31F-42E2-BD11-632615967A56}) (Version: 1.1.0.0 - F-Secure Corporation) F-Secure SAFE (HKLM-x32\...\{70B46458-AEB8-4F71-899C-28702BF7A3BA}) (Version: 17.7 - F-Secure Corporation) F-Secure Ultralight 1.1.24.0 (release) (HKLM-x32\...\{9FAE989F-A043-4017-B60F-9134E992BB55}) (Version: 1.1.24.0 - F-Secure Corporation) Hidden G Suite Migration For Microsoft Outlook® 4.1.6.0 (HKLM-x32\...\{4CBFFA05-0AC4-4651-9FEC-D75E6CC3C711}) (Version: 4.1.6.0 - Google, Inc.) G Suite Sync™ for Microsoft Outlook® 4.1.28.0 (HKLM-x32\...\{7EFD04E4-F885-4299-A208-E6F5E03A7C64}) (Version: 4.1.28.0 - Google, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation) Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.1.318 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.0.2.1076 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1043-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation) Intel® Integrated Sensor Solution (HKLM-x32\...\{b3782b53-1b6c-436a-b0f0-f65d83ae74d9}) (Version: 3.0.30.1119 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{063dc3ff-473a-4a8e-ad8d-b872e9ce5aa4}) (Version: 21.10.1 - Intel Corporation) ISS_Drivers_x64 (HKLM\...\{6F91DCD1-30DB-449C-AE79-6948BEB15825}) (Version: 3.0.30.1119 - Intel Corporation) Hidden Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9179.0 - Waves Audio Ltd.) Hidden Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.12026.20334 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1167631334-2873795934-467515027-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Mozilla Firefox 69.0.3 (x64 nl) (HKLM\...\Mozilla Firefox 69.0.3 (x64 nl)) (Version: 69.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla) Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.12026.20334 - Microsoft Corporation) Hidden Product Registration (HKLM\...\{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Hidden QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.38 - Dell Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.31241 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8158 - Realtek Semiconductor Corp.) Realtek PC Camera Driver (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.14393.11242 - Realtek Semiconductor Corp.) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.24 - HP Printing Korea Co., Ltd.) Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.) Samsung Printerdiagnose (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - HP Printing Korea Co., Ltd.) Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden SetIP (HKLM-x32\...\SetIP) (Version: 1.05.08.00 - Samsung Electronics Co., Ltd.) SmartByte Drivers and Services (HKLM\...\{CAFD2E75-129F-42AD-8258-0FC494ACBD8E}) (Version: 2.5.719 - Rivet Networks) Software voor Intel® Chipset-apparaten (HKLM-x32\...\{4551f75f-3c54-4f09-8221-8c8a061bad00}) (Version: 10.1.18019.8144 - Intel(R) Corporation) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation) Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-3) (Version: 1.0.33.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - Intel Corporation Inc.) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-4) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation) Packages: ========= Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_4.0.36.0_x64__htrsf667h5kn2 [2019-04-12] (Dell Inc) Dell SupportAssist for PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.3.8.0_x64__htrsf667h5kn2 [2019-09-14] (Dell Inc) EIDReader -> C:\Program Files\WindowsApps\94A44D83.EIDReader_2.5.5.81_x64__z2n7m0nc0vrfp [2019-04-24] (CT Reader) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-07-28] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-07] (Microsoft Studios) [MS Ad] One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2019.210.3.0_x64__8kea50m9krsh2 [2019-04-18] (Code Spark) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-26] (Thumbmunkeys Ltd) [MS Ad] Redimensionnement d’image -> C:\Program Files\WindowsApps\8273mfetzel.ResizeImage_19.1.6.0_x64__c0krq7an0ms3c [2019-03-15] (Get-the-solution) [MS Ad] Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-11-28] (Samsung Electronics Co. Ltd.) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1167631334-2873795934-467515027-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => C:\Users\hugok\OneDrive [2017-06-16 09:11] CustomCLSID: HKU\S-1-5-21-1167631334-2873795934-467515027-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd) ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-08-05] (F-Secure Corporation -> F-Secure Corporation) ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) [File not signed] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxDTCM.dll [2018-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ==================== Codecs (Whitelisted) ================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\hugok\Documents\C\Users\hugoke\Desktop\LIFESTORE.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com/lifestore ShortcutWithArgument: C:\Users\hugok\Documents\C\Users\hugoke\Desktop\MEDIONhome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com/be/nl ShortcutWithArgument: C:\Users\hugok\Documents\C\Users\hugoke\Desktop\Windows 8 Info.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.windows.com/getstarted ==================== Loaded Modules (Whitelisted) ============== 2019-06-19 14:02 - 2019-06-19 14:02 - 000019456 _____ () [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.HSA.Server.dll 2014-09-08 14:38 - 2014-09-08 14:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll 2017-07-21 12:34 - 2016-08-10 13:07 - 002847744 _____ () [File not signed] C:\WINDOWS\system32\DlgSearchEngine.dll 2017-01-06 04:28 - 2017-01-06 04:28 - 000086016 _____ (Dell Inc.) [File not signed] C:\Program Files\Dell\QuickSet\dadkeyb.dll 2019-09-01 08:14 - 2019-09-01 08:14 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll 2019-09-01 08:14 - 2019-09-01 08:14 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2019-03-07 10:24 - 2019-03-07 10:24 - 000102400 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll 2017-11-08 08:35 - 2017-11-08 08:35 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll ==================== Alternate Data Streams (Whitelisted) ========= ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2017-11-09 10:32 - 2017-11-09 10:32 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Google\Google Apps Sync\;C:\Program Files (x86)\Google\Google Apps Migration\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\ HKU\S-1-5-21-1167631334-2873795934-467515027-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hugok\AppData\Local\Microsoft\Windows\Themes\11811311_10153268285257771_1617704194062032586_n[1].jpg DNS Servers: 195.130.131.1 - 195.130.130.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) HKLM\...\StartupApproved\Run: => "WavesSvc" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run32: => "EEventManager" HKU\S-1-5-21-1167631334-2873795934-467515027-1001\...\StartupApproved\Run: => "DigipassNativeBridge" HKU\S-1-5-21-1167631334-2873795934-467515027-1001\...\StartupApproved\Run: => "OneDrive" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [UDP Query User{1EDF436F-BC1A-4D79-8B7B-245DA8CFD432}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> ) FirewallRules: [TCP Query User{31D495F8-E9D1-49B4-8635-492CD0404633}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> ) FirewallRules: [{2127CD69-02BE-4644-9E08-C3E9CB39F37E}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{07BCE45E-482D-4C0C-8C48-9764ABC7FF33}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> ) FirewallRules: [{EC233D7D-9EFB-471F-AEAF-7A1FF287837D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Printing Korea Co., Ltd.) FirewallRules: [{1A7E17B6-133C-4D19-8061-9D2FC9242908}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Printing Korea Co., Ltd.) FirewallRules: [{1692D635-C5D5-470B-B9B8-FCFB82CAAF4D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> ) FirewallRules: [{BE3ACABA-401B-40BE-9CE8-E7BD86018AC2}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{FBE9EEFC-943B-4279-90B4-4318665F04F6}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{30A50132-D121-4BC2-A77A-B344CE0065F6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{41182810-8257-4C45-B2E2-41C0E6E9A56C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{59E0C4AF-10E3-4850-91B0-76F0F9C2D0C8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{9A70A44F-248E-4435-97E1-75F50649F285}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{63AD6152-A083-4982-814B-ABE1D1EC4276}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet SetupManager V2\SManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{67AB55B4-9455-4FBD-BBCA-FFCE1CA60775}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet SetupManager V2\SManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{8FA7B750-2D3F-4F45-B7C9-1CE0548D8228}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{956D6AEB-BD38-49B0-98AC-4897F9E8086F}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{FFFD7E86-F7CC-4A96-970C-5FDFADA1295F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{4EEF304D-EFE2-4470-BDC7-C5A6E2683A4A}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{479A1F0E-5E04-4417-849D-22C7600B54E1}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{9D38F4BE-CA59-447E-8936-2A0668B34734}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{80F62A5E-1C24-4509-9B60-2AA1A29393DE}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{FB7D2E23-999E-4BCC-B223-8DF83E06664D}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{558A501B-57C8-44D9-AA77-305679A31D67}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0B3A037C-A452-4735-BD1A-7E8CD153D732}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{C6865A3F-AD5E-49BD-8668-EFBA293C8F98}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> ) ==================== Restore Points ========================= 03-10-2019 21:15:59 SupportAssist_dbdb8ea9-763d-460e-b426-c82d6a327e00 09-10-2019 23:03:00 Windows Update 12-10-2019 15:47:11 Dell Client Management Service 18-10-2019 15:00:53 SupportAssist_8a280358-0e2b-4a2f-b783-eec48108b0a9 ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (10/22/2019 03:07:55 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (14072,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (10/22/2019 03:02:21 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.3.10207.5567) TYPE: ERROR MODULE: DPTF TIME 24072214 ms DPTF Build Version: 8.3.10207.5567 DPTF Build Date: Nov 2 2017 14:28:00 Source File: ..\..\..\..\Sources\Policies\PassivePolicy\PassivePolicy.cpp @ line 300 Executing Function: PassivePolicy::onDomainPerformanceControlCapabilityChanged Message: DPTF Build Version: 8.3.10207.5567 DPTF Build Date: Nov 2 2017 14:28:00 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 229 Executing Function: EsifServices::primitiveExecuteSetAsUInt32 Message: Error returned from ESIF services interface function call Participant: TCPU [0] Domain: CPU [1] ESIF Primitive: SET_PERF_PRESENT_CAPABILITY [82] ESIF Instance: 255 ESIF Return Code: ESIF_E_ACPI_EVAL_FAILURE [1105] Policy: Passive Policy [1] Error: (10/22/2019 03:02:21 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.3.10207.5567) TYPE: ERROR MODULE: DPTF TIME 24072208 ms DPTF Build Version: 8.3.10207.5567 DPTF Build Date: Nov 2 2017 14:28:00 Source File: ..\..\..\..\Sources\Policies\PassivePolicy\PassivePolicy.cpp @ line 300 Executing Function: PassivePolicy::onDomainPerformanceControlCapabilityChanged Message: DPTF Build Version: 8.3.10207.5567 DPTF Build Date: Nov 2 2017 14:28:00 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 229 Executing Function: EsifServices::primitiveExecuteSetAsUInt32 Message: Error returned from ESIF services interface function call Participant: TCPU [0] Domain: CPU [1] ESIF Primitive: SET_PERF_PRESENT_CAPABILITY [82] ESIF Instance: 255 ESIF Return Code: ESIF_E_ACPI_EVAL_FAILURE [1105] Policy: Passive Policy [1] Error: (10/22/2019 12:01:28 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4488,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (10/22/2019 11:39:28 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (8808,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (10/22/2019 11:25:37 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1496,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (10/22/2019 11:08:24 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (12652,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (10/22/2019 10:58:11 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3988,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. System errors: ============= Error: (10/22/2019 03:02:21 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: ) Description: Minipoort Dell GigabitEthernet, {bfd3e470-0daf-495f-b873-3319717ca01b}: gebeurtenis 73 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (10/22/2019 11:34:59 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Windows Defender: =================================== Date: 2019-10-18 15:05:36.466 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.568.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16200.1 Foutcode: 0x80240017 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-10-17 12:00:12.696 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.568.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16200.1 Foutcode: 0x80240017 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-09-28 13:02:22.456 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.568.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16200.1 Foutcode: 0x80070645 Foutbeschrijving: Deze actie is alleen geldig voor producten die momenteel zijn geïnstalleerd. Date: 2019-09-28 13:02:22.456 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.568.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiSpyware Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16200.1 Foutcode: 0x80070645 Foutbeschrijving: Deze actie is alleen geldig voor producten die momenteel zijn geïnstalleerd. Date: 2019-09-28 13:02:22.456 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.568.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16200.1 Foutcode: 0x80070645 Foutbeschrijving: Deze actie is alleen geldig voor producten die momenteel zijn geïnstalleerd. CodeIntegrity: =================================== Date: 2019-10-22 15:31:46.358 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:33.600 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:24.702 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:22.686 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:20.671 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:18.653 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:16.644 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-10-22 15:31:14.619 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\F-Secure\SAFE\apps\Ultralight\ulcore\1569928206\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Memory info =========================== BIOS: Dell Inc. 1.28.0 05/10/2019 Motherboard: Dell Inc. 0D94Y7 Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz Percentage of memory in use: 44% Total physical RAM: 16253.89 MB Available physical RAM: 8945.45 MB Total Virtual: 18685.89 MB Available Virtual: 10042.85 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:463.58 GB) (Free:116.92 GB) NTFS \\?\Volume{3cfe018e-fb69-426f-9d18-668183e3d4f1}\ () (Fixed) (Total:0.54 GB) (Free:0.07 GB) NTFS \\?\Volume{bf74c0db-cb5d-4ac4-a8bc-c319153c8a8b}\ (Image) (Fixed) (Total:11.05 GB) (Free:0.54 GB) NTFS \\?\Volume{65fb1d03-058c-48ee-a778-b7df2aecfbd2}\ (DELLSUPPORT) (Fixed) (Total:1.15 GB) (Free:0.43 GB) NTFS \\?\Volume{d5d50643-13eb-496c-8e37-5d6d834c2225}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.42 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 476.9 GB) (Disk ID: 9155FEBB) Partition: GPT. ==================== End of Addition.txt ============================