Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 30-10-2019 Gestart door Gebruiker (30-10-2019 23:02:09) Gestart vanaf C:\Users\Gebruiker\Desktop Windows 10 Home Versie 1803 17134.1069 (X64) (2018-05-18 23:36:44) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-458893496-2124949986-195690109-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-458893496-2124949986-195690109-503 - Limited - Disabled) Gast (S-1-5-21-458893496-2124949986-195690109-501 - Limited - Disabled) Gebruiker (S-1-5-21-458893496-2124949986-195690109-1001 - Administrator - Enabled) => C:\Users\Gebruiker WDAGUtilityAccount (S-1-5-21-458893496-2124949986-195690109-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Antivirus (Disabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antispyware (Disabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.25.1378 - Bitdefender) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender) Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - ) Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data) (Version: - ) Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data (HKLM-x32\...\Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data) (Version: - ) Canon Easy-PhotoPrint Pro (HKLM-x32\...\Easy-PhotoPrint Pro) (Version: - ) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - ) Canon MG6100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series) (Version: - ) Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - ) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - ) Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform) CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) D-Link Wireless G DWL-G122_DWA-110 (HKLM-x32\...\{5F753314-628E-4C13-B8AE-BFA7FD514CBE}) (Version: - D-Link) Free Video To MP3 Converter (HKLM-x32\...\Free Video To MP3 Converter_is1) (Version: 5.1.6.215 - Digital Wave Ltd) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.79.613 - Digital Wave Ltd) Gebruikersregistratie voor Canon MG6100 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG6100 series) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-458893496-2124949986-195690109-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) NVIDIA 3D Vision controllerstuurprogramma 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA GeForce Experience 3.0.5.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.5.22 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.0.5.22 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 1.0.0.0 - NVIDIA Corporation) Hidden Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0310 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.0.5.22 - NVIDIA Corporation) Hidden swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 1.3.329 - Western Digital Technologies, Inc.) WD Drive Utilities (HKLM-x32\...\{2db219ff-e483-403b-9374-aea609abaf1d}) (Version: 1.4.3.13 - Western Digital Technologies, Inc.) Hidden WD Drive Utilities (HKLM-x32\...\{546D15D7-D6AF-422B-B4E5-05AF20BA8573}) (Version: 1.4.3.13 - Western Digital Technologies, Inc.) Hidden WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-458893496-2124949986-195690109-1001\...\ZoomUMX) (Version: 4.4 - Zoom Video Communications, Inc.) Packages: ========= Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-17] (king.com) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-23] (Canon Inc.) Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft News: Gratis nieuws app voor België -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad] Microsoft Telefoon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-08] (Microsoft Corporation) Microsoft Telefoonassistent -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation) MSN financiën -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad] MSN sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad] MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Geladen Modules (gefilterd) ============= 2016-09-20 17:49 - 2009-06-01 13:23 - 000315392 _____ () [Bestand niet getekend] C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIOApi.dll 2016-09-20 17:49 - 2009-06-01 13:23 - 000315392 _____ () [Bestand niet getekend] C:\Program Files (x86)\D-Link\DWL-G122_DWA-110\ANIOApi.dll 2019-05-31 20:11 - 2019-05-31 20:11 - 001877504 _____ () [Bestand niet getekend] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll 2017-01-30 21:03 - 2010-04-08 13:44 - 000023552 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\NL\CNSELANG.dll 2017-01-30 20:54 - 2010-03-28 18:50 - 000067072 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files\Canon\MyPrinter\BJMyRes.dll 2017-01-30 20:54 - 2010-03-24 18:50 - 000113152 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files\Canon\MyPrinter\cnmpu.dll 2017-01-30 20:40 - 2010-02-05 02:37 - 000327680 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL 2017-01-30 21:03 - 2010-01-25 14:09 - 001093120 _____ (Microsoft Corporation) [Bestand niet getekend] C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL 2019-05-31 20:11 - 2019-05-31 20:12 - 015029760 _____ (Node.js) [Bestand niet getekend] C:\Program Files (x86)\Western Digital\Discovery\Current\node.dll 2018-05-19 00:28 - 2017-10-27 17:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll 2018-05-19 00:29 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Bestand niet getekend] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll ==================== Alternate Data Streams (gefilterd) ======== (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\Gebruiker\Downloads\avg_antivirus_free_setup.exe:BDU [1] AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-MSX6DEUC_2001.0.exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-VAL6DEUC_1017.0(1).exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\T-VAL6DEUC_1017.0.exe:BDU [0] AlternateDataStreams: C:\Users\Gebruiker\Downloads\uTorrent.exe:BDU [0] ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2015-10-30 08:24 - 2019-10-30 22:02 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-458893496-2124949986-195690109-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{C1F1C75F-A951-434B-9319-E09FC65E0F3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A878B25B-B17B-4875-A262-9CFC3AFCA0A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0E5C8BBC-973A-40C5-AB82-3E91D869F70B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B64DF654-4FA2-4D8F-83E5-256BD7C460E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7FD89A7D-874C-4DBC-B232-C6B9E68DB42D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{CD915477-AE07-492B-88D6-5807716EA9D5}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe Geen bestand FirewallRules: [UDP Query User{5F5F8429-F7C5-47C4-9317-D99BB6ABDC56}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe Geen bestand FirewallRules: [{84E1D3FD-80CB-447E-9CE2-3E72899913ED}] => (Allow) C:\Users\Gebruiker\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{F0E92EB0-046A-4E31-9731-74E2AA900AB6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 30-10-2019 21:14:59 Removed Belgium e-ID middleware 4.4.4 (build 3838) ==================== Defecte Apparaatbeheer Apparaten ============ Name: High Definition Audio-apparaat Description: High Definition Audio-apparaat Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (10/30/2019 10:03:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3516,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/30/2019 09:13:08 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (10/30/2019 09:03:39 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL' niet maken. Kan afhankelijke assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/30/2019 09:03:39 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL' niet maken. Kan afhankelijke assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (10/30/2019 09:03:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: Explorer.EXE, versie: 10.0.17134.1038, tijdstempel: 0x41d35672 Naam van module met fout: twinui.pcshell.dll, versie: 10.0.17134.915, tijdstempel: 0x8591f657 Uitzonderingscode: 0x80270233 Foutmarge: 0x0000000000307693 Id van proces met fout: 0x1ba0 Starttijd van toepassing met fout: 0x01d58f5d156cd644 Pad naar toepassing met fout: C:\WINDOWS\Explorer.EXE Pad naar module met fout: C:\WINDOWS\system32\twinui.pcshell.dll Rapport-id: 08d2255d-6a63-45ee-aa93-f9cf8b1673cf Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (10/30/2019 09:02:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: sihost.exe, versie: 10.0.17134.1, tijdstempel: 0xb6063e77 Naam van module met fout: Windows.Shell.ServiceHostBuilder.dll, versie: 10.0.17134.1, tijdstempel: 0xc3bd1f76 Uitzonderingscode: 0x80270234 Foutmarge: 0x000000000000ceab Id van proces met fout: 0x1574 Starttijd van toepassing met fout: 0x01d58f5d037f936a Pad naar toepassing met fout: c:\windows\system32\sihost.exe Pad naar module met fout: C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll Rapport-id: 1625bbff-cad0-41fd-a3ae-42a480554b4c Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (10/30/2019 08:34:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3552,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Error: (10/30/2019 07:33:00 PM) (Source: ESENT) (EventID: 467) (User: ) Description: svchost (3552,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp van tabel {973F5D5C-1D90-4944-BE8E-24B94231A174} is beschadigd (0). Systeemfouten: ============= Error: (10/30/2019 11:01:23 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout Error: (10/30/2019 11:01:23 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY) Description: Kan de BITS-service niet starten. Fout 2147500037. Error: (10/30/2019 10:59:19 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {4991D34B-80A1-4291-83B6-3328366B9097} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/30/2019 10:57:21 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout Error: (10/30/2019 10:57:21 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY) Description: Kan de BITS-service niet starten. Fout 2147500037. Error: (10/30/2019 10:57:10 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AH7O79P) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-AH7O79P\Gebruiker SID (S-1-5-21-458893496-2124949986-195690109-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/30/2019 09:34:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-AH7O79P) Description: De server {4991D34B-80A1-4291-83B6-3328366B9097} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/30/2019 09:32:46 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: De service Background Intelligent Transfer Service is gestopt met de volgende specifieke servicefout: Niet nader omschreven fout CodeIntegrity: =================================== Date: 2019-10-30 21:03:00.456 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-30 15:29:45.636 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-29 20:16:38.163 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-29 19:20:09.547 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-27 14:45:36.886 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-27 14:43:30.670 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\avgfmwlight.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-27 12:04:41.464 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\avgfmwlight.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-10-27 12:04:29.163 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\avgfmwlight.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. V1.10 03/01/2011 Moederbord: MSI P55M-GD45 (MS-7588) Processor: Intel(R) Core(TM) i5 CPU 750 @ 2.67GHz Percentage geheugen in gebruik: 58% Totaal fysiek RAM-geheugen: 4086.86 MB Beschikbaar fysiek RAM-geheugen: 1689.29 MB Totaal Virtueel geheugen: 4790.86 MB Beschikbaar Virtueel geheugen: 1834.73 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:231.57 GB) (Free:33.5 GB) NTFS Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:516.84 GB) NTFS Drive e: () (Removable) (Total:57.28 GB) (Free:57.27 GB) FAT32 \\?\Volume{0d85b779-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{0d85b779-0000-0000-0000-90033a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 0D85B779) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=848 MB) - (Type=27) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0D8D6873) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 6 (Protective MBR) (Size: 57.3 GB) (Disk ID: 00000000) Partition: GPT. ==================== Einde van Addition.txt =======================