Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 01-11-2019 Gestart door lenovo (05-11-2019 20:23:55) Gestart vanaf C:\Users\lenovo\Documents\Kladblok\Frst Windows 10 Pro Versie 1903 18362.418 (X64) (2019-06-16 09:51:22) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3808283307-1243482618-78075021-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3808283307-1243482618-78075021-503 - Limited - Disabled) Gast (S-1-5-21-3808283307-1243482618-78075021-501 - Limited - Disabled) lenovo (S-1-5-21-3808283307-1243482618-78075021-1001 - Administrator - Enabled) => C:\Users\lenovo WDAGUtilityAccount (S-1-5-21-3808283307-1243482618-78075021-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) abrViewer.NET 1.0.1 (HKLM-x32\...\abrViewer.NET) (Version: 1.0.1 - Luigi Bellanca aka g1ga) Adblock Plus voor IE (32-bit en 64-bit) (HKLM\...\{2B2310B1-FBC0-4933-8C73-1CBAD0D7CA28}) (Version: 1.6 - Eyeo GmbH) Alien Skin Eye Candy 5 Impact (HKLM-x32\...\EyeCandy5Impact) (Version: - ) Alien Skin Eye Candy 5 Nature (HKLM-x32\...\EyeCandy5Nature) (Version: - ) Alien Skin Eye Candy 5 Textures (HKLM-x32\...\EyeCandy5Textures) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform) Corel Paint Shop Pro X (HKLM-x32\...\{1A15507A-8551-4626-915D-3D5FA095CC1B}) (Version: 10.0 - Corel Inc) Corel PaintShop Pro 2018 (HKLM-x32\...\_{6000096B-318C-40F8-A450-043B6A602D16}) (Version: 20.2.0.1 - Corel Corporation) Corel PaintShop Pro 2018 (HKLM-x32\...\{5A150D1D-326B-4C75-8984-2D2C602D1CA1}) (Version: 20.2.0.1 - Corel Corporation) Hidden Corel PaintShop Pro 2019 (HKLM-x32\...\_{90B0B84D-5C50-4EED-89E3-59791663B7E5}) (Version: 21.0.0.67 - Corel Corporation) Corel PaintShop Pro 2019 (HKLM-x32\...\{88BAF550-8764-4C08-8F7E-02C17D811526}) (Version: 21.0.0.67 - Corel Corporation) Hidden Corel PaintShop Pro 2020 (HKLM-x32\...\_{86D225AF-F4FC-4819-B0C4-6ECF3F24E159}) (Version: 22.1.0.43 - Corel Corporation) Corel PaintShop Pro 2020 (HKLM-x32\...\{2E67196F-4CD9-4EDC-84E4-8F9382FC7374}) (Version: 22.0.0.132 - Corel Corporation) Hidden Corel PaintShop Pro X9 (HKLM-x32\...\_{998717E5-1031-4D28-A143-48ADAF062E5F}) (Version: 19.2.0.7 - Corel Corporation) Corel PaintShop Pro X9 (HKLM-x32\...\{93EE564E-9DA1-4655-8A90-4E816019B409}) (Version: 19.2.0.7 - Corel Corporation) Hidden Corel Update Manager (HKLM\...\{1E7AD2D2-EDD9-4334-992D-7F7ED9769217}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM\...\{28215BB4-E483-4A34-B6E5-ECD467B17631}) (Version: 2.10.504 - Corel corporation) Hidden Corel Update Manager (HKLM\...\{35F11FE8-08DD-4606-8C6B-1A18BDC083CF}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM\...\{67881956-8135-4804-9465-BA1419010638}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM\...\{B8C05FFE-C36F-4F17-AD20-739E4BC65AC9}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM-x32\...\{07D00C8A-52CE-483A-B14B-06EC57BA3207}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM-x32\...\{3F8C582C-B21D-49EC-AD5F-C9890041A0CC}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM-x32\...\{A18B8454-FBA6-4C6F-BF4E-6C3FFD62D697}) (Version: 2.10.504 - Corel corporation) Hidden Corel Update Manager (HKLM-x32\...\{EE61B6C5-F017-4505-85D3-6D40B1797D32}) (Version: 2.10.442 - Corel corporation) Hidden Creative Content (HKLM-x32\...\_{3007954B-45F6-48FB-87D8-79C66E5504F5}) (Version: 1.0.0.172 - Corel Corporation) Hidden Creative Content (HKLM-x32\...\{3007954B-45F6-48FB-87D8-79C66E5504F5}) (Version: 1.0.0.172 - Uw bedrijfsnaam) Hidden DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation) Dropbox (HKLM-x32\...\Dropbox) (Version: 84.4.170 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden FM Patcher 1.01 (HKLM-x32\...\FM Patcher_is1) (Version: - AFH Systems & The Plugin Site) Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.7 - Gadwin Systems, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.87 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden GRFX Studio Corel version 1.0.5.2 (HKLM\...\{9DDE2DF4-9666-4BE1-976E-E9C7372268D3}_is1) (Version: 1.0.5.2 - Auto FX Software) ICA (HKLM-x32\...\{6000096B-318C-40F8-A450-043B6A602D16}) (Version: 20.2.0.1 - Corel Corporation) Hidden ICA (HKLM-x32\...\{86D225AF-F4FC-4819-B0C4-6ECF3F24E159}) (Version: 22.0.0.132 - Corel Corporation) Hidden ICA (HKLM-x32\...\{90B0B84D-5C50-4EED-89E3-59791663B7E5}) (Version: 21.0.0.67 - Corel Corporation) Hidden ICA (HKLM-x32\...\{998717E5-1031-4D28-A143-48ADAF062E5F}) (Version: 19.2.0.7 - Corel Corporation) Hidden inPixio Photo Clip 9 (HKLM-x32\...\{45C85359-2C7F-4D57-B445-95C7CD82EF3A}) (Version: 9.01.0 - InPixio) IPM_PSP_COM (HKLM-x32\...\{0F1489D5-71F8-4E29-92FF-C72B3402B79E}) (Version: 22.0.0.132 - Corel Corporation) Hidden IPM_PSP_COM (HKLM-x32\...\{9A86C6EE-2CCC-4A51-BCC8-AAF97C2F4615}) (Version: 19.2.0.7 - Corel Corporation) Hidden IPM_PSP_COM (HKLM-x32\...\{B2B8BD86-0577-480F-A42B-B6D47C30AF50}) (Version: 21.0.0.67 - Corel Corporation) Hidden IPM_PSP_COM (HKLM-x32\...\{E366C7D5-FD35-482C-AA33-38AE3BC48021}) (Version: 20.2.0.1 - Corel Corporation) Hidden IPM_PSP_COM64 (HKLM\...\{1BB2EFF4-F69B-4637-9885-758CD0C2009D}) (Version: 21.0.0.67 - Corel Corporation) Hidden IPM_PSP_COM64 (HKLM\...\{3435988C-ADFC-4EE6-A3E2-39686FD523FE}) (Version: 22.0.0.132 - Corel Corporation) Hidden IPM_PSP_COM64 (HKLM\...\{966E78A9-AB34-4FC6-BEDA-7D3F1F42121D}) (Version: 19.2.0.7 - Corel Corporation) Hidden Jasc Animation Shop 3 (HKLM-x32\...\{7C4196CA-CA41-4F34-9C08-7724E7705D52}) (Version: 3.11 - Uw bedrijfsnaam) KnockOut 2 (HKLM-x32\...\KnockOut 2) (Version: - ) LibreOffice 6.3.0.4 (HKLM\...\{235CBF9C-D3E1-4703-A729-7AC6F101C15E}) (Version: 6.3.0.4 - The Document Foundation) Malwarebytes versie 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes) Microsoft OneDrive (HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation) Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google) Opera Stable 64.0.3417.83 (HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\Opera 64.0.3417.83) (Version: 64.0.3417.83 - Opera Software) ParticleShop - Core (HKLM\...\{539A8441-261C-42DA-8B4B-FB512F61D33B}) (Version: 1.5 - Corel Corporation) Hidden ParticleShop - IPM (HKLM\...\{9E99AA1D-F1DC-442D-B9D9-8DD3EE529AE9}) (Version: 1.5 - Corel Corporation) Hidden ParticleShop - IPM Content (HKLM\...\{67BDB811-383B-4D2B-870E-F27D2511F200}) (Version: 1.5 - Corel Corporation) Hidden ParticleShop (HKLM\...\_{6F224046-E164-4B78-9867-3AE494271D29}) (Version: 1.5.0.108 - Corel Corporation) ParticleShop (HKLM\...\{6F224046-E164-4B78-9867-3AE494271D29}) (Version: 1.5 - Corel Corporation) Hidden ParticleShop (HKLM\...\{D4F483F8-71F1-457F-AB1B-31C61529B658}) (Version: 1.5 - Corel Corporation) Hidden PhotoFiltre Studio X (HKU\S-1-5-21-3808283307-1243482618-78075021-1001\...\PhotoFiltre Studio X) (Version: - ) Pic-to-Painting (HKLM\...\{B37BB1F3-7A94-4E12-8AB9-1ABB6CA02BC7}) (Version: 1.1.0 - ) PSP Thumbnail Handler (HKLM\...\{2086A549-ED96-4dc9-BBE3-0538AB29ABEC}) (Version: 2.10.49 - Bot Productions) PSPPContent (HKLM-x32\...\{0A594064-5745-48CA-BF2B-CBCF8A0AD271}) (Version: 22.0.0.132 - Corel Corporation) Hidden PSPPContent (HKLM-x32\...\{616D4070-129A-48B3-85A1-25E0FDFBAB38}) (Version: 21.0.0.67 - Corel Corporation) Hidden PSPPContent (HKLM-x32\...\{91773E30-F29C-4381-854A-95281DEB8DA1}) (Version: 19.2.0.7 - Corel Corporation) Hidden PSPPContent (HKLM-x32\...\{CC719875-8939-48D2-BA50-D5F5673C4C6A}) (Version: 20.2.0.1 - Corel Corporation) Hidden PSPPHelp (HKLM-x32\...\{5FF01DFE-2B62-4568-BB54-06F79CB82B22}) (Version: 21.0.0.67 - Corel Corporation) Hidden PSPPHelp (HKLM-x32\...\{80981E74-D460-4E97-861A-AEE346AFE208}) (Version: 22.0.0.132 - Corel Corporation) Hidden PSPPHelp (HKLM-x32\...\{9F087D85-EDDC-4DC4-B665-AFDD3734D987}) (Version: 19.2.0.7 - Corel Corporation) Hidden PSPPHelp (HKLM-x32\...\{BBF5A9A0-82BD-4C51-9EAD-624651FE765B}) (Version: 20.2.0.1 - Corel Corporation) Hidden PSPPro64 (HKLM\...\{01CC6252-25FC-4A2D-9FBD-68E20C8C44B8}) (Version: 21.0.0.67 - Corel Corporation) Hidden PSPPro64 (HKLM\...\{9722764A-D7C1-483A-931C-9C0A95D5F4EB}) (Version: 19.2.0.7 - Corel Corporation) Hidden PSPPro64 (HKLM\...\{A8A7345E-0111-4A73-9F0F-560A837BF901}) (Version: 20.2.0.1 - Corel Corporation) Hidden PSPPro64 (HKLM\...\{F3DB5732-DD67-44AD-AC3E-C4A2195BEFA1}) (Version: 22.0.0.132 - Corel Corporation) Hidden Setup (HKLM-x32\...\{099E900F-5CFF-4BB4-816C-D6BFE3044341}) (Version: 21.0.0.67 - Uw bedrijfsnaam) Hidden Setup (HKLM-x32\...\{9E0054AB-F957-4177-850E-3541960DBD53}) (Version: 19.2.0.7 - Uw bedrijfsnaam) Hidden Setup (HKLM-x32\...\{C4294E76-70D5-4D49-B8F4-0A4D546AB3AC}) (Version: 22.0.0.132 - Uw bedrijfsnaam) Hidden Setup (HKLM-x32\...\{C9C9ACD1-F275-45CB-B507-96486DB5E608}) (Version: 20.2.0.1 - Uw bedrijfsnaam) Hidden Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Ultimate Creative Collection (HKLM-x32\...\_{4EC5CB4B-7CAB-465C-BC07-6733B851A1AA}) (Version: 1.0.0.177 - Corel Corporation) Ultimate Creative Collection (HKLM-x32\...\{4EC5CB4B-7CAB-465C-BC07-6733B851A1AA}) (Version: 1.0.0.177 - Uw bedrijfsnaam) Hidden Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Vizros Plug-ins 4.1 (HKLM-x32\...\Vizros Plug-ins 4.1) (Version: - ) WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Packages: ========= Character Map UWP -> C:\Program Files\WindowsApps\58027.265370AB8DB33_2019.7.0.0_x64__fjemmk5ta3a5g [2019-10-30] (Edi Wang) Mail en Agenda -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation) [MS Ad] Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-24] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-25] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-10] (Microsoft Studios) [MS Ad] MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-14] (Microsoft Corporation) [MS Ad] ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3808283307-1243482618-78075021-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\lenovo\Dropbox [2018-12-29 16:53] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Geen bestand ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Geen bestand ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-29] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-06-16 11:19 - 2019-11-05 20:17 - 000002103 _____ C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3808283307-1243482618-78075021-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lenovo\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\windows-10-wallpapers-in-4kqdxs.jpg DNS Servers: 84.116.46.22 - 84.116.46.23 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{D95EAFA6-7DC9-4111-AADB-351CBEB656BC}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{78240887-1DB9-4CDB-9AE9-42B0FCD9D809}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 18-10-2019 12:44:56 KnockOut 2 SP1 Patch 27-10-2019 11:24:07 Gepland controlepunt 05-11-2019 16:29:14 Gepland controlepunt ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (11/05/2019 08:22:19 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (792,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 05:45:11 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4980,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 02:46:18 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4056,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 02:30:37 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3652,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 12:15:42 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6488,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 12:10:56 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY) Description: De vereiste buffergrootte is groter dan de grootte die is doorgegeven aan de verzamelfunctie van het DLL-bestand voor uitbreidbare items "C:\Windows\System32\perfts.dll" voor de "LSM"-service. De opgegeven buffergrootte was 28656 en de vereiste grootte was 29360. Error: (11/05/2019 10:42:29 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6364,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/05/2019 09:48:52 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3284,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Systeemfouten: ============= Error: (11/03/2019 10:14:58 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 10:12:19 op ‎3-‎11-‎2019 is onverwacht gebeurd. Error: (10/28/2019 07:49:37 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2EJPNK) Description: De server Microsoft.Windows.ContentDeliveryManager_10.0.18362.387_neutral_neutral_cw5n1h2txyewy!App.AppXx4zfy1ffv3wctgdz2vypnybzjkh27jhw.mca heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/26/2019 07:14:52 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-H2EJPNK) Description: Kan geen DCOM-server starten: {0358B920-0AC7-461F-98F4-58E32CD89148}. Foutmelding "2147942767" is opgetreden bij het uitvoeren van de opdracht C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (10/26/2019 07:11:17 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-H2EJPNK) Description: Kan geen DCOM-server starten: {0358B920-0AC7-461F-98F4-58E32CD89148}. Foutmelding "2147942767" is opgetreden bij het uitvoeren van de opdracht C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (10/24/2019 06:21:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073d02: 9PLK42WD0RC0-Microsoft.Photos.MediaEngineDLC. Error: (10/24/2019 04:33:01 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 17:31:02 op ‎24-‎10-‎2019 is onverwacht gebeurd. Error: (10/21/2019 06:43:27 AM) (Source: volmgr) (EventID: 46) (User: ) Description: Crashdumpinitialisatie is mislukt! Error: (10/21/2019 06:43:52 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 07:39:40 op ‎21-‎10-‎2019 is onverwacht gebeurd. Windows Defender: =================================== Date: 2019-11-04 06:51:10.177 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {453794B1-08DC-4B23-8205-250E384E3C86} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-11-03 18:01:10.996 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {42E168ED-585D-4053-BC8C-7F7421F671C0} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-11-03 16:45:29.191 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {84851A43-E744-4780-B27A-C1DB83E315F4} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-10-25 13:31:21.403 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {5A054A7B-2EE1-4191-822D-6EA762FDEDF8} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-10-25 06:51:23.370 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {9578B202-96B0-4789-A3D5-A8972C74E118} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM CodeIntegrity: =================================== Date: 2019-09-23 11:15:39.876 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 11:15:37.834 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 11:15:34.617 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 11:13:57.413 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 11:13:55.138 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-23 11:13:53.614 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 10:18:47.413 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Microsoft signing level requirements. Date: 2019-09-21 10:18:47.402 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== BIOS: LENOVO 9HKT43AUS 07/11/2011 Moederbord: LENOVO Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz Percentage geheugen in gebruik: 44% Totaal fysiek RAM-geheugen: 8016.33 MB Beschikbaar fysiek RAM-geheugen: 4409.75 MB Totaal Virtueel geheugen: 16208.33 MB Beschikbaar Virtueel geheugen: 11189.26 MB ==================== Schijven ================================ Drive c: (Lokale schijf) (Fixed) (Total:466.01 GB) (Free:404.96 GB) NTFS Drive e: () (Fixed) (Total:464.91 GB) (Free:418.43 GB) NTFS \\?\Volume{79cb61b2-8aed-4c46-8fb7-976cfaef89cb}\ (Herstel) (Fixed) (Total:0.49 GB) (Free:0.1 GB) NTFS \\?\Volume{ddb33e79-a4b6-4e69-b863-c7ef91c251d0}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Einde van Addition.txt =======================