Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 12-08-2020 Gestart door Gebruiker (17-08-2020 13:45:53) Gestart vanaf C:\Users\Gebruiker\Downloads Windows 10 Home Versie 1909 18363.1016 (X64) (2020-03-02 15:59:34) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3963349371-3354336234-3057670200-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3963349371-3354336234-3057670200-503 - Limited - Disabled) Gast (S-1-5-21-3963349371-3354336234-3057670200-501 - Limited - Disabled) Gebruiker (S-1-5-21-3963349371-3354336234-3057670200-1000 - Administrator - Enabled) => C:\Users\Gebruiker HomeGroupUser$ (S-1-5-21-3963349371-3354336234-3057670200-1002 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-3963349371-3354336234-3057670200-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH) Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - ) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.414 - Adobe) Adobe Reader XI (11.0.23) - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) Avira (HKLM-x32\...\{55846705-080E-447D-BC94-64875D0D3348}) (Version: 1.2.148.24463 - Avira Operations GmbH & Co. KG) Hidden Avira (HKLM-x32\...\{7b90c2e9-bc56-4d74-a68e-816555938f59}) (Version: 1.2.148.24463 - Avira Operations GmbH & Co. KG) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2008.1920 - Avira Operations GmbH & Co. KG) Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 2.2.0.1945 - Avira Operations GmbH & Co. KG) Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.33.10880 - Avira Operations GmbH & Co. KG) Avira Software Updater (HKLM-x32\...\{FB54B36D-966D-40A0-B27F-E38CC3C8DD50}) (Version: 2.0.6.35837 - Avira Operations GmbH & Co. KG) Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.5.0.10950 - Avira Operations GmbH & Co. KG) balenaEtcher 1.5.79 (HKU\S-1-5-21-3963349371-3354336234-3057670200-1000\...\{d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b}) (Version: 1.5.79 - Balena Inc.) Brother MFL-Pro Suite DCP-J552DW (HKLM-x32\...\{7B4C83B6-17C1-4BFD-B86D-4D7AD4498CBB}) (Version: 1.0.4.0 - Brother Industries, Ltd.) calibre (HKLM-x32\...\{8C31E86B-2A66-40E8-BF47-32A25D65DB12}) (Version: 1.15.0 - Kovid Goyal) Canon Auto Update Service (HKLM-x32\...\Auto Update Service) (Version: 1.1.0.13 - Canon Inc.) CANON iMAGE GATEWAY MyCamera Download Plugin (HKLM-x32\...\MyCamera Download Plugin) (Version: 3.1.1.2 - Canon Inc.) CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.9.0.9 - Canon Inc.) Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.9.0.8 - Canon Inc.) Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.8.0.1 - Canon Inc.) Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.9.0.6 - Canon Inc.) Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC8) (Version: 8.6.0.11 - Canon Inc.) Canon Utilities CameraWindow Launcher (HKLM-x32\...\CameraWindowLauncher) (Version: 7.6.0.1 - Canon Inc.) Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.5.0.1 - Canon Inc.) Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.8.0.10 - Canon Inc.) Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.6.0.15 - Canon Inc.) EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies) Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation) Kobo (HKLM-x32\...\Kobo) (Version: 4.2.6122 - Rakuten Kobo Inc.) LastPass (alleen deïnstalleren) (HKLM-x32\...\LastPass) (Version: - LastPass) LibreOffice 4.1 Help Pack (Dutch) (HKLM-x32\...\{268F6517-A51D-4B3A-A890-97A33A4E4B74}) (Version: 4.1.5.3 - The Document Foundation) LibreOffice 5.3.7.2 (HKLM-x32\...\{6F962302-C743-44AF-9E32-2817BF2BB874}) (Version: 5.3.7.2 - The Document Foundation) Linkey (HKU\S-1-5-21-3963349371-3354336234-3057670200-1000\...\Linkey) (Version: 0.0.0.517 - Aztec Media Inc) <==== AANDACHT Malwarebytes Anti-Malware versie 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.59 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - ) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 79.0 (x64 nl) (HKLM\...\Mozilla Firefox 79.0 (x64 nl)) (Version: 79.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.6.0 - Mozilla) Mozilla Thunderbird 68.11.0 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 68.11.0 (x86 nl)) (Version: 68.11.0 - Mozilla) NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - ) Nuria 3.6 (HKLM-x32\...\Nuria_is1) (Version: - iPing Research B.V.) Opera Stable 69.0.3686.95 (HKU\S-1-5-21-3963349371-3354336234-3057670200-1000\...\Opera 69.0.3686.95) (Version: 69.0.3686.95 - Opera Software) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Ralink RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.6.0 - Ralink) Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1955.62 - Trusteer) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype versie 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 6.5.38.0 - 2BrightSparks) TomTom MyDrive Connect 4.2.8.4052 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.8.4052 - TomTom) Trusteer Eindpuntbeveiliging (HKLM-x32\...\Rapport_msi) (Version: 3.5.1955.62 - Trusteer) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) Packages: ========= Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-04-02] (Microsoft Corporation) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-09] (Microsoft Studios) [MS Ad] MSN geldzaken -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-10-15] (Twitter Inc.) WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-03-08] (Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3963349371-3354336234-3057670200-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-3963349371-3354336234-3057670200-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-3963349371-3354336234-3057670200-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) CustomCLSID: HKU\S-1-5-21-3963349371-3354336234-3057670200-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll => Geen bestand ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-07-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-07-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ==================== Codecs (gefilterd) ==================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.) ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2015-08-20 09:02 - 2009-02-27 16:38 - 000139264 ____R () [Bestand niet getekend] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2018-07-18 14:27 - 2018-07-18 14:27 - 000747520 _____ () [Bestand niet getekend] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll 2018-10-15 12:01 - 2018-10-15 12:01 - 000013312 _____ () [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\libEGL.DLL 2018-10-15 12:01 - 2018-10-15 12:01 - 001950720 _____ () [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\libGLESv2.dll 2014-09-11 17:14 - 2014-09-11 17:14 - 000218112 _____ () [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qmng.dll 2015-08-20 09:02 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\brlmw03a.dll 2015-08-20 09:02 - 2012-07-13 13:09 - 000385024 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\BrMonitor.dll 2015-08-20 09:02 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2015-08-20 09:02 - 2012-11-29 19:04 - 002040832 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2015-08-20 09:02 - 2013-04-05 13:24 - 000137728 _____ (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll 2015-08-20 09:02 - 2012-12-21 12:31 - 000078848 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll 2015-08-20 09:02 - 2012-12-21 12:31 - 017666560 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll 2015-08-20 09:02 - 2013-01-18 14:30 - 000078336 ____N (Brother Industries, Ltd.) [Bestand niet getekend] C:\Program Files (x86)\ControlCenter4\BrCcLDut.dll 2013-12-07 00:28 - 2012-05-21 18:24 - 000073728 ____R (Intel Corporation) [Bestand niet getekend] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll 2018-01-01 18:18 - 2015-02-27 11:35 - 000489984 _____ (Newtonsoft) [Bestand niet getekend] [Bestand is in gebruik] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll 2020-08-16 12:48 - 2020-08-16 12:48 - 000913920 _____ (ServiceStack) [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ServiceStack.Text\f09537bf6b5f8bd8530cc041d41a4ab5\ServiceStack.Text.ni.dll 2018-03-27 22:33 - 2018-03-27 22:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\LIBEAY32.dll 2018-03-27 22:33 - 2018-03-27 22:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\ssleay32.dll 2018-10-15 12:11 - 2018-10-15 12:11 - 000038912 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\bearer\qgenericbearer.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000026112 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qgif.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000033280 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qicns.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000027648 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qico.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 000243712 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qjpeg.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000021504 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qsvg.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000020992 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qtga.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000327680 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qtiff.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000019968 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qwbmp.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000400896 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\imageformats\qwebp.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 001096704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Plugins\platforms\qwindows.dll 2020-05-03 10:43 - 2020-05-03 10:43 - 004785152 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Core.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 004970496 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Gui.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 000961024 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Network.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000264704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Svg.dll 2018-10-15 12:09 - 2018-10-15 12:09 - 004468224 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Widgets.dll 2018-10-15 12:02 - 2018-10-15 12:02 - 000150016 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\Qt5Xml.dll 2020-05-03 10:36 - 2020-05-03 10:36 - 000141312 _____ (TomTom) [Bestand niet getekend] C:\Users\Gebruiker\MyDrive Connect\DeviceNavEthernetCore.dll 2018-01-01 18:18 - 2017-03-20 17:13 - 000087552 _____ (Wondershare) [Bestand niet getekend] [Bestand is in gebruik] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll 2018-01-01 18:18 - 2017-03-20 17:13 - 000197632 _____ (Wondershare) [Bestand niet getekend] [Bestand is in gebruik] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3963349371-3354336234-3057670200-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.179.104.196 - 213.46.228.196 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Geen bestand) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) MSCONFIG\Services: RapportMgmtService => 2 MSCONFIG\Services: UNS => 2 ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [UDP Query User{486417FA-EDF9-459C-B87F-ACDD4A98C7BD}C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe => Geen bestand FirewallRules: [TCP Query User{C15A7D7B-6C19-4E1E-92F8-D4B1BD6DC044}C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe => Geen bestand FirewallRules: [UDP Query User{1CD85904-2853-4A29-8EBA-0513A520C8A4}C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe => Geen bestand FirewallRules: [TCP Query User{5FB0B552-8C08-4CED-B3EB-EC9CCC5157F5}C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego-b\mobilegoservice.exe => Geen bestand FirewallRules: [{025166C5-37E6-4E6B-922E-854AC9A6D8B1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{47DF72B5-00E7-494E-93CC-257CFC892E02}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E9EBD7C0-D2B3-42C0-9100-753F069AEF44}] => (Block) LPort=445 FirewallRules: [{B0D4B795-131D-4176-B023-059BEF61226E}] => (Block) LPort=445 FirewallRules: [{D3F7464D-F680-476F-BF12-047EBBF16D50}] => (Allow) C:\Users\Gebruiker\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom) FirewallRules: [{0432D473-1812-47CD-B2C4-8BEE0ABB3558}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{54DA1D4A-111A-479E-BE9A-30221E16C331}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A5E3966A-C8D1-4202-9A6F-F9C77CF9DC1F}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) FirewallRules: [{9CB3E5AC-CCBB-4898-B307-848D8EB81B06}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) FirewallRules: [{8595580E-9A1E-4D84-A6AF-ABA732F32492}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ==================== Herstelpunten ========================= AANDACHT: Systeemherstel is uitgeschakeld (Total:111.18 GB) (Free:59.44 GB) (53%) ==================== Defecte Apparaatbeheer Apparaten ============ Name: Intel(R) Management Engine Interface Description: Intel(R) Management Engine Interface Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: MEIx64 Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (08/17/2020 01:46:16 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (5328,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:50:20 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4440,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:42:43 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (11212,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:34:04 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (2168,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:23:54 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (2736,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:18:11 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (11852,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:04:09 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6272,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/17/2020 11:00:02 AM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: De back-up is niet voltooid vanwege een fout bij schrijven naar de back-uplocatie E:\. De fout is: De back-uplocatie is niet gevonden of is niet geldig. Controleer de back-upinstellingen en de back-uplocatie. (0x81000006). Systeemfouten: ============= Error: (08/17/2020 11:56:13 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (08/17/2020 10:40:29 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (08/17/2020 10:07:00 AM) (Source: MEIx64) (EventID: 3) (User: ) Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x1E000042, FWSTS1: 0x60000106). Error: (08/17/2020 10:06:29 AM) (Source: MEIx64) (EventID: 3) (User: ) Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x1E000042, FWSTS1: 0x60000106). Error: (08/17/2020 10:05:57 AM) (Source: MEIx64) (EventID: 3) (User: ) Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x1E000042, FWSTS1: 0x60000106). Error: (08/17/2020 10:07:02 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 13:53:18 op ‎16-‎8-‎2020 is onverwacht gebeurd. Error: (08/17/2020 10:05:22 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY) Description: 3221225684Er is een onherstelbare fout opgetreden tijdens het verwerken van de herstelgegevens. Error: (08/16/2020 01:53:16 PM) (Source: MEIx64) (EventID: 3) (User: ) Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x1E000042, FWSTS1: 0x63000106). CodeIntegrity: =================================== Date: 2020-08-05 11:48:39.076 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-07-26 09:39:06.916 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-06-29 16:31:33.882 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-21 08:51:22.602 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-07 09:02:43.047 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-04-01 10:33:55.676 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-03-21 11:50:18.941 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. 0212 02/17/2013 Moederbord: ASUSTeK COMPUTER INC. B75M-A Processor: Intel(R) Core(TM) i5-3330 CPU @ 3.00GHz Percentage geheugen in gebruik: 83% Totaal fysiek RAM-geheugen: 3747.11 MB Beschikbaar fysiek RAM-geheugen: 619.92 MB Totaal Virtueel geheugen: 7587.11 MB Beschikbaar Virtueel geheugen: 2234.8 MB ==================== Schijven ================================ Drive c: (Lokale schijf SSD) (Fixed) (Total:111.18 GB) (Free:59.44 GB) NTFS Drive f: (Windows data) (Fixed) (Total:800 GB) (Free:789.83 GB) NTFS \\?\Volume{3ad4c043-5ec0-11e3-b66f-806e6f6e6963}\ (Door systeem gereserveerd) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{5f5e6411-0000-0000-0000-b0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 5F5E6411) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=525 MB) - (Type=27) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1538B939) Partition 1: (Active) - (Size=800 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=131.5 GB) - (Type=05) ==================== Einde van Addition.txt =======================