Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 25-11-2020 Gestart door Dell (26-11-2020 17:29:50) Gestart vanaf C:\Users\Dell\Desktop Windows 10 Pro Versie 20H2 19042.630 (X64) (2020-06-12 16:30:01) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1824048080-3209630875-957163187-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1824048080-3209630875-957163187-503 - Limited - Disabled) Dell (S-1-5-21-1824048080-3209630875-957163187-1001 - Administrator - Enabled) => C:\Users\Dell Gast (S-1-5-21-1824048080-3209630875-957163187-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1824048080-3209630875-957163187-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.453 - Adobe) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.453 - Adobe) AnyVideo Converter HD (HKLM-x32\...\{2BA688E3-3381-4D29-8312-EE95CC41E26C}) (Version: 2.1.3 - vivica) Apple Application Support (HKLM-x32\...\{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}) (Version: 2.0.1 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Art Effects for PDR10 (HKLM\...\NewBlue Art Effects for PDR10) (Version: 2.0 - NewBlue) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Belgium e-ID middleware 4.4.4 (build 3838) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73838}) (Version: 4.4.3838 - Belgian Government) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.3.0 - Canon Inc.) Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.01 - Canon Inc.) Canon MG5700 series On-screen Manual (HKLM-x32\...\Canon MG5700 series On-screen Manual) (Version: 7.8.0 - Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.) ConvertTrack (HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\58470d31f55cd8ee) (Version: 1.7.0.1 - Wolff Software) CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.1005 - Uw bedrijfsnaam) Hidden CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.1005 - CyberLink Corp.) CyberLink PowerDirector 10 Content Pack II (HKLM-x32\...\InstallShield_{AABB78C0-A435-486A-84E3-17E6684828C2}) (Version: 10.0 - CyberLink Corp.) CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.3320 - CyberLink Corp.) Debuut Video Capture Software (HKLM-x32\...\Debut) (Version: 6.41 - NCH Software) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.) Dropbox (HKLM-x32\...\Dropbox) (Version: 110.4.458 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.377.1 - Dropbox, Inc.) Hidden Garmin BaseCamp (HKLM-x32\...\{52212c77-b309-478b-9073-27ea7ca4373b}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries) Garmin BaseCamp (HKLM-x32\...\{BF450036-EE1E-4B8A-B514-787A0D6D4EAE}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Gebruikersregistratie voor Canon MG5700 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG5700 series) (Version: - ‭Canon Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.66 - Google LLC) Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation) Java 8 Update 271 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180271F0}) (Version: 8.0.2710.9 - Oracle Corporation) Knoll Light Factory EZ Studio (HKLM-x32\...\Knoll Light Factory EZ Studio) (Version: - ) Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version: - ) Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.47 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - ) Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.13328.20356 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) MiniTool Partition Wizard Free 12 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited) Mozilla Firefox 66.0.5 (x64 nl) (HKLM\...\Mozilla Firefox 66.0.5 (x64 nl)) (Version: 66.0.5 - Mozilla) Mozilla Firefox 83.0 (x64 nl) (HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\Mozilla Firefox 83.0 (x64 nl)) (Version: 83.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.5 - Mozilla) NVIDIA nView 149.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 149.34 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Oracle VM VirtualBox 6.1.16 (HKLM\...\{8979282D-1F43-4810-B819-AA1B06F2C085}) (Version: 6.1.16 - Oracle Corporation) OSM generic routable(BEL) (HKLM-x32\...\OSM generic routable(BEL)) (Version: - ) paint.net (HKLM\...\{B56F4594-AA51-450A-BBD0-2CE48675D33A}) (Version: 4.2.14 - dotPDN LLC) Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems) Pinnacle Studio Ultimate Collection Plugins (HKLM-x32\...\{F5C372A1-40F3-49DA-A049-F75CDE9177DC}) (Version: 14.0.0.7255 - Pinnacle Systems) Pinnacle videodriver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems) PowerDirector (HKLM\...\{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}) (Version: 10.00.0000 - Uw bedrijfsnaam) Hidden Red Giant ToonIt Studio (HKLM-x32\...\Red Giant ToonIt Studio) (Version: - ) Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.) R-Link Explorer version 1.2.2 (HKLM-x32\...\{E1128138-25EE-4CC4-84BC-4938EF266633}_is1) (Version: 1.2.2 - Djeman) RLinkToolbox 3.5.6.611 (HKLM-x32\...\RLinkToolbox) (Version: 3.5.6.611 - TomTom) SmartSound Quicktracks 5 (HKLM-x32\...\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Hidden SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Trapcode 3DStroke Studio (HKLM-x32\...\Trapcode 3DStroke Studio) (Version: - ) Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version: - ) Trapcode Shine Studio (HKLM-x32\...\Trapcode Shine Studio) (Version: - ) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) WhatsApp (HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\WhatsApp) (Version: 2.2041.6 - WhatsApp) Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) WinRAR 5.80 beta 1 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.80.1 - win.rar GmbH) Packages: ========= Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.13.6.0_x86__kgqvnymyfvs32 [2020-10-04] (king.com) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.47.2.0_x86__kgqvnymyfvs32 [2020-11-26] (king.com) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1900.2.0_x86__kgqvnymyfvs32 [2020-11-21] (king.com) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-08-22] (Microsoft Corporation) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-18] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-18] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-26] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0 [2020-11-21] (Spotify AB) [Startup Task] Uitbreiding voor MPEG-2-video -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1824048080-3209630875-957163187-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Dell\Dropbox [2019-05-16 10:30] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-09-22] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-09-22] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2018-08-31] (NVIDIA Corporation -> ) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-08-30] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-09-22] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-09-22] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (gefilterd) ==================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Drivers32-x32: [vidc.mjpg] => pvmjpg30.dll ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Geladen Modules (gefilterd) ============= 2014-09-11 16:06 - 2014-09-11 16:06 - 000878592 _____ () [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\Plugins\platforms\qwindows.dll 2020-09-30 14:17 - 2017-07-05 12:49 - 000593920 _____ (CANON INC.) [Bestand niet getekend] [Bestand is in gebruik] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll 2020-09-30 14:08 - 2015-01-09 07:44 - 000104960 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll 2020-09-30 14:08 - 2015-01-09 07:45 - 000008704 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_NLD.DLL 2019-05-18 11:43 - 2020-03-04 15:08 - 000123904 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJPLM\CNMPU.DLL 2020-09-30 14:17 - 2017-07-05 12:43 - 000561152 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll 2019-05-18 11:48 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL 2018-06-30 03:19 - 2018-06-30 03:19 - 004112384 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\Qt5Core.dll 2014-09-11 15:56 - 2014-09-11 15:56 - 004350464 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\Qt5Gui.dll 2014-09-11 15:54 - 2014-09-11 15:54 - 000850432 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\Qt5Network.dll 2014-09-11 16:00 - 2014-09-11 16:00 - 004372480 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\Qt5Widgets.dll 2019-07-10 16:24 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Bestand niet getekend] C:\Program Files\7-Zip\7-zip.dll 2020-04-20 13:35 - 2020-04-20 13:35 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll 2020-04-20 13:35 - 2020-04-20 13:35 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2014-01-15 09:44 - 2014-01-15 09:44 - 023507968 _____ (The ICU Project) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\icudt52.dll 2014-01-15 09:44 - 2014-01-15 09:44 - 001798656 _____ (The ICU Project) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\icuin52.dll 2014-01-15 09:44 - 2014-01-15 09:44 - 001304064 _____ (The ICU Project) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\icuuc52.dll 2016-11-29 11:00 - 2016-11-29 11:00 - 001184256 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\LIBEAY32.dll 2016-11-29 11:00 - 2016-11-29 11:00 - 000254976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\ssleay32.dll 2020-06-08 10:23 - 2020-06-08 10:23 - 000032768 _____ (TomTom) [Bestand niet getekend] C:\Program Files (x86)\RLinkToolbox 3\UIController.dll ==================== Alternate Data Streams (gefilterd) ======== (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\Dell\Documents\Agenda:com.dropbox.attrs [54] ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1824048080-3209630875-957163187-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-23] (Microsoft Corporation -> Microsoft Corporation) BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2020-10-21] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-10-21] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-09-23] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\ssv.dll [2020-10-21] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-10-21] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKU\S-1-5-21-1824048080-3209630875-957163187-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1824048080-3209630875-957163187-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2018-09-15 08:31 - 2019-10-08 14:15 - 000000832 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Pinnacle\Shared Files\;C:\Program Files (x86)\AOMEI Backupper HKU\S-1-5-21-1824048080-3209630875-957163187-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is ingeschakeld. Network Binding: ============= Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{86B73B3A-2545-44F7-8041-80DA27BAEAB9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.) FirewallRules: [TCP Query User{5E032518-918F-4E48-AD88-906CFA361149}D:\software\drivers updater\sdi_rus\sdi_x64_r1811.exe] => (Allow) D:\software\drivers updater\sdi_rus\sdi_x64_r1811.exe => Geen bestand FirewallRules: [UDP Query User{A43C1F12-9D6A-42C8-9A76-6AECC690B8EC}D:\software\drivers updater\sdi_rus\sdi_x64_r1811.exe] => (Allow) D:\software\drivers updater\sdi_rus\sdi_x64_r1811.exe => Geen bestand FirewallRules: [{2BEED286-88BA-406C-B541-298621C85C65}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{C80B1867-E1D9-4863-AA8B-8C65A1513053}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6491D108-93B9-454F-8B7B-5C3E361047C9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C82DEF7A-D17A-4403-899F-725024403916}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C3C73BC2-41DA-44C6-8EA7-9AD22B300FA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A4A76458-7D74-4E94-8326-27ACF0A75D7C}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{18AD5D3A-ED44-4964-8BDF-CFEAABE4AC01}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{59777286-B1F0-4FBC-AE19-35A1B18F639E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{D56E6B98-1006-4FBC-917F-ADF42C7F5BB4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{40C5F408-3444-43DB-BC42-6A34F764F9D6}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\umi.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{9E33395E-1953-45EB-BC83-196579A62231}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 14\Programs\umi.exe (Pinnacle Systems, Inc. -> Pinnacle Systems) FirewallRules: [{3DA261C2-84B1-45F8-BE39-790A1A2B4E67}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8B14D303-5F67-42CC-9CA9-B0FEF38D7ED0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{14D8FAB6-5509-42AD-A833-44315A6538CA}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation) FirewallRules: [UDP Query User{D7135107-4451-4BAE-ADBA-14E3EEC34402}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation) FirewallRules: [{B7D4CA79-93E0-4C47-B273-F47B28C91FF6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{E6EAD804-6BCC-47A5-B0B8-C5BF924BC739}C:\users\dell\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\dell\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{7204B35B-1A6D-4699-95EB-E1EE62D2D1AD}C:\users\dell\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\dell\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4AD8CC00-60BA-4ADD-9AF7-55F3E97E4F83}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{1058BAF0-B9E3-4A6B-BE2F-C0F1B8CDBE90}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{26B6154E-43CF-445B-8CB1-2559777E5310}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{04D53A70-8F3A-4478-A1F2-97F751BFA1E7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{AD80A49A-78FC-432A-A16D-67F0DA9FA301}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0A65582E-BD4D-4738-B395-959C3A649B25}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{EC08F6DC-05D1-4068-957B-11AF1758E9D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CDD12605-FBB5-4E6B-A046-77B9AA0AC8A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CB58AA86-F26F-4A13-88CF-3BBEB8D5ADDF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{815721B5-BC9D-4EE5-B047-04A369529F97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{90BF4483-7915-4019-A2E9-471FA1134793}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EDF07B5D-3FCE-4BCB-A99D-3FE199D40755}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B41D33AF-B0E1-4DF2-91E2-A279889BEA6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EB16CFED-98B4-44D5-A918-ACE646B732B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) ==================== Herstelpunten ========================= ==================== Defecte Apparaatbeheer Apparaten ============ Name: Control Vault w/ Fingerprint Swipe Sensor Description: Control Vault w/ Fingerprint Swipe Sensor Class Guid: {53d29ef7-377c-4d14-864b-eb3a85769359} Manufacturer: Broadcom Corporation Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (11/26/2020 05:24:04 PM) (Source: USHUpgradeService) (EventID: 2) (User: ) Description: Will not attempt to upgrade CV firmware because there were too many failed firmware upgrades. Error: (11/24/2020 02:59:41 PM) (Source: USHUpgradeService) (EventID: 2) (User: ) Description: Will not attempt to upgrade CV firmware because there were too many failed firmware upgrades. Error: (11/24/2020 02:59:07 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (11/22/2020 10:24:21 AM) (Source: USHUpgradeService) (EventID: 2) (User: ) Description: Will not attempt to upgrade CV firmware because there were too many failed firmware upgrades. Error: (11/22/2020 10:23:46 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (11/22/2020 10:23:46 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (11/21/2020 11:12:20 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd. . Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces. Bewerking: Schrijvergegevens verzamelen Context: Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220} Naam van schrijver: System Writer Instantie-id van schrijver: {e231daf0-88c5-4b02-b492-5346875c4e9e} Error: (11/21/2020 11:00:45 AM) (Source: USHUpgradeService) (EventID: 2) (User: ) Description: Will not attempt to upgrade CV firmware because there were too many failed firmware upgrades. Systeemfouten: ============= Error: (11/26/2020 05:25:52 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Het stuurprogramma heeft een interne stuurprogrammafout gevonden in \Device\VBoxNetLwf. Error: (11/26/2020 05:24:06 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Het stuurprogramma heeft een interne stuurprogrammafout gevonden in \Device\VBoxNetLwf. Error: (11/26/2020 05:24:05 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Het stuurprogramma heeft een interne stuurprogrammafout gevonden in \Device\VBoxNetLwf. Error: (11/26/2020 05:22:51 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOPDELL) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de ShellHWDetection-service met de argumenten Niet beschikbaar om de server {DD522ACC-F821-461A-A407-50B198B896DC} te starten Error: (11/26/2020 05:22:45 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOPDELL) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.TokenBrokerInternal te starten Error: (11/26/2020 05:22:45 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOPDELL) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.TokenBrokerInternal te starten Error: (11/26/2020 05:22:44 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOPDELL) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.TokenBrokerInternal te starten Error: (11/26/2020 05:22:44 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOPDELL) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de ShellHWDetection-service met de argumenten Niet beschikbaar om de server {DD522ACC-F821-461A-A407-50B198B896DC} te starten Windows Defender: =================================== Date: 2020-11-21 11:08:46.2930000Z Description: Microsoft Defender Antivirus heeft malware of andere mogelijke ongewenste software gedetecteerd. Zie het volgende voor meer informatie: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/InstallCore&threatid=213927&enterprise=0 Naam: PUA:Win32/InstallCore ID: 213927 Ernst: Laag Categorie: Mogelijk ongewenste software Pad: file:_C:\Users\Dell\Downloads\audacity_2526269448.exe; file:_C:\Users\Dell\Downloads\audacity_3141570277.exe; webfile:_C:\Users\Dell\Downloads\audacity_2526269448.exe|https://d2g4oy97uh31gj.cloudfront.net/u6nd4y{14B92D6E-EB99-4998-8769-18E5E6E32299}E61wvcp/audacity.exe|pid:4512,ProcessStart:132504268447875873; webfile:_C:\Users\Dell\Downloads\audacity_3141570277.exe|https://d2g4oy97uh31gj.cloudfront.net/dzliq9my{14B92D6E-EB99-4998-8769-18E5E6E32299}E4bgd/audacity.exe|pid:8876,ProcessStart:132504268814087420 Detectieoorsprong: Internet Detectietype: Concreet Detectiebron: Downloads en bijlagen Gebruiker: LAPTOPDELL\Dell Procesnaam: C:\Windows\explorer.exe Versie van beveiligingsinformatie: AV: 1.327.1289.0, AS: 1.327.1289.0, NIS: 1.327.1289.0 Engineversie: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-21 11:08:02.4100000Z Description: Microsoft Defender Antivirus heeft malware of andere mogelijke ongewenste software gedetecteerd. Zie het volgende voor meer informatie: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/InstallCore&threatid=213927&enterprise=0 Naam: PUA:Win32/InstallCore ID: 213927 Ernst: Laag Categorie: Mogelijk ongewenste software Pad: file:_C:\Users\Dell\Downloads\audacity_2526269448.exe; file:_C:\Users\Dell\Downloads\audacity_3141570277.exe; webfile:_C:\Users\Dell\Downloads\audacity_2526269448.exe|https://d2g4oy97uh31gj.cloudfront.net/u6nd4y{14B92D6E-EB99-4998-8769-18E5E6E32299}E61wvcp/audacity.exe|pid:4512,ProcessStart:132504268447875873; webfile:_C:\Users\Dell\Downloads\audacity_3141570277.exe|https://d2g4oy97uh31gj.cloudfront.net/dzliq9my{14B92D6E-EB99-4998-8769-18E5E6E32299}E4bgd/audacity.exe|pid:8876,ProcessStart:132504268814087420 Detectieoorsprong: Internet Detectietype: Concreet Detectiebron: Downloads en bijlagen Gebruiker: LAPTOPDELL\Dell Procesnaam: Unknown Versie van beveiligingsinformatie: AV: 1.327.1289.0, AS: 1.327.1289.0, NIS: 1.327.1289.0 Engineversie: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-21 11:07:26.6660000Z Description: Microsoft Defender Antivirus heeft malware of andere mogelijke ongewenste software gedetecteerd. Zie het volgende voor meer informatie: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/InstallCore&threatid=213927&enterprise=0 Naam: PUA:Win32/InstallCore ID: 213927 Ernst: Laag Categorie: Mogelijk ongewenste software Pad: file:_C:\Users\Dell\Downloads\audacity_2526269448.exe; webfile:_C:\Users\Dell\Downloads\audacity_2526269448.exe|https://d2g4oy97uh31gj.cloudfront.net/u6nd4y{14B92D6E-EB99-4998-8769-18E5E6E32299}E61wvcp/audacity.exe|pid:4512,ProcessStart:132504268447875873 Detectieoorsprong: Internet Detectietype: Concreet Detectiebron: Downloads en bijlagen Gebruiker: LAPTOPDELL\Dell Procesnaam: Unknown Versie van beveiligingsinformatie: AV: 1.327.1289.0, AS: 1.327.1289.0, NIS: 1.327.1289.0 Engineversie: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-21 11:03:18.5550000Z Description: Microsoft Defender Antivirus heeft malware of andere mogelijke ongewenste software gedetecteerd. Zie het volgende voor meer informatie: https://go.microsoft.com/fwlink/?linkid=37020&name=App:MiniTool_Partition_Wizard_BundleInstaller&threatid=268660&enterprise=0 Naam: App:MiniTool_Partition_Wizard_BundleInstaller ID: 268660 Ernst: Laag Categorie: Mogelijk ongewenste software Pad: file:_C:\Users\Dell\AppData\Local\Temp\pw12-free.exe; file:_C:\Users\Dell\Downloads\pw11-free.exe; process:_pid:5460,ProcessStart:132437677207214173 Detectieoorsprong: Lokale computer Detectietype: Concreet Detectiebron: Real-timebeveiliging Gebruiker: Procesnaam: C:\Windows\explorer.exe Versie van beveiligingsinformatie: AV: 1.327.1289.0, AS: 1.327.1289.0, NIS: 1.327.1289.0 Engineversie: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-21 10:58:41.7810000Z Description: Microsoft Defender Antivirus heeft malware of andere mogelijke ongewenste software gedetecteerd. Zie het volgende voor meer informatie: https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Systweak&threatid=227048&enterprise=0 Naam: PUA:Win32/Systweak ID: 227048 Ernst: Laag Categorie: Mogelijk ongewenste software Pad: file:_D:\Mijn Documenten\Downloads\wzdu18.exe Detectieoorsprong: Lokale computer Detectietype: Snel pad Detectiebron: Real-timebeveiliging Gebruiker: LAPTOPDELL\Dell Procesnaam: C:\Windows\explorer.exe Versie van beveiligingsinformatie: AV: 1.327.1289.0, AS: 1.327.1289.0, NIS: 1.327.1289.0 Engineversie: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-09-30 10:36:21.1410000Z Description: Microsoft Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.323.2132.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.17500.4 Foutcode: 0x80240438 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. CodeIntegrity: =================================== Date: 2020-11-26 16:14:20.8120000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 16:14:18.8870000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 16:14:17.6450000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 16:14:17.5820000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 16:14:17.4660000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 16:14:17.4630000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-11-26 15:50:02.4210000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-11-26 15:20:39.3990000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: Dell Inc. A06 07/11/2011 Moederbord: Dell Inc. 032T9K Processor: Intel(R) Core(TM) i7-2760QM CPU @ 2.40GHz Percentage geheugen in gebruik: 51% Totaal fysiek RAM-geheugen: 8072.89 MB Beschikbaar fysiek RAM-geheugen: 3940.44 MB Totaal Virtueel geheugen: 9352.89 MB Beschikbaar Virtueel geheugen: 5064.68 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:464.92 GB) (Free:321.65 GB) NTFS \\?\Volume{7d05d9ff-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.84 GB) (Free:0.39 GB) NTFS ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 7D05D9FF) Partition 1: (Active) - (Size=858 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=464.9 GB) - (Type=07 NTFS) ==================== Einde van Addition.txt =======================