Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 02-12-2020 Gestart door v4lov (03-12-2020 09:43:17) Gestart vanaf C:\Users\v4lov\Downloads Windows 10 Home Versie 2004 19041.630 (X64) (2020-11-09 11:22:54) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1104448991-546628012-2938781405-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1104448991-546628012-2938781405-503 - Limited - Disabled) Gast (S-1-5-21-1104448991-546628012-2938781405-501 - Limited - Disabled) v4lov (S-1-5-21-1104448991-546628012-2938781405-1003 - Administrator - Enabled) => C:\Users\v4lov WDAGUtilityAccount (S-1-5-21-1104448991-546628012-2938781405-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software) Belgium e-ID middleware 4.4.27 (build 4277) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A74277}) (Version: 4.4.4277 - Belgian Government) CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.) CyberLink PowerRecover (HKLM\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.8922 - CyberLink Corp.) Hidden CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.8922 - CyberLink Corp.) DIGIPASS Native Bridge 2.7.1 (HKLM-x32\...\{6F6DC028-4A65-4D5E-9349-5387E2D5B239}) (Version: 2.7.1 - OneSpan Inc.) Hidden DIGIPASS Native Bridge 2.7.1 (HKU\S-1-5-21-1104448991-546628012-2938781405-1003\...\{88d0973e-3ce7-4e29-899b-20050be36973}) (Version: 2.7.1 - OneSpan Inc.) Garmin City Navigator Europe NT 2008 (HKLM-x32\...\{1E105942-593C-4C48-AB3D-BEC2124F5FCE}) (Version: 10.0.0.1 - Garmin Ltd or its subsidiaries) Garmin MapSource (HKLM-x32\...\{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}) (Version: 6.16.3 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.20.314 - SurfRight B.V.) KeePass Password Safe 2.46 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.46 - Dominik Reichl) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) Malwarebytes version 4.2.3.96 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.3.96 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.52 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - ) Microsoft Office Professional Plus 2019 - nl-nl (HKLM\...\ProPlus2019Volume - nl-nl) (Version: 16.0.10368.20035 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1104448991-546628012-2938781405-1003\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10368.20035 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10368.20035 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.10368.20035 - Microsoft Corporation) Hidden PIXresizer (HKLM-x32\...\PIXresizer_is1) (Version: 2.0.8 - Bluefive software) SABnzbd 3.1.1 (HKLM-x32\...\SABnzbd) (Version: 3.1.1 - The SABnzbd Team) SConnect Host (HKU\S-1-5-21-1104448991-546628012-2938781405-1003\...\SConnectHost) (Version: 2.12.0.0 - Gemalto) Spotnet (HKLM-x32\...\{12947715-B6F0-4597-816F-5E13FB647921}_is1) (Version: 1.9.0.5 - Spotnet) SupportAPP (HKLM\...\{0000A0AB-3A12-1EF4-A21C-9ADE1843AB04}) (Version: 1.1 - ) Videostream (HKU\S-1-5-21-1104448991-546628012-2938781405-1003\...\Videostream) (Version: 0.4.3 - Videostream) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin) WinRAR 5.91 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.1 - win.rar GmbH) Packages: ========= Intel® Graphics besturingscentrum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-14] (INTEL CORP) [Startup Task] Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.0.1017.0_x64__8j3eq9eme6ctt [2020-11-26] (INTEL CORP) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) [MS Ad] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.224.0_x64__dt26b99r8h8gj [2020-10-23] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0 [2020-11-18] (Spotify AB) [Startup Task] Uitbreiding voor MPEG-2-video -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-05-25] (Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1104448991-546628012-2938781405-1003_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\v4lov\AppData\Local\Kingsoft\WPS Office\11.2.0.9281\office6\kwpsmenushellext64.dll => Geen bestand ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-21] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Geen bestand ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-21] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-05-31] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-05-31] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-21] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Geen bestand ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Geen bestand ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-21] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Geen bestand ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-05-31] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-05-31] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_S-1-5-21-1104448991-546628012-2938781405-1003: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\v4lov\AppData\Local\Kingsoft\WPS Office\11.2.0.9281\office6\kwpsmenushellext64.dll -> Geen bestand ContextMenuHandlers4_S-1-5-21-1104448991-546628012-2938781405-1003: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\v4lov\AppData\Local\Kingsoft\WPS Office\11.2.0.9281\office6\kwpsmenushellext64.dll -> Geen bestand ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2020-11-29 10:33 - 2020-11-29 10:33 - 000019456 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\Cheetah\_namemapper.cp38-win_amd64.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000571904 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\pythoncom38.dll 2020-10-28 10:18 - 2020-11-29 10:33 - 000141312 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\pywintypes38.dll 2020-10-28 10:18 - 2020-11-29 10:33 - 000017920 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\sabyenc3.cp38-win_amd64.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000038400 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\servicemanager.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000014848 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\timer.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000132608 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32api.pyd 2020-11-29 10:33 - 2020-11-29 10:33 - 000540672 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32com\shell\shell.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000026624 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32event.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000074240 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32evtlog.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000156672 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32file.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000229888 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32gui.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000053760 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32process.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000147456 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32security.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000057856 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32service.pyd 2020-10-28 10:18 - 2020-11-29 10:33 - 000031744 _____ () [Bestand niet getekend] C:\Program Files\SABnzbd\win32ts.pyd 2020-11-14 10:54 - 2020-11-14 10:54 - 041670144 _____ (Intel Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt\IGCC.dll 2019-11-20 13:34 - 2019-11-20 13:34 - 002434560 _____ (wxWidgets development team) [Bestand niet getekend] C:\Users\v4lov\AppData\Local\OneSpan\NativeBridge\wxbase312u_vc_custom.dll 2019-11-20 13:34 - 2019-11-20 13:34 - 007117824 _____ (wxWidgets development team) [Bestand niet getekend] C:\Users\v4lov\AppData\Local\OneSpan\NativeBridge\wxmsw312u_core_vc_custom.dll ==================== Alternate Data Streams (gefilterd) ======== (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\ProgramData\Spotnet:spn.k [428] ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1104448991-546628012-2938781405-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1104448991-546628012-2938781405-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=LCTE BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-06-17] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-1104448991-546628012-2938781405-1003\Control Panel\Desktop\\Wallpaper -> DNS Servers: 195.130.131.2 - 195.130.130.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{EB5DDCCF-5D5E-418B-AE8D-CB85035DDC78}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{FC23E3F1-CF0F-42EB-96E4-050F11211585}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{36DC748D-8516-4E7A-A0E3-585A328C5D22}] => (Allow) C:\Users\v4lov\AppData\Local\Videostream\app-0.4.3\videostream-native\videostream-native.exe (RouteThis Inc. -> ) FirewallRules: [{FC0148E3-37D9-4273-B8A6-6C7C78152286}] => (Allow) C:\Users\v4lov\AppData\Local\Videostream\app-0.4.3\videostream-native\videostream-native.exe (RouteThis Inc. -> ) FirewallRules: [{E6443D4A-D8A4-4B05-B369-51EB377E637E}] => (Allow) LPort=5557 FirewallRules: [{95CD6F01-CE89-48D7-91E9-3E67B8083F6A}] => (Allow) LPort=5556 FirewallRules: [{8EE25B6D-E8B2-4B3F-84AC-15029995B5F1}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [UDP Query User{D2F1AA50-66AD-4BC8-B9C4-2E778D1DBAE9}C:\program files\nzbget\nzbget.exe] => (Block) C:\program files\nzbget\nzbget.exe => Geen bestand FirewallRules: [TCP Query User{F023D55D-296D-460D-8EB6-3B694B030461}C:\program files\nzbget\nzbget.exe] => (Block) C:\program files\nzbget\nzbget.exe => Geen bestand FirewallRules: [UDP Query User{513D5A9D-25B2-4373-841C-8FA67CFC3EA7}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{5FB165B7-DF4E-47CA-8E7C-6F6809978C1F}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{2C11FBD2-D595-4582-8923-044A64A280A2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A93BD738-66A4-4FE3-804E-8F6E4FC25D70}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1615387C-5C96-4707-80F5-092E13EE4BD2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D9E369AE-25CD-4EE3-B4AE-321522A48272}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A491DD5F-4B71-43EE-A071-B7313DA8FB18}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{37A4CC60-BDF2-468F-915B-980EB10BE252}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{DB7D02A3-7F16-47E0-B530-5804182D7F3C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3A6AF5D5-74B0-4564-8EFF-9BE2ABF6E148}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{7B3D3EF5-D02D-4059-AC45-82E995ACF612}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{503C1181-5CF8-4297-938E-B1BC0B467B20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8C4BF2B3-1944-405D-8E9C-D8E1F92C7327}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{83FF2939-ECBE-476B-A5C7-1DFD526BBA3D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{47DFEDCF-EB43-4275-BED5-D2AA19234282}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D1E868F1-D98D-4748-9C9B-AFAE85B4856C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D034B84F-BC05-4DE4-A242-AF50B99785FB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2695A5A5-239C-43A0-B565-AB8CCE947999}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B693651C-0229-4D98-A511-0CFF22AC6814}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F9A6960D-098B-4020-845D-8FB38EC39267}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7EC8DB39-34DE-4008-9364-D67C433A2437}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2CF32D58-111C-4A48-B550-99A2EB830384}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0179BF45-4D0A-4818-AF91-11EF3A159E4B}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{D37181A2-78C5-459C-BF6E-8F3227147E24}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] ==================== Herstelpunten ========================= 24-11-2020 15:47:43 Gepland controlepunt 02-12-2020 11:01:39 Controlepunt van HitmanPro ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (12/02/2020 11:01:38 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd. . Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces. Bewerking: Schrijvergegevens verzamelen Context: Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220} Naam van schrijver: System Writer Instantie-id van schrijver: {6fe8ae86-55ae-47f1-b5fb-03b592e51c48} Error: (12/01/2020 04:25:13 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: De opslagoptimalisatie kon Opnieuw knippen niet voltooien op NieuwVolume (G:) vanwege: De gevraagde bewerking wordt niet ondersteund door de hardware voor back-up van het volume. (0x8900002A) Error: (12/01/2020 04:25:08 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: De opslagoptimalisatie kon Opnieuw knippen niet voltooien op (H:) vanwege: De gevraagde bewerking wordt niet ondersteund door de hardware voor back-up van het volume. (0x8900002A) Error: (12/01/2020 04:03:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: De opslagoptimalisatie kon Opnieuw knippen niet voltooien op (H:) vanwege: De gevraagde bewerking wordt niet ondersteund door de hardware voor back-up van het volume. (0x8900002A) Error: (11/24/2020 03:47:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: De opslagoptimalisatie kon Opnieuw knippen niet voltooien op NieuwVolume (G:) vanwege: De gevraagde bewerking wordt niet ondersteund door de hardware voor back-up van het volume. (0x8900002A) Error: (11/24/2020 03:36:33 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: De opslagoptimalisatie kon Opnieuw knippen niet voltooien op (H:) vanwege: De gevraagde bewerking wordt niet ondersteund door de hardware voor back-up van het volume. (0x8900002A) Error: (11/22/2020 09:29:27 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: StartMenuExperienceHost.exe, versie: 0.0.0.0, tijdstempel: 0x4fe0bcb3 Naam van module met fout: KERNELBASE.dll, versie: 10.0.19041.572, tijdstempel: 0x1183946c Uitzonderingscode: 0xc0000409 Foutmarge: 0x000000000010b65c Id van proces met fout: 0x17b0 Starttijd van toepassing met fout: 0x01d6c0a9975eba07 Pad naar toepassing met fout: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 8a81d38b-b42d-47f5-8674-428f8cd89fd6 Volledige pakketnaam met fout: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.610_neutral_neutral_cw5n1h2txyewy Relatieve toepassings-id van pakket met fout: App Error: (11/21/2020 10:46:03 AM) (Source: Application) (EventID: 1999) (User: ) Description: Event-ID 1999 Systeemfouten: ============= Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 Error: (12/02/2020 11:32:38 AM) (Source: WudfUsbccidDriver) (EventID: 7) (User: NT AUTHORITY) Description: Event-ID 7 CodeIntegrity: =================================== Date: 2020-12-03 09:43:20.8120000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:42:30.2020000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.6990000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.4210000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.3870000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.3450000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.3210000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-12-03 09:40:23.3120000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. 360H4W0X.115 06/17/2019 Moederbord: MEDION B360H4-EM Processor: Intel(R) Core(TM) i5-9400 CPU @ 2.90GHz Percentage geheugen in gebruik: 48% Totaal fysiek RAM-geheugen: 16237.43 MB Beschikbaar fysiek RAM-geheugen: 8300.45 MB Totaal Virtueel geheugen: 32621.43 MB Beschikbaar Virtueel geheugen: 24621.5 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:449.85 GB) (Free:337.42 GB) NTFS Drive d: (Recover) (Fixed) (Total:25 GB) (Free:10.65 GB) NTFS Drive g: (NieuwVolume) (Fixed) (Total:492.06 GB) (Free:63.25 GB) NTFS Drive h: () (Fixed) (Total:439.45 GB) (Free:135.37 GB) NTFS \\?\Volume{1d04eebc-0d80-4bab-a901-84768cbbe2b9}\ () (Fixed) (Total:0.98 GB) (Free:0.54 GB) NTFS \\?\Volume{52d6f3d0-27d9-4818-a2c9-b2c487702866}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: FEECFEEC) Partition 1: (Active) - (Size=439.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=492.1 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Size: 476.9 GB) (Disk ID: CA33D306) Partition: GPT. ==================== Einde van Addition.txt =======================