Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 15-05-2021 Gestart door hfmgo (17-05-2021 15:41:32) Gestart vanaf C:\Users\hfmgo\Desktop Windows 10 Home Versie 2004 19041.985 (X64) (2020-10-16 14:56:18) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3941796367-3309776678-791053543-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3941796367-3309776678-791053543-503 - Limited - Disabled) Gast (S-1-5-21-3941796367-3309776678-791053543-501 - Limited - Disabled) hfmgo (S-1-5-21-3941796367-3309776678-791053543-1001 - Administrator - Enabled) => C:\Users\hfmgo WDAGUtilityAccount (S-1-5-21-3941796367-3309776678-791053543-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E} AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {BAD274F4-FA00-8560-1CDE-6C830442BEFA} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Acrylic Wi-Fi Home v3.1 (HKU\S-1-5-21-3941796367-3309776678-791053543-1001\...\{3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1) (Version: 3.1 - Tarlogic Security S.L.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated) ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.212 - Alps Electric) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 100.0.1 - Bitdefender) Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.17.178 - Bitdefender) CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform) Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden Dropbox (HKLM-x32\...\Dropbox) (Version: 122.4.4867 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.459.1 - Dropbox, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 90.0.818.62 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - nl-nl (HKLM\...\ProPlus2019Retail - nl-nl) (Version: 16.0.13929.20372 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3941796367-3309776678-791053543-1001\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation) Microsoft Support and Recovery Assistant (HKU\S-1-5-21-3941796367-3309776678-791053543-1001\...\f9a89bd2a46a7606) (Version: 17.0.4589.1 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13929.20372 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13929.20372 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13929.20372 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.13929.20372 - Microsoft Corporation) Hidden OpenOffice 4.1.5 (HKLM-x32\...\{6649DD88-354B-40C3-94D1-11178CF5CCB2}) (Version: 4.15.9789 - Apache Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23-5-2014) - Samsung Electronics Co., Ltd.) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.12.4 - TeamViewer) Watchtower Library 2013 - Nederlands (HKLM-x32\...\{F4FF38F2-B9F9-4C40-B4C8-589F65ACFD3D}) (Version: 15.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.) Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23072 - Microsoft Corporation) Zoom (HKU\S-1-5-21-3941796367-3309776678-791053543-1001\...\ZoomUMX) (Version: 5.6.5 (823) - Zoom Video Communications, Inc.) Zoom Outlook Plugin (HKLM-x32\...\{E43DB75A-28E5-4DAD-BA20-7DB1DDAFE0FF}) (Version: 5.6.1 - Zoom) Packages: ========= Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2010.3.0_x86__kgqvnymyfvs32 [2021-05-01] (king.com) JW Library -> C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.3.120.0_x64__5rz59y55nfz3e [2021-03-20] (Watchtower Bible and Tract Society of New York) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-30] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-17] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-17] (Microsoft Corporation) [MS Ad] Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2020-11-25] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5060.0_x64__8wekyb3d8bbwe [2021-05-12] (Microsoft Studios) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.) Photo Scan -> C:\Program Files\WindowsApps\5913DefineStudio.PhotoScan_3.7.7.0_x64__jj4r3mnwe2ey2 [2021-03-10] (Define Studio) [MS Ad] Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2020-05-19] (Samsung Electronics Co. Ltd.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0 [2021-05-01] (Spotify AB) [Startup Task] VLC -> C:\Program Files\WindowsApps\VideoLAN.VLC_3.2.1.0_x64__paz6r1rewnh0a [2020-05-17] (VideoLAN) Ziggo GO -> C:\Program Files\WindowsApps\LibertyGlobal.ZiggoGO_2.15.5.0_x64__gmwgfebrpy77e [2020-08-27] (Liberty Global) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0 CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-3941796367-3309776678-791053543-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\hfmgo\Desktop\Ziggo GO.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fbddfdjileihpefdciilbgplolpcpmgd ShortcutWithArgument: C:\Users\hfmgo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Outlook.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eigpmdhekjlgjgcppnanaanbdmnlnagl ShortcutWithArgument: C:\Users\hfmgo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ziggo GO.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fbddfdjileihpefdciilbgplolpcpmgd ==================== Geladen Modules (gefilterd) ============= 2013-11-26 11:07 - 2013-11-26 11:07 - 000112128 _____ (Samsung Electronics Co., Ltd.) [Bestand niet getekend] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-04] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2020-10-06 20:53 - 2020-10-06 20:53 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3941796367-3309776678-791053543-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hfmgo\Pictures\daniele-levis-pelusi-AWZbbVFEW3k-unsplash.jpg DNS Servers: 84.116.46.21 - 84.116.46.20 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKLM\...\StartupApproved\Run32: => "Dropbox" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{9CB00752-50A3-426E-BAE7-889658EC642D}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{64873041-3103-4066-B5D3-C9E7AA1B73DE}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{31C7FB57-085E-4E4B-9C60-E172ABD61705}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{6A321431-8E2B-491C-82F7-47506CB1BA7D}] => (Allow) C:\Users\hfmgo\AppData\Roaming\Zoom\bin_01\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{2AC7A98A-664C-44A8-96B6-BAF29CB5FE77}] => (Allow) C:\Program Files\Acrylic Wi-Fi Home\Acrylic.exe (Tarlogic Security SL -> Tarlogic Security S.L.) FirewallRules: [{C235D678-B2DD-49FF-A21A-D3C09B78FA6D}] => (Allow) C:\Program Files\Acrylic Wi-Fi Home\Acrylic.exe (Tarlogic Security SL -> Tarlogic Security S.L.) FirewallRules: [{3D1A0170-029F-4250-8B86-70CA5A7833DE}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{C2BF10C0-5E1A-4B3A-B8D4-7F83A0094B72}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{3034B939-62C5-49EB-9786-985075950DD5}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{08EA303B-8CA5-429E-B5CB-B4DF0447FD2D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{5B804490-E565-416C-B37D-37D760932AA9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{EC2ADD92-E5EF-46FE-8845-A364B644DE6A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{0822A9CB-DD2E-4769-A8AD-44ADC20DC710}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{89F3A72A-901E-439D-8867-DFCEEFF5AA8D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{FBED34AF-D968-4FB2-BE93-7AA17BC76A3B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [Bestand niet getekend] FirewallRules: [{63BB7EA4-4CA9-4DDA-99B3-5BDCF25156AB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [Bestand niet getekend] FirewallRules: [{690B8653-BFCF-45DE-9E18-A070B9A2448B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{3AC157AE-E12A-4306-A746-B18445233D8B}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{B1A9B766-4219-4400-AA56-0562DFD1F7B0}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess) FirewallRules: [{39870D02-7C2E-4961-BF20-7BCDDE8409ED}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess) FirewallRules: [{5CB7D716-5339-44D9-8550-5E53CAAE8D51}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify) FirewallRules: [{4BBAB892-6AF7-482D-A37D-6CFF56E489C5}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify) FirewallRules: [{E8A8E399-02B5-42FA-B940-81B1FFB53DFA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{C31D299F-87D1-4826-BB3A-1D3F8A18C30B}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{16BBBF8B-0302-4AC6-A77B-4BBCA82B8C56}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7C855F54-ED5E-4109-88AA-B00A0066FA84}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{E9164302-0C9B-4CE6-95F8-F089841C1766}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{5152A0DB-3524-4A5D-ADF3-3CE6DC2C65C0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7C6E3A30-E831-4DCA-9358-7C91D1FC8D08}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BADD5B9B-1177-407B-BFEA-CFF0410DA443}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{28D556A3-57AF-4C88-B572-7DD8F7C3B27D}] => (Allow) C:\Users\hfmgo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{FF863227-8503-44D9-AA6D-7EEC5AB1A538}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{088A40CD-5EB0-486C-94EC-97BFED23DFBA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5B9715C5-46C5-4197-ACD4-D44F0BB9C8B5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{13E48596-D7A0-43F2-ABB5-E396F815D746}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3650CC8B-6C06-4E6C-8E15-5A131C749250}] => (Allow) C:\Users\hfmgo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{991E4E69-3B37-42D8-9446-906AE011B7F8}] => (Allow) C:\Users\hfmgo\AppData\Roaming\Zoom\bin\airhost.exe => Geen bestand FirewallRules: [{118A3D68-E096-4A3E-8803-4BF4C47CA529}] => (Allow) C:\Users\hfmgo\AppData\Roaming\Zoom\bin\airhost.exe => Geen bestand FirewallRules: [{F20FAD05-879F-448B-8F0E-28C8834D0F84}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E8FE47E8-CEA4-4537-91A7-70604CC1EB52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9A47F4F1-B17B-41E7-BB01-4DA39FB65C05}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0235EEC6-4F9A-4BD1-93EF-B206382C9F46}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1DCAFF57-1090-4376-9A8F-70847C722C7D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3CC0CB69-24E1-43EB-8277-A35E10575CC8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{920D51BE-C5F1-4B95-9E4B-04F453110B12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8B36C053-B5E4-4C54-A02E-8BE482DC0220}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.158.820.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1158882C-C722-481E-8729-FAA3E3294874}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8ED96C0B-EC78-40E9-892C-02E6243AB9AE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{124F6A51-0959-41EF-819A-8C40CD18761F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4FDEF4C0-C66D-43F7-96C0-5BBC0DB841A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{60DC0D2C-1E26-4423-8328-D2A6C2026D7C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) ==================== Herstelpunten ========================= 24-04-2021 08:32:00 Gepland controlepunt 04-05-2021 08:42:28 Gepland controlepunt 12-05-2021 07:47:08 Gepland controlepunt 14-05-2021 16:55:02 Installatieprogramma voor Windows-modules ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (05/15/2021 08:54:35 AM) (Source: SecurityCenter) (EventID: 19) (User: ) Description: De Windows Beveiligingscentrum-service kan geen exemplaren van AntiVirusProduct uit de datastore laden. Error: (05/14/2021 09:39:50 PM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Kan object of eigenschap niet vinden Error: (05/14/2021 09:39:50 PM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Kan object of eigenschap niet vinden Error: (05/14/2021 09:38:13 PM) (Source: SecurityCenter) (EventID: 19) (User: ) Description: De Windows Beveiligingscentrum-service kan geen exemplaren van AntiVirusProduct uit de datastore laden. Error: (05/14/2021 09:33:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: wuauclt.exe, versie: 10.0.19041.906, tijdstempel: 0x01b4b287 Naam van module met fout: wuuhosdeployment.dll_unloaded, versie: 10.0.19041.867, tijdstempel: 0x14e58421 Uitzonderingscode: 0xc0000005 Foutmarge: 0x000000000001a3f3 Id van proces met fout: 0x2e28 Starttijd van toepassing met fout: 0x01d748d146ab3c8c Pad naar toepassing met fout: C:\WINDOWS\system32\wuauclt.exe Pad naar module met fout: wuuhosdeployment.dll Rapport-id: 9afcfc75-5add-485b-8fb6-4d41dccd4b9a Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (05/14/2021 01:39:32 PM) (Source: SecurityCenter) (EventID: 19) (User: ) Description: De Windows Beveiligingscentrum-service kan geen exemplaren van AntiVirusProduct uit de datastore laden. Error: (05/14/2021 08:35:44 AM) (Source: SecurityCenter) (EventID: 19) (User: ) Description: De Windows Beveiligingscentrum-service kan geen exemplaren van AntiVirusProduct uit de datastore laden. Error: (05/13/2021 01:34:37 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma Solitaire.exe, versie 0.0.0.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 22a0 Starttijd: 01d747ebeaf1ca5f Eindtijd: 4294967295 Toepassingspad: C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5060.0_x64__8wekyb3d8bbwe\Solitaire.exe Rapport-id: 4a60d8c4-36a1-433b-a3ae-70751d9f4e7f Volledige pakketnaam met fout: Microsoft.MicrosoftSolitaireCollection_4.9.5060.0_x64__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: App Type vastlopen: Quiesce Systeemfouten: ============= Error: (05/14/2021 01:38:05 PM) (Source: volmgr) (EventID: 46) (User: ) Description: Crashdumpinitialisatie is mislukt! Error: (05/14/2021 01:38:08 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 13:32:25 op ‎14-‎5-‎2021 is onverwacht gebeurd. Error: (05/14/2021 08:35:02 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 15:21:02 op ‎13-‎5-‎2021 is onverwacht gebeurd. Error: (05/13/2021 09:19:35 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 09:17:37 op ‎13-‎5-‎2021 is onverwacht gebeurd. Error: (05/11/2021 03:30:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VVKKMSS) Description: De server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (05/06/2021 09:07:54 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 09:00:58 op ‎6-‎5-‎2021 is onverwacht gebeurd. Error: (05/04/2021 09:11:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VVKKMSS) Description: De server {F9717507-6651-4EDB-BFF7-AE615179BCCF} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (04/30/2021 06:39:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VVKKMSS) Description: De server {F9717507-6651-4EDB-BFF7-AE615179BCCF} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. CodeIntegrity: =============== Date: 2021-05-17 08:53:10 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bitdefender Antivirus Free\bdamsi\265245295035819513\antimalware_provider64.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: Insyde Corp. V2.17 02/06/2013 Moederbord: Acer VA70_HC Processor: Intel(R) Core(TM) i3-2348M CPU @ 2.30GHz Percentage geheugen in gebruik: 87% Totaal fysiek RAM-geheugen: 3912.27 MB Beschikbaar fysiek RAM-geheugen: 471.09 MB Totaal Virtueel geheugen: 7422.39 MB Beschikbaar Virtueel geheugen: 1324.61 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:465.13 GB) (Free:355.87 GB) NTFS \\?\Volume{7a30f85d-80c5-4027-b53e-7eab7611f7a6}\ () (Fixed) (Total:0.52 GB) (Free:0.05 GB) NTFS \\?\Volume{855fa4a5-592d-43fa-b0bc-1c026302c2c8}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Einde van Addition.txt =======================