Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 28-08-2021 Gestart door lodew (01-09-2021 11:23:19) Gestart vanaf D:\Mijn Data\Bureaublad Windows 10 Home Versie 21H1 19043.1165 (X64) (2020-06-17 14:42:40) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) Administrator (S-1-5-21-2367610798-4097354111-2988090014-500 - Administrator - Disabled) Bizy (S-1-5-21-2367610798-4097354111-2988090014-1002 - Limited - Enabled) DefaultAccount (S-1-5-21-2367610798-4097354111-2988090014-503 - Limited - Disabled) Gast (S-1-5-21-2367610798-4097354111-2988090014-501 - Limited - Disabled) lodew (S-1-5-21-2367610798-4097354111-2988090014-1001 - Administrator - Enabled) => C:\Users\lodew WDAGUtilityAccount (S-1-5-21-2367610798-4097354111-2988090014-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B} FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Advanced IP Scanner 2.5 (HKLM-x32\...\{318C52E1-1446-4D50-9365-A2F05C437226}) (Version: 2.5.3850 - Famatech) Ant Movie Catalog (HKLM-x32\...\Ant Movie Catalog_is1) (Version: 4.2.2.2 - Ant Software) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Avanquest Message (HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\{20573C69-4A68-4BEF-A23D-365CB66924CE}) (Version: 2.14.0 - Avanquest Software) Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.37 - Avanquest Software) Belgium e-ID middleware 5.0.17 (build 5498) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A75498}) (Version: 5.0.5498 - Belgian Government) Belgium e-ID viewer 4.4.14 (build 4135) (HKLM-x32\...\{F3DC7F06-92FF-4C98-87F5-72C0B7864135}) (Version: 4.4.4135 - Belgian Government) calibre (HKLM-x32\...\{27BAA018-517E-4EC1-9F1D-C72D0D52BEBC}) (Version: 5.25.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform) ComicRack v0.9.178 (HKLM\...\ComicRack) (Version: v0.9.178 - cYo Soft) Connective Signing Plugins (HKLM-x32\...\{4E3E9C50-EC82-44A8-A830-18D6916CB81B}) (Version: 2.0.8 - Connective) Cryptographic Provider for Windows OS (HKLM-x32\...\{DAB78977-B639-47AF-87BC-F3FF3DC62998}) (Version: 1.3.1 - Intel Corporation) CrystalDiskInfo 8.9.0a (HKLM\...\CrystalDiskInfo_is1) (Version: 8.9.0a - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dynamic Application Loader Host Interface Service (HKLM\...\{3252E69D-9075-40FD-A9EF-F6D96091B5BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) EaseUS Partition Master (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS) Easy Picture2Icon 3.0 (HKLM-x32\...\Easy Picture2Icon) (Version: 3.0 - Picture2Icon.com) eID Web Browser Middleware (HKLM\...\eID Web Browser Middleware) (Version: 1.3.1 - e-Contract.be BVBA) ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 14.2.24.0 - ESET, spol. s r.o.) FFmpeg (Windows) for Audacity versie 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - ) FormatFactory 5.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.7.5.0 - Free Time) Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.0.1.49938 - Foxit Software Inc.) Gadwin PrintScreenPro (64-Bit) (HKLM\...\{41A4E9B4-C041-42A3-8797-C49174201247}) (Version: 5.5.1.0 - Gadwin Systems) GemistDownloader (HKLM-x32\...\GemistDownloader) (Version: 2.9.0.17 - BeukemaMedia (HelpdeskWeb.nl)) GIMP 2.10.14 (HKLM\...\GIMP-2_is1) (Version: 2.10.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 93.0.4577.63 - Google LLC) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.) HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.18.0 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ENVY 5530 series Basissoftware van het apparaat (HKLM\...\{24F88BAE-96B6-4D18-BDCC-E1746EBD30C6}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) HP ENVY 5530 series Help (HKLM-x32\...\{35A1FA23-AD44-4E6E-9CFD-AAC967677B13}) (Version: 30.0.0 - Hewlett Packard) HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Inpaint 8.1 (HKLM\...\{5808866F-D115-46B2-8123-BB6801968101}_is1) (Version: - Teorex) inPixio Photo (HKLM-x32\...\{DA108E47-377C-4C49-ABEC-42AADEE1C17B}) (Version: 10.06.0 - inPixio) InPixio Photo Clip 7 (HKLM-x32\...\{829CAB57-8D17-49F8-A5B0-302B501FCEC2}) (Version: 7.10.0 - InPixio) inSSIDer (HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\inSSIDer) (Version: 1.2.0 - MetaGeek, LLC) inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC) InstaCards (HKLM-x32\...\{58259C24-7B5E-4977-93B0-E9EEA1B884CE}) (Version: 1.7.0 - InPixio) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation) Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation) Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation) Java 8 Update 301 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180301F0}) (Version: 8.0.3010.9 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden LastPass (HKLM-x32\...\{F913D182-F4F8-480D-988C-3A024178D0A5}) (Version: 4.79.0.2222 - LogMeIn) LibreOffice 7.0 Help Pack (Dutch) (HKLM\...\{84533219-A9CC-44C7-9A52-670207E0EAFF}) (Version: 7.0.6.2 - The Document Foundation) LibreOffice 7.0.6.2 (HKLM\...\{9F9A9C01-5A65-4C2E-A243-FC88C81BC35F}) (Version: 7.0.6.2 - The Document Foundation) LOGO!Soft Comfort V6.0 (HKLM-x32\...\LOGO!Soft Comfort V6.0) (Version: 6.0.0.0 - Siemens AG) Malwarebytes version 4.4.4.126 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.4.126 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.84 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 92.0.902.84 - Microsoft Corporation) Microsoft Office Visio 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{CE144BF4-4950-4CDB-A5F7-CCE1888F49CB}) (Version: - Microsoft) Microsoft Office Visio Professional 2007 (HKLM-x32\...\VISPRO) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft SharePoint Designer 2010 (HKLM-x32\...\Office14.SharePointDesigner) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MKVToolNix 60.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 60.0.0 - Moritz Bunkus) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox (x64 nl) (HKLM\...\Mozilla Firefox 91.0.2 (x64 nl)) (Version: 91.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 73.0.1 - Mozilla) Mozilla Thunderbird 78.13.0 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 78.13.0 (x86 nl)) (Version: 78.13.0 - Mozilla) NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - ) Npcap 0.995 (HKLM-x32\...\NpcapInst) (Version: 0.995 - Nmap Project) NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.19.0124 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0124 - NVIDIA Corporation) OpenOffice 4.1.7 (HKLM-x32\...\{6220C298-75B5-4BE9-A18D-70AAECFE6E4E}) (Version: 4.17.9800 - Apache Software Foundation) OpenOffice 4.1.7 Language Pack (Dutch) (HKLM-x32\...\{AC4C36B9-B6C3-41B2-A341-9B110CDDCB61}) (Version: 4.17.9800 - Apache Software Foundation) paint.net (HKLM\...\{1A59F8A6-6AB4-4522-9340-F420B9155A31}) (Version: 4.2.16 - dotPDN LLC) PDFsam Basic (HKLM\...\{FDF8C6E1-FB2E-4B05-A9BD-D8EF067DF4A1}) (Version: 4.2.5.0 - Sober Lemur S.a.s. di Vacondio Andrea) Photo Eraser (HKLM-x32\...\Photo Eraser 10.4) (Version: 10.4 - inPixio) Photo Story 3 voor Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.15 - Microsoft Corporation) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.239 - Google, Inc.) Productverbeteringsonderzoek voor HP ENVY 5530 series (HKLM\...\{F90EBFDE-7581-4062-AE57-29F2105C5FA2}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) progeCAD 2009 Smart! ENG (HKLM-x32\...\progeCAD 2009 Smart! ENG) (Version: - ) Radmin Viewer 3.5.2 (HKLM-x32\...\{9F9073EA-5DCE-4B23-8A0C-C7D2C89AEADC}) (Version: 3.52.1.0000 - Famatech) Rainbow Folders (HKLM-x32\...\{2AEA17BA-FAB3-49D2-BB85-0669D14DC9BC}_is1) (Version: 2.05 - Piotr Chodzinski) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.2.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.0 - VS Revo Group, Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{8B883A57-E4BC-4745-8E6C-68168850F9DD}) (Version: - Microsoft) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21034.7 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21034.7 - Samsung Electronics Co., Ltd.) Software voor Intel® Chipset-apparaten (HKLM-x32\...\{3d2240de-3c21-4e14-84b3-1c6cd02bfab4}) (Version: 10.1.17969.8134 - Intel(R) Corporation) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Sublight (HKLM-x32\...\{04b62368-e432-4d56-b958-e492abba5b59}) (Version: 5.0 - Sublight Labs) Sublight (HKLM-x32\...\{5CA72C1D-C5EE-4BE4-A749-CFE6210302AA}) (Version: 5.0 - Sublight Labs) Hidden Subtitle Edit 3.6.1 (HKLM\...\SubtitleEdit_is1) (Version: 3.6.1.0 - Nikse) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 9.5.36.0 - 2BrightSparks) Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: 6.2-24922 - Synology) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.16.8 - TeamViewer) TomTom MyDrive Connect 4.2.10.4148 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.10.4148 - TomTom) TrayStatus 3.1 (HKLM-x32\...\d6b74f60-2e9d-4c60-a8b7-b7d737c44ad4_is1) (Version: 3.1.0.0 - Binary Fortress Software) TreeSize Free V4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.5 - JAM Software) TVDownloader (HKLM-x32\...\TVDownloader) (Version: 1.18.5.0 - XPloRR) Unlocker (HKLM-x32\...\{5577A25D-E4FE-4BFB-A660-E0D766BC4EDD}) (Version: 1.9.2 - ajua Custom Installers) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Van Dale Groot woordenboek van de Nederlandse taal 14 (HKLM-x32\...\Van Dale Groot woordenboek van de Nederlandse taal 14) (Version: 14.0.16.222 - Van Dale Lexicografie) Viddly YouTube Downloader 5.0.322 (HKLM\...\{9217DBAB-2532-4811-98D6-450CEF0D1BA7}_is1) (Version: 5.0.322 - Viddly Inc.) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.7.0 - Azureus Software, Inc.) Webshots 5.6.2 (HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\76ab6133-57d2-5ec6-9e77-757d0cb1f6ef) (Version: 5.6.2 - Webshots) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinMerge 2.16.10.0 x64 (HKLM\...\WinMerge_is1) (Version: 2.16.10.0 - Thingamahoochie Software) Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare) Wondershare Video Converter Ultimate(Build 10.2.5.166) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.2.5.166 - Wondershare Software) Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos) Zoom (HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.) Packages: ========= 8 Zip - unpack RAR, ZIP, 7z for free -> C:\Program Files\WindowsApps\BooStudioLLC.8ZipLite_1.4.34.0_x64__b6e429xa66pga [2021-08-31] (Finebits OÜ) [MS Ad] AdBlocker Ultimate for Edge (Legacy) -> C:\Program Files\WindowsApps\SecureDownloadLtd.AdBlockerUltimate_2.31.0.0_neutral__2k66023rjqqqe [2021-04-11] (AdAvoid Ltd) Bang & Olufsen Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BangOlufsenAudioControl_1.8.203.0_x64__v10z8vjag6ke6 [2021-04-16] (HP Inc.) Bending Light PREMIUM -> C:\Program Files\WindowsApps\Microsoft.BendingLightPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) Clouds PREMIUM -> C:\Program Files\WindowsApps\Microsoft.CloudsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-14] (Microsoft Corporation) Dropbox-actie -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2021-04-16] (Dropbox Inc.) Earth from Above PREMIUM -> C:\Program Files\WindowsApps\Microsoft.EarthfromAbovePREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2020-08-30] (HP Inc.) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation) HP Command Center -> C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.9.31.0_x64__v10z8vjag6ke6 [2021-08-30] (HP Inc.) HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-22] (HP Inc.) HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.7.0.0_x64__v10z8vjag6ke6 [2021-07-08] (HP Inc.) HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-16] (HP Inc.) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_130.1.323.0_x64__v10z8vjag6ke6 [2021-08-21] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.7.583.0_x64__v10z8vjag6ke6 [2021-08-21] (HP Inc.) HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-05] (HP Inc.) Intel® Graphics besturingscentrum -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-07-22] (INTEL CORP) [Startup Task] LastPass for Windows Desktop -> C:\Program Files\WindowsApps\LastPass.LastPass_4.6.0.0_x64__sbg7naapqq8fj [2021-06-01] (LastPass) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1200.9.118.0_x64__8xx8rvfyw5nnt [2021-08-31] (Facebook Inc) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) [MS Ad] Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2020-11-26] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-04] (Microsoft Studios) [MS Ad] Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.51.42312.0_x64__8wekyb3d8bbwe [2021-08-27] (Microsoft Corporation) [Startup Task] National Geographic Antarctica PREMIUM -> C:\Program Files\WindowsApps\Microsoft.NationalGeographicAntarcticaPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-30] (Netflix, Inc.) Night Skies PREMIUM -> C:\Program Files\WindowsApps\Microsoft.NightSkiesPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-26] (Microsoft Corporation) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.) Patience -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.2.9.0_x64__kx24dqmazqk8j [2021-08-04] (Random Salad Games LLC) Pinterest -> C:\Program Files\WindowsApps\1424566A.147190DF3DE79_1.0.20.0_neutral__5byw4zywtsh80 [2021-04-16] (Pinterest Inc.) PowerPoint Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.PowerPoint_16001.13801.20860.0_x64__8wekyb3d8bbwe [2021-08-12] (Microsoft Corporation) sMedio True DVD for HP -> C:\Program Files\WindowsApps\0E3921EB.sMedioTrueDVDforHP_1.1.137.0_x64__agwrg61xdd7p4 [2021-08-06] (sMedio Inc.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0 [2021-08-25] (Spotify AB) [Startup Task] VLC -> C:\Program Files\WindowsApps\VideoLAN.VLC_3.2.1.0_x64__paz6r1rewnh0a [2021-04-16] (VideoLAN) Winding Roads PREMIUM -> C:\Program Files\WindowsApps\Microsoft.WindingRoadsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\lodew\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\lodew\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\lodew\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\lodew\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Bestand niet getekend] CustomCLSID: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\lodew\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Bestand niet getekend] ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [Bestand niet getekend] [Bestand is in gebruik] ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-08-17] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Bestand niet getekend] ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-08-17] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Bestand niet getekend] ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-21] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-27] () [Bestand niet getekend] [Bestand is in gebruik] ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Bestand niet getekend] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files\WinMerge\ShellExtensionX64.dll [2020-07-20] (hxxp://winmerge.org) [Bestand niet getekend] ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-08-17] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-21] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2021-08-16 17:08 - 2021-08-16 17:08 - 000138240 _____ () [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\1e857bd9679d99f024069985440987df\Interop.IWshRuntimeLibrary.ni.dll 2020-01-22 16:42 - 2009-10-07 16:39 - 000200704 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [Bestand niet getekend] C:\WINDOWS\system32\spool\DRIVERS\x64\3\acpdfui251.dll 2021-08-16 17:08 - 2021-08-16 17:08 - 000134656 _____ (hardcodet.net) [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\73f3081f2ca6742cfdf62c2993809cee\Hardcodet.Wpf.TaskbarNotification.ni.dll 2020-06-21 15:27 - 2020-06-21 15:27 - 000014336 _____ (HP Inc.) [Bestand niet getekend] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL 2021-08-30 10:35 - 2021-08-30 10:35 - 025653760 _____ (HP Inc.) [Bestand niet getekend] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.9.31.0_x64__v10z8vjag6ke6\HpSystemManagement.dll 2021-02-07 11:26 - 2021-02-07 11:26 - 000013312 _____ (HP Inc.) [Bestand niet getekend] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.9.31.0_x64__v10z8vjag6ke6\NativeRpcClient.dll 2021-02-07 11:26 - 2021-02-07 11:26 - 000014848 _____ (HP Inc.) [Bestand niet getekend] C:\Program Files\WindowsApps\AD2F1837.HPThermalControl_1.9.31.0_x64__v10z8vjag6ke6\Win32Process\NativeRpcClient.DLL 2021-03-07 12:09 - 2020-07-20 20:01 - 000203264 _____ (hxxp://winmerge.org) [Bestand niet getekend] C:\Program Files\WinMerge\ShellExtensionX64.dll 2020-09-25 16:11 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Bestand niet getekend] C:\Program Files\7-Zip\7-zip.dll 2019-03-27 16:29 - 2019-03-27 16:29 - 000126976 _____ (Intel Corporation) [Bestand niet getekend] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll 2021-07-22 10:59 - 2021-07-22 10:59 - 042803200 _____ (Intel Corporation) [Bestand niet getekend] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.dll 2021-08-16 17:08 - 2021-08-16 17:08 - 001591808 _____ (Mark Heath) [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\2aa6dcc1c6043048f87b662bd6eac8c9\NAudio.ni.dll 2021-08-16 17:08 - 2021-08-16 17:08 - 003127808 _____ (Newtonsoft) [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\ddefbb5624f46295e0d0510603b64be2\Newtonsoft.Json.ni.dll 2021-08-16 17:08 - 2021-08-16 17:08 - 000793088 _____ (The Apache Software Foundation) [Bestand niet getekend] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\b8de1ef0e4aafb29b26a74fc02c0175c\log4net.ni.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE SearchScopes: HKLM -> {64D1F6F1-11F0-4988-9BC7-33BC8AE3FD95} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 -> {64D1F6F1-11F0-4988-9BC7-33BC8AE3FD95} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-2367610798-4097354111-2988090014-1001 -> {64D1F6F1-11F0-4988-9BC7-33BC8AE3FD95} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2021-08-23] (LogMeIn, Inc. -> LastPass) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2020-01-28] (HP Inc. -> HP Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\ssv.dll [2021-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2021-08-23] (LogMeIn, Inc. -> LastPass) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2020-01-28] (HP Inc. -> HP Inc.) Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2021-08-23] (LogMeIn, Inc. -> LastPass) Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2021-08-23] (LogMeIn, Inc. -> LastPass) ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Calibre2\ HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lodew\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 195.130.131.5 - 195.130.130.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is ingeschakeld. Network Binding: ============= Ethernet: Npcap Packet Driver (NPF) -> INSECURE_NPF (enabled) Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Bluetooth-netwerkverbinding: Npcap Packet Driver (NPF) -> INSECURE_NPF (enabled) Bluetooth-netwerkverbinding: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Wi-Fi: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) Wi-Fi: Npcap Packet Driver (NPF) -> INSECURE_NPF (enabled) ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\StartupApproved\Run: => "Avanquest Message" HKU\S-1-5-21-2367610798-4097354111-2988090014-1001\...\StartupApproved\Run: => "HP ENVY 5530 series (NET)" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{DD44FBF1-DB0F-4E06-87F1-99CDD66B2591}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{54BC358E-440C-447D-A8C7-B214A88C960A}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom) FirewallRules: [{7E145A02-9183-4D39-8E8D-C468CBD74B51}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{A1875207-9722-4FC8-BA82-A379742BC63F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{FAF918D6-E278-44D8-A02F-C9650FBF6516}] => (Allow) LPort=1900 FirewallRules: [{18C19CC5-55FC-44F9-B4B3-4C6F93627FD6}] => (Allow) LPort=2869 FirewallRules: [{2FF54AE0-6E4B-48A1-8965-43086B0BDD82}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{655F3D53-F8F4-402F-BC61-0DE5C1D43112}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [{E5E895D5-5357-45A8-B30A-FE4454F6F715}] => (Allow) LPort=5357 FirewallRules: [{FBA78A44-1F4A-49F5-B59B-3AF790AEFD6A}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [{B21053D0-BEE7-43EB-925F-BAB31A458ED9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F1053A72-23ED-4D91-85E5-F986440C2DC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{808B3C74-B27C-442E-88E9-F136CCA72374}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1EEF5CC4-CA31-476A-BC84-BB442615FB2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{05E60F42-8E39-427D-8268-32A74651A196}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F253F1DB-7748-4A29-9403-A2F1CF7251E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{59C4CC13-D0DB-445F-9A9D-D981EE6A5307}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{420C9A87-45A4-407A-AA06-4659D87ED748}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0FDDB7CB-34A8-4BA1-AD18-95DCA17AC3DC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{6C9F05FA-149C-4756-9200-A9249D2E9857}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{93EC146E-F75B-466C-AA2B-B9B81C658030}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{595A5BA2-CBE5-43F6-8148-5EE135A95D7E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{839D51AE-A11F-40D0-AC0F-50E8D2CCD134}] => (Allow) C:\Users\lodew\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{3E8E3220-D7BD-4EBB-B1B1-2AEBBD5E0E5C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{22C9B00A-C2B6-439A-92D5-80E8506A473C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{61378AF2-5242-4770-A8F0-B2179837E0A3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{8B333988-9C46-4002-BDF9-2FF14171BD93}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{A7D9713B-F880-4D1A-8BF7-90AB3195048E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{F6EE4AA4-2A38-406A-BE39-CA4BE4F07AC6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{40DFF19E-C0BA-4A15-9CAD-5C0F526792DB}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{DC26AE01-4B44-4CA4-8097-DD0A485FF69A}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{976EC1A5-EDDE-4557-B1EA-8D4D9485D31A}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{9D6BA33C-1C92-45F6-B8B7-EEF7A05A0F3E}] => (Allow) C:\Program Files\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{90419D9A-9A96-457E-BF2E-BE5192BDF94B}] => (Allow) C:\Program Files\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{CC15FECB-E13A-4B6D-BDE8-F73E6316D277}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9DF3D1C7-1D27-42AE-9D43-6922377FD1D0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3E831E91-C906-4E93-92F2-F0EF27D6198D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{89C2B3A0-AE94-4169-87D9-5B4ABF5E1848}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F6F7AB3A-30E3-4176-A16F-0573459691D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{51E9B1AD-EFA1-465A-8632-B5B3630E50F2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{62456A67-6180-4A85-BE5C-F985E9695EB2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4FC00680-228F-48AF-A76E-D6BB24A711B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{130EF4D9-6ADA-4832-B409-F7DA91CE51F6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{05E14473-20AE-457C-83BD-D7F544FA6C72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{07104EFE-02D2-4021-ABB7-6D213C2983B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{07687FF1-D4E4-4A00-936C-B44048EF1320}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6711EC23-FBCB-4F66-A9CC-7FCD8DDEF497}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\92.0.902.84\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6301FEEA-3263-4A6F-A5B2-950A6435E6D3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 14-08-2021 09:52:25 Installatieprogramma voor Windows-modules 22-08-2021 16:47:31 Gepland controlepunt 31-08-2021 17:16:31 Gepland controlepunt ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (09/01/2021 11:10:34 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY) Description: Windows kan het DLL-bestand voor uitbreidbare items "C:\WINDOWS\system32\sysmain.dll" niet laden (Win32-foutcode 126). Error: (09/01/2021 11:08:07 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine QueryFullProcessImageNameW. hr = 0x80070006, De ingang is ongeldig. . Bewerking: Asynchrone bewerking uitvoeren Context: Huidige status: DoSnapshotSet Error: (09/01/2021 11:07:48 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het uitvoeren van een query voor de IVssWriterCallback-interface. hr = 0x80070005, Toegang geweigerd. . Dit wordt vaak veroorzaakt door onjuiste beveiligingsinstellingen in het writer- of requestorproces. Bewerking: Schrijvergegevens verzamelen Context: Klasse-id van schrijver: {e8132975-6f93-4464-a53e-1050253ae220} Naam van schrijver: System Writer Instantie-id van schrijver: {b1787510-b7d2-4838-a813-d9141bc3f021} Error: (08/31/2021 07:49:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: HPCommRecovery.exe, versie: 2.0.18.0, tijdstempel: 0x5ef1b3af Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x00007ffb28678b97 Id van proces met fout: 0x1410 Starttijd van toepassing met fout: 0x01d79e7c8481d6cd Pad naar toepassing met fout: C:\Program Files\HPCommRecovery\HPCommRecovery.exe Pad naar module met fout: unknown Rapport-id: 17bd3845-342d-4462-833a-9ff53808b2b6 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (08/31/2021 07:49:46 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: HPCommRecovery.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.NullReferenceException Error: (08/31/2021 05:25:34 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (08/31/2021 05:25:34 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (08/31/2021 05:21:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: HPCommRecovery.exe, versie: 2.0.18.0, tijdstempel: 0x5ef1b3af Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x00007ffe7b518b97 Id van proces met fout: 0xbd0 Starttijd van toepassing met fout: 0x01d79e63da4e0b3d Pad naar toepassing met fout: C:\Program Files\HPCommRecovery\HPCommRecovery.exe Pad naar module met fout: unknown Rapport-id: 390abe57-f353-4ee9-8bae-69b2423f3b4e Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Systeemfouten: ============= Error: (09/01/2021 11:10:36 AM) (Source: Tcpip) (EventID: 4207) (User: ) Description: De IPv4 TCP/IP-interface met index 10 kan niet worden gekoppeld aan de provider. Error: (09/01/2021 11:10:36 AM) (Source: Tcpip) (EventID: 4207) (User: ) Description: De IPv6 TCP/IP-interface met index 10 kan niet worden gekoppeld aan de provider. Error: (09/01/2021 11:09:27 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-AENQ9G9L) Description: De server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/01/2021 09:21:57 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: ) Description: Minipoort Microsoft Wi-Fi Direct Virtual Adapter #2, {2f4bbdf3-7dff-4c57-826d-616528cc14e1}: gebeurtenis 74 Error: (08/31/2021 07:49:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De HP Comm Recovery-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (08/31/2021 05:26:36 PM) (Source: Tcpip) (EventID: 4207) (User: ) Description: De IPv6 TCP/IP-interface met index 10 kan niet worden gekoppeld aan de provider. Error: (08/31/2021 05:26:36 PM) (Source: Tcpip) (EventID: 4207) (User: ) Description: De IPv4 TCP/IP-interface met index 10 kan niet worden gekoppeld aan de provider. Error: (08/31/2021 05:21:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De HP Comm Recovery-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. CodeIntegrity: =============== Date: 2021-09-01 11:12:13 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-09-01 11:12:13 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Geheugen info =========================== BIOS: Insyde F.11 08/06/2020 Moederbord: HP 85E5 Processor: Intel(R) Core(TM) i7-8565U CPU @ 1.80GHz Percentage geheugen in gebruik: 43% Totaal fysiek RAM-geheugen: 16205.43 MB Beschikbaar fysiek RAM-geheugen: 9183.36 MB Totaal Virtueel geheugen: 18637.43 MB Beschikbaar Virtueel geheugen: 10145.72 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:237.46 GB) (Free:133 GB) (Protected) NTFS Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:726.49 GB) (Protected) NTFS Drive z: (Externe) (Fixed) (Total:1862.98 GB) (Free:963.96 GB) NTFS \\?\Volume{e353f7a2-f812-4b32-9329-818975b73830}\ () (Fixed) (Total:0.73 GB) (Free:0.08 GB) NTFS \\?\Volume{2737b0fc-1658-4c77-917c-91a8cb1d2f31}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: A50E1C7D) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: BD7E2341) Partition: GPT. ========================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Einde van Addition.txt =======================