Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 20-10-2021 Gestart door wilfr (21-10-2021 11:08:54) Gestart vanaf C:\Users\wilfr\Downloads Microsoft Windows 10 Home Versie 20H2 19042.1288 (X64) (2021-01-13 21:20:50) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) Administrator (S-1-5-21-1228691392-3513963491-2876946990-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1228691392-3513963491-2876946990-503 - Limited - Disabled) Gast (S-1-5-21-1228691392-3513963491-2876946990-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1228691392-3513963491-2876946990-504 - Limited - Disabled) wilfr (S-1-5-21-1228691392-3513963491-2876946990-1003 - Administrator - Enabled) => C:\Users\wilfr ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Total AV (Enabled - Up to date) {B185458D-38B3-A010-10F7-3D378DAA6032} AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8} FW: Kaspersky Internet Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58} FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden 7-Zip 19.02 alpha (x64) (HKLM\...\7-Zip) (Version: 19.02 alpha - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.0.468 - Adobe Inc.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.) Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 15.0.1 - IObit) Any Video Converter Ultimate 5.8.0 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com) Belgium e-ID middleware 5.0.17 (build 5498) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A75498}) (Version: 5.0.5498 - Belgian Government) Connective Signing Plugins (HKLM-x32\...\{4E3E9C50-EC82-44A8-A830-18D6916CB81B}) (Version: 2.0.8 - Connective) Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.3.0.23190 - Sony Corporation) CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6602 - CyberLink Corp.) Hidden CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4118.0 - CyberLink Corp.) Hidden Data Lifeguard Diagnostic version 1.37 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) Duplicate Cleaner Pro 4.1.4 (HKLM-x32\...\Duplicate Cleaner Pro) (Version: 4.1.4 - DigitalVolcano Software Ltd) DVDFab (x64) 10.0.8.7 (14/03/2018) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.8.7 - Fengtao Software Inc.) Facebook Gameroom 1.26.7732.32363 (HKLM-x32\...\{6A6FE9AC-F3C9-41C6-8A6B-F377E8C4E9A5}) (Version: 1.26.7732.32363 - Facebook) FormatFactory 5.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.7.5.0 - Free Time) Freemake Video Converter versie 4.1.13 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.13 - Mixbyte Inc.) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden HDCleaner (HKLM\...\HDCleaner) (Version: 1.293 - Kurt Zimmermann) Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1159 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 3.1.0.1572 - IObit) IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.6.0.4 - IObit) Kaspersky Internet Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) K-Lite Codec Pack 13.6.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) Luminar 3 (HKLM\...\Luminar 3) (Version: 3.2.0.5246 - Skylum) Malwarebytes Anti-Malware versie 1.80.2.1012 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.80.2.1012 - Malwarebytes Corporation) MediaHuman YouTube Downloader 3.9.9.56 (HKLM-x32\...\MediaHuman YouTube Downloader_is1) (Version: 3.9.9.56 - MediaHuman) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.50 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 3.1.20 (x64) (HKLM-x32\...\{7aba3ea9-cc4d-448f-8585-b260642964af}) (Version: 3.1.20.30521 - Microsoft Corporation) Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft) Movavi Photo Editor 6 (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\Movavi Photo Editor 6) (Version: 6.3.0 - Movavi) Mozilla Firefox (x64 nl) (HKLM\...\Mozilla Firefox 93.0 (x64 nl)) (Version: 93.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0 - Mozilla) NetflixGo - NetflixGo for Desktop (HKLM-x32\...\NetflixGo) (Version: 16.2010.1rhnx - NetflixGo) NWZ-E450 WALKMAN Guide (HKLM-x32\...\{0A6C2811-AD29-473F-8086-F0B401276DEC}) (Version: 2.1.0.17210 - Sony Corporation) PrivaZer (HKLM-x32\...\PrivaZer) (Version: 4.0.23.0 - Goversoft LLC) PS (HKLM\...\{E94B7DF7-1D44-4A8A-A79F-8F27BBE71245}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.876.867.092115 - REALTEK Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0277 - REALTEK Semiconductor Corp.) Recovery Toolbox for Outlook Password 1.5 (HKLM-x32\...\Recovery Toolbox for Outlook Password_is1) (Version: - File Master LLC) Similarity 64-bit 2.4.2 (HKLM\...\{F77E1C22-AEBC-47FC-9816-4B87BBEA0573}) (Version: 2.4.2395 - GAR Software) Smart Defrag 6 (HKLM-x32\...\Smart Defrag_is1) (Version: 6.7.5 - IObit) TomTom MyDrive Connect 4.2.11.4200 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) WD Desktop App 2.1.0.299 (HKLM-x32\...\{f79d30ca-d71c-4aaa-b9b0-b26833cdac51}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden WD Desktop App 2.1.0.299 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden WhatsApp (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\WhatsApp) (Version: 2.2039.9 - WhatsApp) Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA) YouTube Song Downloader 2020 (HKLM-x32\...\AbAppId-55_is1) (Version: 20.17 - Abelssoft) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-11] (Adobe Systems Incorporated) Adobe Photoshop Express: afbeeldingseditor, aanpassingen, filters, effecten, randen -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.5.377.0_x64__ynb6jyjzte8ga [2021-10-14] (Adobe Inc.) Any DVD -> C:\Program Files\WindowsApps\15191PeakPlayer.50533F9B98293_3.2.6.0_x64__y5c4dfz5b21fm [2021-08-15] (Any DVD & Office App) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.10.20.0_x86__kgqvnymyfvs32 [2021-10-14] (king.com) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.204.300.0_x86__kgqvnymyfvs32 [2021-10-16] (king.com) Cool File Viewer -> C:\Program Files\WindowsApps\20815shootingapp.AirFileViewer_1.4.14.0_x86__xcg28tkrsnqww [2021-10-07] (Cool File Viewer) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.10.188.0_x64__rz1tebttyb220 [2021-10-14] (Dolby Laboratories) Duo video converter -> C:\Program Files\WindowsApps\IOForth.VideoConverterMate_1.0.7.0_x64__pxs7cjhtcq1xt [2021-07-01] (IOForth) Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-09-30] (Facebook Inc) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-09-30] (Microsoft Corporation) GPXTracker -> C:\Program Files\WindowsApps\25100LocPELLETAN.GPXTracker_0.9.2.0_x64__cava6kcq6fv62 [2021-09-23] (Loïc PELLETAN) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-24] (HP Inc.) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1250.4.118.0_x64__8xx8rvfyw5nnt [2021-10-07] (Facebook Inc) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-09] (Microsoft Studios) [MS Ad] Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-04-12] (Adobe Systems Incorporated) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{F09690BD-582D-4439-B6ED-5C2545D2F424}\InprocServer32 -> C:\WINDOWS\system32\kernel32.dll (Microsoft Windows -> Microsoft Corporation) SSODL: WDFSMountNotificator-wdfsconnect2017 - {CE51E5E2-EB2A-4226-846C-325A4D4C8943} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Bestand niet getekend] SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {CE51E5E2-EB2A-4226-846C-325A4D4C8943} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellServiceObjects: Virtual Storage Mount Notification -> {CE51E5E2-EB2A-4226-846C-325A4D4C8943} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellServiceObjects-x32: Virtual Storage Mount Notification -> {CE51E5E2-EB2A-4226-846C-325A4D4C8943} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2014-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Bestand niet getekend] ContextMenuHandlers1: [HDCleaner] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\PROGRAM FILES\HDCLEANER\HDCleanerContextMenu.dll [2019-12-15] (Kurt Zimmermann -> Kurt Zimmermann) [Bestand niet getekend] ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-22] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Geen bestand ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit) ContextMenuHandlers1: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [HDCleanerContextMenuExtension] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\PROGRAM FILES\HDCLEANER\HDCleanerContextMenu.dll [2019-12-15] (Kurt Zimmermann -> Kurt Zimmermann) [Bestand niet getekend] ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-22] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2015-10-22] (Malwarebytes Corporation -> Malwarebytes Corporation) ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Bestand niet getekend] ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-22] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers4: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ContextMenuHandlers6: [HDCleanerContextMenuExtension] -> {B2AF3AAE-3AB0-4691-9119-2E6C13D38EFD} => C:\PROGRAM FILES\HDCLEANER\HDCleanerContextMenu.dll [2019-12-15] (Kurt Zimmermann -> Kurt Zimmermann) [Bestand niet getekend] ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-04-22] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2015-10-22] (Malwarebytes Corporation -> Malwarebytes Corporation) ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2018-10-15 12:01 - 2018-10-15 12:01 - 000013312 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\libEGL.DLL 2018-10-15 12:01 - 2018-10-15 12:01 - 001950720 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\libGLESv2.dll 2014-09-11 17:14 - 2014-09-11 17:14 - 000218112 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll 2020-11-10 17:00 - 2020-11-10 17:00 - 000132096 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\quazip.dll 2020-11-10 17:00 - 2020-11-10 17:00 - 000074240 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\zlib1.dll 2020-08-04 11:46 - 2020-08-04 11:46 - 000341504 _____ (Free Time) [Bestand niet getekend] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) [Bestand niet getekend] c:\windows\system32\hpzinw12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) [Bestand niet getekend] c:\windows\system32\hpzipm12.dll 2020-02-06 21:33 - 2019-09-05 21:00 - 000076800 _____ (Igor Pavlov) [Bestand niet getekend] C:\Program Files\7-Zip\7-zip.dll 2021-10-17 06:10 - 2021-10-12 12:33 - 000332288 _____ (IObit) [Bestand niet getekend] C:\Program Files (x86)\IObit\Advanced SystemCare\OFCommon.dll 2020-05-11 08:55 - 2019-12-15 21:56 - 000105048 _____ (Kurt Zimmermann -> Kurt Zimmermann) [Bestand niet getekend] C:\PROGRAM FILES\HDCLEANER\HDCleanerContextMenu.dll 2021-01-13 23:12 - 2021-01-13 23:12 - 001093120 _____ (Microsoft Corporation) [Bestand niet getekend] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL 2020-10-29 15:06 - 2020-10-29 15:06 - 001943904 _____ (NetflixGo -> ) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\ffmpeg.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 000083808 _____ (NetflixGo -> ) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\libegl.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 001743712 _____ (NetflixGo -> ) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\libglesv2.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 003384160 _____ (NetflixGo -> ) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\node.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 003670880 _____ (NetflixGo -> Microsoft Corporation) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\D3DCompiler_47.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 060787040 _____ (NetflixGo -> The NWJS Community) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\nw.dll 2020-10-29 15:06 - 2020-10-29 15:06 - 000126816 _____ (NetflixGo -> The NWJS Community) [Bestand niet getekend] C:\Users\wilfr\AppData\Roaming\NetflixGo\nw_elf.dll 2018-03-27 22:33 - 2018-03-27 22:33 - 001370624 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll 2018-03-27 22:33 - 2018-03-27 22:33 - 000337920 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll 2018-10-15 12:11 - 2018-10-15 12:11 - 000038912 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000026112 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000033280 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000027648 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 000243712 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000021504 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000020992 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000327680 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000019968 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000400896 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 001096704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll 2020-11-10 17:05 - 2020-11-10 17:05 - 004785152 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 004970496 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 000961024 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000264704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll 2018-10-15 12:09 - 2018-10-15 12:09 - 004468224 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll 2018-10-15 12:02 - 2018-10-15 12:02 - 000150016 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Xml.dll 2020-11-10 17:03 - 2020-11-10 17:03 - 000143360 _____ (TomTom) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.starwebsearch.com/index.php?from=3 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003 -> {2877A654-1C9F-4cb5-8438-16022B2FDD9C} URL = hxxp//www.starwebsearch.com/results.php?q={searchTerms} SearchScopes: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003 -> {A1CFDA4C-5B5D-43D7-977E-D06FB9977CEF} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRLNC1&src=IE11TR&pc=LCTE BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Geen bestand (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2015-07-10 13:04 - 2021-10-21 10:02 - 000004037 ____R C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 activation.easeus.com 127.0.0.1 track.easeus.com 127.0.0.1 66.39.112.91 127.0.0.1 216.92.151.227 127.0.0.1 216.92.61.7 127.0.0.1 www.easeus.com 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 2018-12-17 10:25 - 2019-06-07 18:37 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 192.168.137.1 DESKTOP-0GEVP4A.mshome.net # 2024 6 3 5 16 37 42 447 ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\ HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\Control Panel\Desktop\\Wallpaper -> I:\foto's kalender\P1020541.JPG DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKLM\...\StartupApproved\Run: => "iSkysoft Helper Compact.exe" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "YouTube Mini" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "MP3Studio YouTube Downloader" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "Opera Browser Assistant" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{C27564A2-82F1-4C66-AF94-25E4F2DDABE3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA) FirewallRules: [{102298CF-EB33-4D11-871C-628FF63C1A40}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA) FirewallRules: [{ADD1FC44-7EBA-4E97-8D24-8D2F26F42D39}] => (Allow) C:\Users\wilfr\Downloads\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred) FirewallRules: [{82F7FD2D-F410-4BA5-A4F8-4F0244C26BDA}] => (Allow) C:\Users\wilfr\Downloads\UltraAdwareKiller64.exe (Da Silva Alfrédo -> Carifred) FirewallRules: [{0BE0F54F-C4EC-4B08-9927-3A19BB57175D}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{CE00EB8D-910F-4E65-A495-DDD041F9E0DD}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{523214BD-8508-419A-B424-0C5A16575157}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{1D72F827-96DC-4620-A3EB-FE2169FC22AE}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Geen bestand FirewallRules: [{7BD9D6EC-320C-4F9C-AF57-70FF7DCA3AD1}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Geen bestand FirewallRules: [{21204392-1B29-4972-ADBA-66FDBB6D2F2C}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom) FirewallRules: [{7A2E779C-EF0C-43FF-B149-93FF6EF02307}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{CA8B159D-D33F-41AD-B011-61E072356022}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{6749F428-F826-4873-84E6-486EC51BE4B0}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{F608C83E-328C-447C-BD50-19CA9198AAA6}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{587B1FBD-A7BD-43FA-8CFC-6B0DB0FFFFD8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0086D7DB-2174-4D46-8665-D5A266891D73}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{61C5D5AE-C6C1-4EDB-95F7-A189426E5C26}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{D80CEE0F-E115-4136-8F2C-475C34F452BC}] => (Allow) C:\Users\wilfr\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Geen bestand FirewallRules: [{2C745D11-94FE-4A64-A301-16750D96F433}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\AutoUpdate.exe => Geen bestand FirewallRules: [{4F7085BE-3668-49D5-90BB-8BBAA7BAC14A}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\AutoUpdate.exe => Geen bestand FirewallRules: [{23FBB7D2-23B3-4901-851A-90E1E7D94B45}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A125C163-FBAE-4752-976D-991C6D8EEE21}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5C3B4032-7DBD-4E18-9C5B-F3CD3122DC33}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7EAD483A-B85E-46F3-A5B1-B6751099B7D9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Herstelpunten ========================= ==================== Defecte Apparaatbeheer Apparaten ============ Name: ENVY Photo 6200 series Description: ENVY Photo 6200 series Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (10/21/2021 10:51:23 AM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {00EB5084-29B8-76CB-6970-AE768450EB00}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x800401fd. Error: (10/21/2021 10:32:56 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: ASCService.exe, versie: 15.0.0.188, tijdstempel: 0x611f696e Naam van module met fout: KERNELBASE.dll, versie: 10.0.19041.1288, tijdstempel: 0x3e55bd0b Uitzonderingscode: 0xc0000409 Foutmarge: 0x0012b5b2 Id van proces met fout: 0x774 Starttijd van toepassing met fout: 0x01d7c651f5f2c864 Pad naar toepassing met fout: C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: a521fb52-e849-47ec-b9a3-3035d28bd2b7 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (10/21/2021 10:19:16 AM) (Source: MsiInstaller) (EventID: 1023) (User: NT AUTHORITY) Description: Product: Kaspersky Internet Security - Update 'KAVKISKTSKFA 2021 MR3, KSC 4.0 MR3 patch D' kan niet worden geïnstalleerd. Foutcode: 1603. Meer informatie is beschikbaar in logboekbestand C:\WINDOWS\Temp\kis.21.3.10.391f_09.21_08.18_4136.apply_patches.kis2021mr3.log. Error: (10/21/2021 10:19:15 AM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY) Description: Programma: Kaspersky Internet Security -- Fout 1920. Service Kaspersky Anti-Virus NDIS 6 Filter (klim6) kan niet worden gestart. Controleer of je voldoende rechten hebt voor het starten van systeemservices.<<31920>> Error: (10/21/2021 10:16:41 AM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {00EB5084-29B8-76CB-6970-AE768450EB00}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x80010114. Error: (10/21/2021 10:08:15 AM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {00EB5084-29B8-76CB-6970-AE768450EB00}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x80010114. Error: (10/21/2021 10:07:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: BrowserCleaner.exe, versie: 15.0.0.1, tijdstempel: 0x60e54bcb Naam van module met fout: KERNELBASE.dll, versie: 10.0.19041.1288, tijdstempel: 0x3e55bd0b Uitzonderingscode: 0xc0000409 Foutmarge: 0x0012b5b2 Id van proces met fout: 0x62c4 Starttijd van toepassing met fout: 0x01d7c652a49061e9 Pad naar toepassing met fout: C:\Program Files (x86)\IObit\Advanced SystemCare\BrowserCleaner.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 6bcde8af-cb9d-436f-819d-8e4c1bbcbd83 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (10/21/2021 10:05:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: ASCTray.exe, versie: 15.0.0.922, tijdstempel: 0x615121ef Naam van module met fout: KERNELBASE.dll, versie: 10.0.19041.1288, tijdstempel: 0x3e55bd0b Uitzonderingscode: 0xc0000409 Foutmarge: 0x0012b5b2 Id van proces met fout: 0x5170 Starttijd van toepassing met fout: 0x01d7c6522295b826 Pad naar toepassing met fout: C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 722122ba-a1d1-42f7-a9cb-ab0be8fd5ace Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Systeemfouten: ============= Error: (10/21/2021 10:19:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:19:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:19:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:19:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:18:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:18:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:18:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Kaspersky Anti-Virus NDIS 6 Filter-service kan vanwege de volgende fout niet worden gestart: Een apparaat dat op het systeem is aangesloten, werkt niet. Error: (10/21/2021 10:02:14 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY) Description: Het DLL-meldingsbestand C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter voor wachtwoorden kan niet worden geladen door de fout 126. Controleer of het pad van het DLL-meldingsbestand dat is gedefinieerd in het register (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages), verwijst naar een juist en absoluut pad (:\\.) en niet naar een relatief of ongeldig pad. Als het pad van het DLL-bestand juist is, controleert u of eventuele ondersteunende bestanden zich in dezelfde map bevinden en of het systeemaccount over leestoegang beschikt voor zowel het pad van het DLL-bestand als eventuele ondersteunende bestanden. Neem contact op met de leverancier van het DLL-meldingsbestand voor aanvullende ondersteuning. Meer informatie vindt u op de webpagina http://go.microsoft.com/fwlink/?LinkId=245898. CodeIntegrity: =============== Date: 2021-10-21 10:04:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. Date: 2021-10-21 05:24:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. 110EMW0X.101 11/20/2015 Moederbord: MEDION H110H4-EM Processor: Intel(R) Core(TM) i3-6100 CPU @ 3.70GHz Percentage geheugen in gebruik: 86% Totaal fysiek RAM-geheugen: 8107.52 MB Beschikbaar fysiek RAM-geheugen: 1126.38 MB Totaal Virtueel geheugen: 13227.52 MB Beschikbaar Virtueel geheugen: 3555.45 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:117.64 GB) (Free:7.18 GB) NTFS Drive d: (Wilfried) (Fixed) (Total:1803 GB) (Free:1435.79 GB) NTFS Drive e: (Recover) (Fixed) (Total:60.02 GB) (Free:31.81 GB) NTFS Drive f: (WD Unlocker) (CDROM) (Total:0.01 GB) (Free:0 GB) UDF Drive g: (My Passport) (Fixed) (Total:1862.98 GB) (Free:473.82 GB) NTFS Drive h: (PS_AIO_07_B110_U) (CDROM) (Total:0.42 GB) (Free:0 GB) CDFS \\?\Volume{71d43d19-a261-4dee-8b17-ee98efa1de91}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS \\?\Volume{30404f2e-e518-4e19-82bb-5e549acca117}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 119.2 GB) (Disk ID: 8F00F597) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 2. ========================================================== Disk: 3 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Einde van Addition.txt =======================