Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 28-08-2023 Gestart door heyma (01-09-2023 17:18:27) Gestart vanaf C:\Users\heyma\OneDrive\Bureaublad Microsoft Windows 11 Home Versie 22H2 22621.2134 (X64) (2022-11-25 08:02:29) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) Administrator (S-1-5-21-850261726-2827681732-3234864372-500 - Administrator - Disabled) AKump (S-1-5-21-850261726-2827681732-3234864372-1002 - Limited - Disabled) Backup (S-1-5-21-850261726-2827681732-3234864372-1005 - Administrator - Enabled) DefaultAccount (S-1-5-21-850261726-2827681732-3234864372-503 - Limited - Disabled) Gast (S-1-5-21-850261726-2827681732-3234864372-501 - Limited - Disabled) heyma (S-1-5-21-850261726-2827681732-3234864372-1001 - Administrator - Enabled) => C:\Users\heyma secur (S-1-5-21-850261726-2827681732-3234864372-1003 - Limited - Disabled) secur_wkyfnh6 (S-1-5-21-850261726-2827681732-3234864372-1004 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-850261726-2827681732-3234864372-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} FW: Kaspersky Security Cloud (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Acer Configuration Manager (HKLM-x32\...\{8CB1A03C-9849-4744-AD56-341A18F9E3E2}) (Version: 2.5.22250 - Acer) Acer Jumpstart (HKLM-x32\...\{0C5ED25A-B8D1-4E71-BFCB-6B370A4EA19C}) (Version: 3.5.22220.20 - Acer) Belgium e-ID middleware 5.0.17 (build 5498) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A75498}) (Version: 5.0.5498 - Belgian Government) Binance 1.23.0 (HKLM\...\Binance) (Version: 1.23.0 - BinanceTech) Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3042 - Acer Incorporated) CCleaner (HKLM\...\CCleaner) (Version: 6.15 - Piriform) CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Conqueror`s Blade MY.GAMES (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\gcgame_13.2000842) (Version: 1.529 - MY.GAMES B.V.) CrystalDiskInfo 9.1.1 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.1.1 - Crystal Dew World) Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.3.2.18 - Western Digital Corporation) Discord (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\Discord) (Version: 1.0.9016 - Discord Inc.) DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated) Dynamic Application Loader Host Interface Service (HKLM\...\{BB78A7A1-B716-49D2-81C4-5A3ABE32C7E2}) (Version: 1.0.0.0 - Intel Corporation) Hidden eaZyLink (HKLM-x32\...\{ECD905F8-7E4C-42A7-A7E2-D78D0CF8B56E}) (Version: 2.0.0 - ZETES) ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Foxit PDF Reader (HKLM-x32\...\{E2596EA7-1E0B-11EE-9304-54BF64A63C26}) (Version: 12.1.3.15356 - Foxit Software Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 116.0.5845.141 - Google LLC) GoTrust ID Plugin 2.0.12.36 (HKLM\...\GoTrust ID Plugin) (Version: 2.0.12.36 - GoTrust ID Inc.) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Intel(R) Chipset Device Software (HKLM\...\{B4BF76D4-C8E0-4341-A8C5-A33D1C506DED}) (Version: 10.1.18263.8193 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{66879245-162d-47f5-bac4-840156a7c01e}) (Version: 10.1.18263.8193 - Intel(R) Corporation) Intel(R) Icls (HKLM\...\{8A803181-323A-4876-887C-413A43B455CB}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) LMS (HKLM\...\{8B91A857-9616-48AB-8E1B-DAB7D510545A}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2004.14.0.1447 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{3BB0BA84-70E4-48D2-8674-A6CB8BC7EDD6}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{A2004714-8E43-4063-97E7-0965262B3CCD}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{02A60659-049B-4E62-9E13-C52BF2A01AB4}) (Version: 1.0.0.0 - Intel Corporation) Hidden Kaspersky (HKLM-x32\...\{E396C2E3-5292-33E9-949C-349C23D784D8}) (Version: 21.13.5.506 - Kaspersky) Hidden Kaspersky (HKLM-x32\...\InstallWIX_{E396C2E3-5292-33E9-949C-349C23D784D8}) (Version: 21.13.5.506 - Kaspersky) Killer Ethernet Performance Driver Suite UWD (HKLM\...\{1995E767-7D5D-4BC7-9B4B-A0A1220AAC58}) (Version: 2.2.1410 - Rivet Networks) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LibreOffice 7.5.5.2 (HKLM\...\{61C7ACC0-A7E0-43FB-80A4-C15D0F546355}) (Version: 7.5.5.2 - The Document Foundation) Macrium Reflect Free (HKLM\...\{F57AC85F-DB28-429E-A2D7-28BBA741BDEE}) (Version: 8.0.6560 - Paramount Software (UK) Ltd.) Hidden Macrium Reflect Free (HKLM\...\MacriumReflect) (Version: v8.0.6560 - Paramount Software (UK) Ltd.) Malwarebytes version 4.6.0.277 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.0.277 - Malwarebytes) MGLauncher (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\mglauncherlaunchpad_) (Version: 4.1696 - MY.COM B.V.) Microsoft .NET Host - 6.0.10 (x86) (HKLM-x32\...\{3B28977C-9163-48A5-A08C-C01327E18AE2}) (Version: 48.43.48869 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.10 (x86) (HKLM-x32\...\{EBD44C5E-F1AF-4955-AEDF-F15D06384A9C}) (Version: 48.43.48869 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.10 (x86) (HKLM-x32\...\{98CA5A6B-4ECC-4E6D-BF18-6B20CBB6E5F4}) (Version: 48.43.48869 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 116.0.1938.62 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 116.0.1938.62 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\OneDriveSetup.exe) (Version: 23.174.0820.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{43D501A5-E5E3-46EC-8F33-9E15D2A2CBD5}) (Version: 5.70.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.22.27821 (HKLM\...\{6E2C7A8E-B17A-4637-9CE9-F0B1157CF378}) (Version: 14.22.27821 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.22.27821 (HKLM\...\{0093C20C-273D-4397-B623-515CB8616CB9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29325 (HKLM-x32\...\{B40FC85D-2B12-46E0-B950-E5B27E348793}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29325 (HKLM-x32\...\{EE2E15BB-54C8-4DB0-B1F3-026E3C166991}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{0F3E4057-E2BB-4114-A646-F143DB5CE4C9}) (Version: 48.43.48870 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.10 (x86) (HKLM-x32\...\{9dd24b73-88e0-4f0f-882a-500e00d2bdef}) (Version: 6.0.10.31726 - Microsoft Corporation) Mozilla Firefox (x64 nl) (HKLM\...\Mozilla Firefox 117.0 (x64 nl)) (Version: 117.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 116.0.2 - Mozilla) NitroSense Service (HKLM\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3016 - Acer Incorporated) NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 531.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.41 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.2.1.17 - Popcorn Time) <==== AANDACHT ProtonVPN (HKLM-x32\...\{EE88024E-679E-4F98-902E-1B4272DB36EA}) (Version: 2.2.0 - Proton Technologies AG) Hidden ProtonVPN (HKLM-x32\...\ProtonVPN 2.2.0) (Version: 2.2.0 - Proton Technologies AG) ProtonVPNTap (HKLM-x32\...\{87BDF456-9882-44E6-8FFC-F73B83E42EAD}) (Version: 1.1.4 - Proton Technologies AG) ProtonVPNTun (HKLM-x32\...\{B1EBF050-CC3E-45B0-9DE5-339C6241F3DA}) (Version: 0.13.1 - Proton Technologies AG) QoQReVerse (HKLM-x32\...\QoQReVerse) (Version: - ) Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3038 - Acer Incorporated) QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9054.1 - Realtek Semiconductor Corp.) Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.) Roblox Player for heyma (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\roblox-player) (Version: - Roblox Corporation) SABnzbd 3.7.2 (HKLM-x32\...\SABnzbd) (Version: 3.7.2 - The SABnzbd Team) SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Spotnet (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\Spotnet) (Version: 2.0.0.284 - Spotnet) Stremio (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\Stremio) (Version: 4.4.142 - Smart Code Ltd) Tixati (HKLM-x32\...\tixati) (Version: - ) UCheck versie 4.6.1.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 4.6.1.0 - Adlice Software) User Experience Improvement Program Service (HKLM\...\{323EA05D-046D-449D-9D7C-89243C957CCE}) (Version: 5.00.3002 - Acer Incorporated) VK Play GameCenter (HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\GameCenter) (Version: 4.1695 - VK Play LLC) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) Windows Pc-statuscontrole (HKLM\...\{D1F16371-7951-41EB-A367-507D779F1E64}) (Version: 3.2.2110.14001 - Microsoft Corporation) WinRAR 6.23 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH) Packages: ========= Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4 [2023-08-09] (Acer Incorporated) AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5180.0_x64__8j3eq9eme6ctt [2023-08-12] (INTEL CORP) [Startup Task] Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3042.0_x64__48frkmn4z8aw4 [2022-01-11] (Acer Incorporated) Chess Titans -> C:\Program Files\WindowsApps\5448AdrianWagner.ChessTitans_1.0.2.0_x64__mzjk1s65q0814 [2023-03-26] (Adrian Wagner) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-11] (Microsoft Corporation) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.3.0_x64__6rarf9sa4v8jt [2023-08-11] (Disney) Dropbox-actie -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.20.0_x64__xbfy0k16fey96 [2023-09-01] (Dropbox Inc.) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2023.3.13.0_x64__t5j2fzbtdg37r [2023-08-25] (DTS, Inc.) DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.11.14.0_x64__t5j2fzbtdg37r [2023-08-09] (DTS, Inc.) eID -> C:\Program Files\WindowsApps\TOOLS.LV.eID_1.11.0.0_x64__9ce49tn88e156 [2023-08-09] (TOOLS.LV) GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2023-08-09] (GoTrustID Inc.) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_148.2.1069.0_x64__v10z8vjag6ke6 [2023-08-10] (HP Inc.) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-08-09] (INTEL CORP) Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.2.3216.0_x64__rh07ty8m5nkag [2021-08-22] (Rivet Networks LLC) [Startup Task] Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1940.11.196.0_x64__8xx8rvfyw5nnt [2023-09-01] (Meta) [Startup Task] Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-08-09] (Microsoft Corp.) Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10510.531.0_x64__8wekyb3d8bbwe [2023-08-09] (Microsoft Corporation) Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-08-10] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-08-08] (Microsoft Corporation) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3016.0_x64__48frkmn4z8aw4 [2021-08-22] (Acer Incorporated) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-30] (NVIDIA Corp.) PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.6428.0_x64__ypz87dpxkv292 [2021-08-22] (CYBERLINK COM CORP) PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2021-08-22] (CYBERLINK COM CORP) QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3038.0_x64__48frkmn4z8aw4 [2022-02-10] (Acer Incorporated) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.235.0_x64__dt26b99r8h8gj [2021-08-22] (Realtek Semiconductor Corp) ShellEx Package -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64 [2023-08-29] (ShellEx Package) Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.16.165.0_x64__43tkc6nmykmb6 [2023-08-09] (Ookla) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0 [2023-08-31] (Spotify AB) [Startup Task] User Experience Improvement Program V5 -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgramV_5.0.3002.0_x64__48frkmn4z8aw4 [2021-08-22] (Acer Incorporated) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2334.2.0_x64__cv1g1gvanyjgm [2023-09-01] (WhatsApp Inc.) [Startup Task] Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-08-08] (Microsoft Corporation) WinRAR -> C:\Program Files\WinRAR [2023-08-08] (win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-850261726-2827681732-3234864372-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> c:\program files\macrium\common\reflectmonitor.exe (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) CustomCLSID: HKU\S-1-5-21-850261726-2827681732-3234864372-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Proton Technologies AG -> ProtonVPN) ContextMenuHandlers1: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-08-27] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-08-27] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-24] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers4: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-08-27] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_b6ce20d4b8fb6a81\nvshext.dll [2023-03-17] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.13] -> {0E70CD47-F3F0-4C43-B347-796CF9B1F06C} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\shellex.dll [2023-08-27] (Kaspersky Lab JSC -> AO Kaspersky Lab) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-24] (Malwarebytes Inc. -> Malwarebytes) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2022-03-30 13:06 - 2022-03-30 13:06 - 147344896 _____ () [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\Chrome\99.4844.2526\libcef.dll 2022-03-29 21:01 - 2022-03-29 21:01 - 000345088 _____ () [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\Chrome\99.4844.2526\libegl.dll 2022-03-29 20:59 - 2022-03-29 20:59 - 005478400 _____ () [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\Chrome\99.4844.2526\libglesv2.dll 2022-05-13 10:00 - 2022-05-13 10:00 - 000144896 _____ () [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\zlib1.dll 2022-05-13 10:00 - 2022-05-13 10:00 - 000163840 _____ (Igor Pavlov) [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\7zxa.dll 2022-03-29 21:52 - 2022-03-29 21:52 - 000985600 _____ (The Chromium Authors) [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\Chrome\99.4844.2526\chrome_elf.dll 2022-05-13 10:00 - 2022-05-13 10:00 - 000694272 _____ (The curl library, hxxps://curl.se/) [Bestand niet getekend] C:\Users\heyma\AppData\Local\GameCenter\libcurl.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-12-07 11:14 - 2022-01-01 19:45 - 000000857 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 eazylink.zetes.be ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-850261726-2827681732-3234864372-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\heyma\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\bureaubladachtergrond.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKLM\...\StartupApproved\Run32: => "Discord" HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\StartupApproved\Run: => "GameCenter" HKU\S-1-5-21-850261726-2827681732-3234864372-1001\...\StartupApproved\Run: => "Discord" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{B7277E0B-7189-4718-B9BD-F0FCFAD6657B}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{223F6BB3-6D37-41C7-A93F-D9CB39FA3AA7}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{5F1952B8-4C4B-4982-8218-993E5291EF5F}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{C6D9D966-6168-4342-953F-0E9E12697C68}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [UDP Query User{F312D272-4A3A-43E1-8CA6-07AD090B241E}C:\users\heyma\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\heyma\appdata\local\gamecenter\gamecenter.exe (VK LLC -> VK LLC) FirewallRules: [TCP Query User{7622FEA9-95F3-4C87-94B6-7DB0DF4EA4B4}C:\users\heyma\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\heyma\appdata\local\gamecenter\gamecenter.exe (VK LLC -> VK LLC) FirewallRules: [UDP Query User{CF8C4E78-8AE4-4892-94CD-136CD037CA3B}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Allow) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [TCP Query User{4A838BC1-0D95-4EA9-B351-32C52AE41C2F}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Allow) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [UDP Query User{B2A7AFA8-F931-487A-9E25-0335E959DD3E}C:\users\heyma\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\heyma\appdata\local\gamecenter\gamecenter.exe (VK LLC -> VK LLC) FirewallRules: [TCP Query User{B8B51CAC-6296-4853-98C4-9C348C85C275}C:\users\heyma\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\heyma\appdata\local\gamecenter\gamecenter.exe (VK LLC -> VK LLC) FirewallRules: [{1BB37A3C-55DF-4599-9B12-65C0CFFF6C6B}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{54ABC843-7183-414F-8FCE-D5CFC3DA038D}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{36EAFF54-0AB5-4DE2-8B89-7E6B4CA638D2}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{6EE1750E-9CA9-4852-B803-8E79FC361C2E}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{C5CCF16E-7886-4E29-9B0E-ECD4D3B55F79}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{BC6D1DBB-F2AA-4399-B8BB-4B217CE957C9}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{929769B7-E63B-43EC-99AF-C36BA9FF8198}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{3B2B8013-9DC3-4315-A0DB-2DABA7E1F459}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{54C66CA9-8D27-4DE9-9CEB-B9A3BE1A6FE7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{9F4ACAD5-6FEB-41B9-A95F-6B3C996B809C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{5E032FB2-AF73-4919-A51B-9DCB856E0EF5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5B19D7A6-0D39-4044-8919-DE62F4BB0EF5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{DBBE520C-9325-4742-87FB-0A4982D8042A}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{FCBEF319-F182-401F-A10D-D3F7B96E1E2F}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [TCP Query User{C4DB99D4-520B-4093-8DDE-07F07B8A8287}C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Bestand niet getekend] FirewallRules: [UDP Query User{E2931138-4666-48C4-BCDB-303111D9BAB4}C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Bestand niet getekend] FirewallRules: [TCP Query User{38F2131D-BBB0-4984-A9A2-18998DC9205B}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe (Tixati Software Inc. -> Tixati Software Inc.) FirewallRules: [UDP Query User{E1628513-8BCA-426C-BDB6-F1751BFCA5C5}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe (Tixati Software Inc. -> Tixati Software Inc.) FirewallRules: [TCP Query User{60160527-8284-44DD-9097-38FF40B65B58}C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe => Geen bestand FirewallRules: [UDP Query User{28E30B6D-0189-41CD-BA88-DE3A6ED6B801}C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe => Geen bestand FirewallRules: [TCP Query User{DDA35A05-BA64-4D03-8C60-CD78AC9F3703}C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe => Geen bestand FirewallRules: [UDP Query User{93835C6C-50FF-41C0-A76D-7AB191711711}C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\star trek online_en\star trek online\live\x64\gameclient.exe => Geen bestand FirewallRules: [TCP Query User{B4B9F3FF-981B-4858-AC78-58DD831D6311}C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Bestand niet getekend] FirewallRules: [UDP Query User{26A48134-0F26-4A61-A881-6C8520914006}C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe] => (Allow) C:\users\heyma\appdata\local\programs\lnv\stremio-4\stremio-runtime.exe (Stremio (Smart Code OOD) -> Stremio Runtime) [Bestand niet getekend] FirewallRules: [{5DBF272F-2269-4FC0-BC2F-90B4A98B5667}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{8A34D6F7-94F3-49CA-8638-FF0833D094E9}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [TCP Query User{1B466685-8822-4C31-9BED-5D40B75937F5}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe (Tixati Software Inc. -> Tixati Software Inc.) FirewallRules: [UDP Query User{293CD127-4AEE-4369-A0DC-F28F91BD85C6}C:\program files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe (Tixati Software Inc. -> Tixati Software Inc.) FirewallRules: [{FA7E9426-15CC-4819-AA59-4D7FD5D08644}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FD1F04D0-C354-4A77-AE39-C3FD536ADFE1}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BC389EEC-0605-429F-8CFA-160AAF16CF33}] => (Allow) C:\Program Files\SABnzbd\SABnzbd.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{2C04E3CA-78E0-4945-9C15-E18166A92626}] => (Allow) C:\Program Files\SABnzbd\SABnzbd-console.exe (The SABnzbd-Team) [Bestand niet getekend] FirewallRules: [{8E422C31-834E-4D75-851C-B38DE7666BB8}] => (Allow) C:\MGLauncher\MGLauncher\MGL.exe (MY.GAMES B.V. -> MY.GAMES B.V.) FirewallRules: [{A00A0E96-68A0-4458-8448-2625598C0993}] => (Allow) C:\MGLauncher\MGLauncher\MGL.exe (MY.GAMES B.V. -> MY.GAMES B.V.) FirewallRules: [{AB3D7057-94D1-4902-894E-B476A2851DBA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{BB80BEDD-E5DB-4C28-A9B8-B62E15BCE710}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{B821B144-BE37-400B-9596-3B52FE79EFA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{609BBDB2-E50B-4669-A9D3-000081859195}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{62C7DEE0-29C8-4FE1-9EFF-3B8EEC10D349}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{514CFC1D-96A0-4089-AD25-08BB79EE0495}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{87927111-3683-4444-AA15-32EFA2E36B01}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A0C26782-49DC-48BA-B391-13576B6B0D15}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B7A9F8D9-7BB1-4569-9A59-B576CAE371C3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AC2F53FE-1895-4848-81CF-5352A986AE0C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E30D4DEE-5FB9-44A4-B2F4-C21A62A98962}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A2EAF8CA-1D37-4A92-BBE0-409E6B037ECA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E0FE9200-3D96-4B90-916E-B1DEC00F2192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{3F792F18-B60E-4781-8AF8-26B842591830}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E0852910-1E70-4D11-AC25-004370458BB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{486B22FB-A422-4699-BCB6-64098B562457}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{3BAB8A25-6B34-4FA8-8801-44AF62FDCBCA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{25275FBE-422E-4A77-AB4A-0F5C51C93A0D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{9D593883-E6AB-44C0-9875-5BFF2A390EBC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.219.941.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{D8DD23A4-BA89-470C-A82A-5FA6B9BD286C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 01-09-2023 08:13:40 Windows Update 01-09-2023 08:13:41 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (09/01/2023 05:07:02 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-O0FNMKUR) Description: Naam van toepassing met fout: AcerRegistrationBackGroundTask.exe, versie: 1.0.0.0, tijdstempel: 0x64375ffb Naam van module met fout: KERNELBASE.dll, versie: 10.0.22621.2134, tijdstempel: 0x8ae80d68 Uitzonderingscode: 0xc000041d Foutmarge: 0x00148712 Id van proces met fout: 0x0x2cf0 Starttijd van toepassing met fout: 0x0x1d9dce5f3490c91 Pad naar toepassing met fout: C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 7293d322-5bba-4d5c-8488-5286207f2453 Volledige pakketnaam met fout: AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4 Relatieve toepassings-id van pakket met fout: Acer.AcerRegistration Error: (09/01/2023 05:06:58 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-O0FNMKUR) Description: Naam van toepassing met fout: AcerRegistrationBackGroundTask.exe, versie: 1.0.0.0, tijdstempel: 0x64375ffb Naam van module met fout: KERNELBASE.dll, versie: 10.0.22621.2134, tijdstempel: 0x8ae80d68 Uitzonderingscode: 0xc0020001 Foutmarge: 0x00148712 Id van proces met fout: 0x0x2cf0 Starttijd van toepassing met fout: 0x0x1d9dce5f3490c91 Pad naar toepassing met fout: C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4\DesktopApp\AcerRegistrationBackGroundTask.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: 21d826ce-be6a-4107-8626-9cdc5cd3fd93 Volledige pakketnaam met fout: AcerIncorporated.AcerRegistration_2.0.3044.0_x64__48frkmn4z8aw4 Relatieve toepassings-id van pakket met fout: Acer.AcerRegistration Error: (09/01/2023 05:06:57 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: AcerRegistrationBackGroundTask.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: uitzonderingscode c0020001, uitzonderingsadres 765D8712 Stack: bij MS.Win32.UnsafeNativeMethods.CallWindowProc(IntPtr, IntPtr, Int32, IntPtr, IntPtr) bij MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) bij System.Environment._Exit(Int32) bij System.Environment.Exit(Int32) bij AcerRegistrationBackGroundTask.MainWindow+d__24.MoveNext() bij System.Runtime.CompilerServices.AsyncVoidMethodBuilder.Start[[AcerRegistrationBackGroundTask.MainWindow+d__24, AcerRegistrationBackGroundTask, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]](d__24 ByRef) bij AcerRegistrationBackGroundTask.MainWindow.closeBackGroundTask() bij AcerRegistrationBackGroundTask.MainWindow.Window_Loaded(System.Object, System.Windows.RoutedEventArgs) bij System.Windows.RoutedEventHandlerInfo.InvokeHandler(System.Object, System.Windows.RoutedEventArgs) bij System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean) bij System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs) bij System.Windows.UIElement.RaiseEvent(System.Windows.RoutedEventArgs) bij System.Windows.BroadcastEventHelper.BroadcastEvent(System.Windows.DependencyObject, System.Windows.RoutedEvent) bij System.Windows.BroadcastEventHelper.BroadcastLoadedEvent(System.Object) bij MS.Internal.LoadedOrUnloadedOperation.DoWork() bij System.Windows.Media.MediaContext.FireLoadedPendingCallbacks() bij System.Windows.Media.MediaContext.FireInvokeOnRenderCallbacks() bij System.Windows.Media.MediaContext.RenderMessageHandlerCore(System.Object) bij System.Windows.Media.MediaContext.RenderMessageHandler(System.Object) bij System.Windows.Media.MediaContext.Resize(System.Windows.Media.ICompositionTarget) bij System.Windows.Interop.HwndTarget.OnResize() bij System.Windows.Interop.HwndTarget.HandleMessage(MS.Internal.Interop.WindowMessage, IntPtr, IntPtr) bij System.Windows.Interop.HwndSource.HwndTargetFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) bij System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) bij System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) bij System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) bij MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) bij MS.Win32.UnsafeNativeMethods.ShowWindow(System.Runtime.InteropServices.HandleRef, Int32) bij System.Windows.Window.ShowHelper(System.Object) bij System.Windows.Window.Show() bij System.Windows.Application+<>c.b__105_0(System.Object) bij System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) bij System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) bij System.Windows.Threading.DispatcherOperation.InvokeImpl() bij System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) bij MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object) bij System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) bij System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) bij MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) bij System.Windows.Threading.DispatcherOperation.Invoke() bij System.Windows.Threading.Dispatcher.ProcessQueue() bij System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) bij MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) bij System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) bij System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) bij System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) bij MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) bij MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) bij System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) bij System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) bij System.Windows.Application.RunDispatcher(System.Object) bij System.Windows.Application.RunInternal(System.Windows.Window) bij System.Windows.Application.Run(System.Windows.Window) bij AcerRegistrationBackGroundTask.Startup.Main(System.String[]) Error: (09/01/2023 08:13:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary klupd_Kaspersky4Win-21-9_mark. System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/01/2023 08:13:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary klupd_Kaspersky4Win-21-9_klbg. System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/01/2023 08:13:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary klupd_Kaspersky4Win-21-9_klark. System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/01/2023 08:13:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary klupd_Kaspersky4Win-21-9_arkmon. System Error: Het systeem kan het opgegeven bestand niet vinden. . Error: (09/01/2023 08:13:44 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary klupd_Kaspersky4Win-21-9_mark. System Error: Het systeem kan het opgegeven bestand niet vinden. . Systeemfouten: ============= Error: (09/01/2023 04:48:29 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-O0FNMKUR) Description: De server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (09/01/2023 04:47:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De GoTrust ID Plugin-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Quick Access Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Predator Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Killer Wifi Optimization Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Intel(R) Graphics Command Center Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Intel(R) Content Protection HECI Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (09/01/2023 04:47:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De NVIDIA LocalSystem Container-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 6000 milliseconden worden uitgevoerd: Service opnieuw starten. CodeIntegrity: =============== Date: 2023-09-01 16:56:53 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\com_antivirus.dll that did not meet the Windows signing level requirements. Date: 2023-09-01 16:48:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\com_antivirus.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: Insyde Corp. V2.08 09/23/2022 Moederbord: CML Karoq_CMS Processor: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz Percentage geheugen in gebruik: 65% Totaal fysiek RAM-geheugen: 16215.05 MB Beschikbaar fysiek RAM-geheugen: 5554.15 MB Totaal Virtueel geheugen: 20311.05 MB Beschikbaar Virtueel geheugen: 7061.82 MB ==================== Schijven ================================ Drive c: (Acer) (Fixed) (Total:237.35 GB) (Free:39.13 GB) (Model: WDC PC SN530 SDBPNPZ-256G-1014) NTFS Drive d: (Data) (Fixed) (Total:1863 GB) (Free:24.02 GB) (Model: WDC WD20SPZX-22UA7T0) NTFS \\?\Volume{cbec2a6a-d993-42c0-98e3-32489f33e103}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.17 GB) NTFS \\?\Volume{3f878747-b478-4497-a95a-4be17bf3a034}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: 346A0B27) Partition: GPT. ==================== Einde van Addition.txt =======================