Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 05-11-2023 02 Gestart door geava (19-11-2023 12:07:12) Gestart vanaf C:\Users\geava\OneDrive\Bureaublad Microsoft Windows 11 Home Versie 22H2 22621.2715 (X64) (2022-12-04 08:35:01) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) Administrator (S-1-5-21-4147158641-4179325574-4140033110-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4147158641-4179325574-4140033110-503 - Limited - Disabled) Gast (S-1-5-21-4147158641-4179325574-4140033110-501 - Limited - Disabled) geava (S-1-5-21-4147158641-4179325574-4140033110-1002 - Administrator - Enabled) => C:\Users\geava WDAGUtilityAccount (S-1-5-21-4147158641-4179325574-4140033110-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.18 - Piriform) Cricut Design Space (HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\{113DD42F-AE80-489B-8F15-FB8499306C48}) (Version: 8.7.66 - Cricut, Inc.) DYMO Connect (HKLM-x32\...\{37CF639A-DD7C-4186-9697-5343E98C9E08}) (Version: 1.4.5.1 - DYMO) DYMO Connect Web Service (HKLM-x32\...\DYMO Connect Web Service) (Version: 1.4.5.1 - DYMO) Epson Device Admin (HKLM-x32\...\{F8F0D940-F14A-41DB-97C6-83790371133A}) (Version: 4.19.1 - Seiko Epson Corporation) Hidden Epson Device Admin (HKLM-x32\...\InstallShield_{F8F0D940-F14A-41DB-97C6-83790371133A}) (Version: 4.19.1 - Seiko Epson Corporation) Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{E244A764-EDD0-46B0-8689-661F6B28D9E5}) (Version: 3.10.0069 - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{562C1C83-6199-49DD-987B-60D5FF7BC971}) (Version: 3.3.2.0 - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{26A9B753-4B5D-46D8-A329-5CEF96FC22D2}) (Version: 4.6.5 - Seiko Epson Corporation) EPSON-handleidingen (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) Evony: The King's Return (HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\Evony) (Version: 1.1.1 - Top Games Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.160 - Google LLC) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.72 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.72 - Microsoft Corporation) Microsoft Office Access database engine 2007 (English) (HKLM-x32\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1031 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProPlusRetail - nl-nl) (Version: 16.0.16924.20150 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.221.1024.0002 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30133 (HKLM-x32\...\{42667D2E-B054-46C1-9D46-2EE1332C14C1}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30133 (HKLM-x32\...\{EC9807DE-B577-47B1-A024-0251805ACF24}) (Version: 14.29.30133 - Microsoft Corporation) Hidden MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.3.6 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - Seiko Epson Corporation) New Joe & Mac - Caveman Ninja (HKLM-x32\...\1385029155_is1) (Version: 2022112301_JOEANDMAC_PC_GOG - GOG.com) NVIDIA Grafisch stuurprogramma 512.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.78 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.16924.20124 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.16924.20124 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.16924.20150 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.16924.20088 - Microsoft Corporation) Hidden Printer EPSON ET-2650 Series verwijderen (HKLM\...\EPSON ET-2650 Series) (Version: - Seiko Epson Corporation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9239.1 - Realtek Semiconductor Corp.) Silhouette Studio (HKLM\...\{A95DB0F1-7A6B-40F2-A8AD-D6893EB80398}) (Version: 4.5.152 - Silhouette America) WinRAR 6.23 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH) Packages: ========= AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5237.0_x64__8j3eq9eme6ctt [2023-11-15] (INTEL CORP) [Startup Task] Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.600.297.0_x64__8wekyb3d8bbwe [2023-11-15] (Microsoft Corporation) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2023.8.31.0_neutral__6rarf9sa4v8jt [2023-11-14] (Disney) Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-18] (Microsoft Corp.) Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-21] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-11-15] (Microsoft Corporation) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1004.400_x64__8wekyb3d8bbwe [2023-10-11] (Microsoft Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0 [2023-11-14] (Spotify AB) [Startup Task] Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2023-11-15] (Synaptics Incorporated) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-11-15] (Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-4147158641-4179325574-4140033110-1002_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> rundll32.exe "C:\WINDOWS\System32\SynTPCpl.dll",ShowDevicePropPage 0 ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncShell64.dll [2023-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2022-05-05] (Nvidia Corporation -> NVIDIA Corporation) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2023-11-14 18:55 - 2023-11-13 19:31 - 002767872 _____ () [Bestand niet getekend] C:\Users\geava\AppData\Local\Programs\Cricut Design Space\ffmpeg.dll 2023-11-14 18:55 - 2023-11-13 19:31 - 000484352 _____ () [Bestand niet getekend] C:\Users\geava\AppData\Local\Programs\Cricut Design Space\libegl.dll 2023-11-14 18:55 - 2023-11-13 19:31 - 007535616 _____ () [Bestand niet getekend] C:\Users\geava\AppData\Local\Programs\Cricut Design Space\libglesv2.dll 2023-11-14 18:55 - 2023-11-13 19:31 - 005133824 _____ () [Bestand niet getekend] C:\Users\geava\AppData\Local\Programs\Cricut Design Space\vk_swiftshader.dll 2022-11-30 16:27 - 2022-11-30 16:27 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll 2022-11-30 16:27 - 2022-11-30 16:27 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files (x86)\Microsoft Office\root\Client\AppVIsvSubsystems64.dll 2022-11-30 16:27 - 2022-11-30 16:27 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2022-11-30 16:27 - 2022-11-30 16:27 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\c2r64.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Bestand niet getekend] C:\WINDOWS\System32\enppmon.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-10-30] (Microsoft Corporation -> Microsoft Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2023-10-03] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-30] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2021-06-05 13:08 - 2021-06-05 13:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 84.116.46.21 - 84.116.46.20 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "EPPCCMON" HKLM\...\StartupApproved\Run32: => "EEventManager" HKLM\...\StartupApproved\Run32: => "DYMOWebApi" HKLM\...\StartupApproved\Run32: => "DymoOfficeHelper" HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-4147158641-4179325574-4140033110-1002\...\StartupApproved\Run: => "DYMOConnectLauncher" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{50C61357-B15B-4F49-B9C9-9EA00AB3BAC1}] => (Allow) LPort=10015 FirewallRules: [{6AF0991C-8391-49A7-8914-8AEEDEF4DB04}] => (Allow) C:\Program Files (x86)\EPSON\Epson Device Admin\EDAClient.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{7BE45C28-8115-4056-9359-F90C69DDE0BF}] => (Allow) C:\Program Files (x86)\EPSON\Epson Device Admin\Config\ENConfig.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{E78BD4B5-F037-43B0-9AF2-48798602AE36}] => (Allow) C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\EDAAgent.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{72DA9F52-5C31-4D53-9C7F-2A8418E70905}] => (Allow) C:\Program Files (x86)\EPSON\Epson Device Admin\EDAAgent\FirmwareUpdate\EDFirmwareUpdate.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{29EACC83-D8BD-4D40-ADFE-36C64083963C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{39CB5A04-D078-464C-8243-EDC7A80CBF68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0299A3FE-3C1D-496B-BBDC-FE7318EFB7A2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{959FB758-7A95-4582-B5C7-F65D95A7A3B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9C59AC54-84C7-4601-B13C-019182119D31}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{110A0AD3-66FD-41C8-B11B-6B876431D80A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{44D9AD43-1E44-4BDB-AE31-1BB4E5321F51}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A07EB044-339D-4CD2-9E34-FB9D1D9A0CDB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C338DA7F-6064-404B-BE85-0745DFA66393}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C7897637-28CB-4928-9D95-0CBAF4472A5A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5A2D2694-BC58-4672-9FF2-43B28EC0E9A7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D4587421-2CF5-4780-A0B7-9DACD983D10D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{6D195E65-C5DC-45E4-B393-CCEC1ACDDB10}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{81223DAA-F623-4D43-9B4B-D53E446B5512}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{280420B8-BB39-47D9-BF84-E00EF32F702C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{E491D873-9DD5-48DA-8DA2-C36781AA5A65}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{D8540329-8F36-4598-9744-7F4EAC3318F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{4106AE4D-F85E-4639-B85C-1ABC2C1C6AA9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{5A4E4836-6D77-495D-9228-8848F001C9D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{F564F72D-51E1-41F5-9AD9-41561B16C669}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{213D0235-AD41-461F-A458-6329769C167B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.224.756.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{C3D9EF90-2F82-40A7-AD0C-5B0711105C48}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.58\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E6B720CD-AAEA-4126-9E8F-48B74F65DA5E}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{127F4C38-BC20-45F5-A0AF-8B325C07CFC1}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B4DF18E6-3BAF-40A2-9429-45525E7324B0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{4A188AC4-5B17-468A-B49B-10173558A2B0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.72\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Herstelpunten ========================= 15-11-2023 18:24:09 Windows Update 15-11-2023 19:12:24 Piriform Driver Updater - Update 6.0.8703.1 19-11-2023 10:48:24 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (11/17/2023 08:25:21 PM) (Source: Application Error) (EventID: 1000) (User: GEATJE) Description: Naam van toepassing met fout: msteamsupdate.exe, versie: 23285.3703.2471.4627, tijdstempel: 0x65385b25 Naam van module met fout: msteamsupdate.exe, versie: 23285.3703.2471.4627, tijdstempel: 0x65385b25 Uitzonderingscode: 0xc0000005 Foutmarge: 0x0000000000064939 Id van proces met fout: 0x0x6ab4 Starttijd van toepassing met fout: 0x0x1da198bbf62627d Pad naar toepassing met fout: C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteamsupdate.exe Pad naar module met fout: C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteamsupdate.exe Rapport-id: 176440ea-df36-4aba-b06b-3b4edf72d6f9 Volledige pakketnaam met fout: MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: msteamsupdate Error: (11/17/2023 06:25:21 PM) (Source: Application Error) (EventID: 1000) (User: GEATJE) Description: Naam van toepassing met fout: msteamsupdate.exe, versie: 23285.3703.2471.4627, tijdstempel: 0x65385b25 Naam van module met fout: msteamsupdate.exe, versie: 23285.3703.2471.4627, tijdstempel: 0x65385b25 Uitzonderingscode: 0xc0000005 Foutmarge: 0x0000000000064939 Id van proces met fout: 0x0x58d0 Starttijd van toepassing met fout: 0x0x1da197afbd1604f Pad naar toepassing met fout: C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteamsupdate.exe Pad naar module met fout: C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteamsupdate.exe Rapport-id: 88dd858e-7292-4c25-9b05-fc927dbc6b70 Volledige pakketnaam met fout: MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: msteamsupdate Error: (11/17/2023 04:49:30 PM) (Source: Outlook) (EventID: 35) (User: ) Description: Kan niet vaststellen of het archief zich in het verkenningsbereik bevindt (fout=0x8007045b). Error: (11/17/2023 04:49:30 PM) (Source: Outlook) (EventID: 34) (User: ) Description: Kan het bereik van verkennerbeheer niet ophalen. Fout: 0x8007045b. Error: (11/17/2023 04:49:00 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: GEATJE) Description: Kan toepassing of service 'Microsoft Windows Search Protocol Host' niet afsluiten. Error: (11/14/2023 08:56:53 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY) Description: Programma GameBar.exe versie 6.123.10181.0 communiceert niet meer met Windows en is gesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, controleert u de probleemgeschiedenis in het configuratiescherm van Beveiliging en onderhoud. Error: (11/13/2023 11:19:21 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: GEATJE) Description: Kan toepassing of service 'Microsoft Office SDX Helper' niet afsluiten. Error: (11/13/2023 11:19:21 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: GEATJE) Description: Kan toepassing of service 'Microsoft Outlook' niet afsluiten. Systeemfouten: ============= Error: (11/17/2023 04:26:47 PM) (Source: DCOM) (EventID: 10010) (User: GEATJE) Description: De server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (11/17/2023 04:24:57 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 20:07:54 op ‎16-‎11-‎2023 is onverwacht gebeurd. Error: (11/17/2023 04:24:48 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY) Description: 3221225684Er is een onherstelbare fout opgetreden tijdens het verwerken van de herstelgegevens. Error: (11/16/2023 10:19:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073d02: 9NZKPSTSNW4P-Microsoft.XboxGamingOverlay. Error: (11/16/2023 09:50:44 AM) (Source: DCOM) (EventID: 10010) (User: GEATJE) Description: De server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (11/16/2023 09:48:15 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 21:59:58 op ‎15-‎11-‎2023 is onverwacht gebeurd. Error: (11/16/2023 09:48:05 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY) Description: 3221225684Er is een onherstelbare fout opgetreden tijdens het verwerken van de herstelgegevens. Error: (11/15/2023 07:36:45 PM) (Source: DCOM) (EventID: 10010) (User: GEATJE) Description: De server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Windows Defender: ================ Date: 2023-11-19 11:48:47 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {9EFA4531-AAAC-4CBE-944E-5437CE804C6F} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2023-11-19 10:52:52 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {18C37EAE-1052-4606-B16A-F4840D9A6A4E} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2023-11-15 18:32:20 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {C3600133-3C62-433E-A0C4-1B6752918240} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2023-11-14 18:48:47 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {F0F9D089-2FF5-478D-A8E0-6973AC73FEB1} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2023-10-31 18:34:23 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {23CB0205-8619-4E26-BD3F-7CDF1A060C58} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM  CodeIntegrity: =============== Date: 2023-11-19 11:58:45 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2023-11-19 11:57:45 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: AMI F.09 04/24/2019 Moederbord: HP 8469 Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz Percentage geheugen in gebruik: 85% Totaal fysiek RAM-geheugen: 7999.02 MB Beschikbaar fysiek RAM-geheugen: 1191.98 MB Totaal Virtueel geheugen: 18751.02 MB Beschikbaar Virtueel geheugen: 6772.63 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:464.93 GB) (Free:379.11 GB) (Model: KINGSTON SNV2S500G) NTFS Drive d: () (Fixed) (Total:1863 GB) (Free:1796.02 GB) (Model: Samsung SSD 870 QVO 2TB) NTFS \\?\Volume{c770c2a7-33b6-4f05-8acc-dbf25b7e088e}\ () (Fixed) (Total:0.72 GB) (Free:0.08 GB) NTFS \\?\Volume{1e36255d-8850-4cf1-995e-0ea4561128a9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Einde van Addition.txt =======================