Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie:25-05-2016 01 Gestart door Pim Kruijt (2016-05-26 11:18:02) Gestart vanaf C:\Users\Pim Kruijt\Downloads Windows 10 Home Versie 1511 (X64) (2015-12-22 03:59:21) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3131392693-243484964-1164385804-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3131392693-243484964-1164385804-503 - Limited - Disabled) Gast (S-1-5-21-3131392693-243484964-1164385804-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3131392693-243484964-1164385804-1003 - Limited - Enabled) Pim Kruijt (S-1-5-21-3131392693-243484964-1164385804-1000 - Administrator - Enabled) => C:\Users\Pim Kruijt ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Computer Security by F-Secure (Enabled - Up to date) {4CBE0CB6-C6C6-9D82-ECD2-A076E5981AC9} AS: Computer Security by F-Secure (Enabled - Up to date) {F7DFED52-E0FC-920C-D662-9B049E1F5074} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) AAA Logo Business Edition 3.10 (HKLM-x32\...\AAA Logo 3.10 Business_is1) (Version: - SWGSoft.com) Ace Stream Media 3.1.2 (HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\AceStream) (Version: 3.1.2 - Ace Stream Media) <==== AANDACHT Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.233 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Allavsoft 3.11.2.5912 (HKLM-x32\...\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version: - Allavsoft Corporation) Amazon 1Button App (x32 Version: 2.3.4 - Amazon) Hidden <==== AANDACHT Amazon Assistant (HKLM-x32\...\Amazon Assistant) (Version: 2.3.4 - Amazon) <==== AANDACHT Apple Application Support (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ArcSoft MediaImpression 2 (HKLM-x32\...\{A68575CE-050E-4E1F-A053-58BE8D9DE7AB}) (Version: 2.0.53.1090 - ArcSoft) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.4.5.0 - Asmedia Technology) Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team) AVS Audio Converter 7 (HKLM-x32\...\AVS Audio Converter_is1) (Version: - Online Media Technologies Ltd.) AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.) AVS4YOU Software Navigator 1.4 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.) Band-in-a-Box 2005 (HKLM-x32\...\BB_is1) (Version: - PG Music Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BOSS TONE STUDIO for ME-80 (HKLM-x32\...\BOSS-TONE-STUDIO-for-ME-80) (Version: 1.0.2 - Roland Corporation) BOSS TONE STUDIO for ME-80 (x32 Version: 1.0.2 - Roland Corporation) Hidden CoffeeCup HTML Editor (HKLM-x32\...\CoffeeCup HTML Editor) (Version: - ) CoffeeCup Web Form Builder - Registered (HKLM-x32\...\CoffeeCup Web Form Builder - Registered) (Version: - ) Common Desktop Agent (Version: 1.62.0 - OEM) Hidden Computer Security 14.150.101.0 (release) (x32 Version: 14.150.101.0 - F-Secure Corporation) Hidden Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited) Creative Configuratiescherm voor geluid (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited) Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.00 - ) Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited) Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: - ) Creative-systeeminformatie (HKLM-x32\...\SysInfo) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation) FileZilla Client 3.17.0 (HKLM-x32\...\FileZilla Client) (Version: 3.17.0 - Tim Kosse) Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.5.0 - Foxit Corporation) Free MP3 Cutter 2.1 (HKLM-x32\...\{847E0734-4457-4B48-BF49-998D1CF2CFA1}_is1) (Version: 2.1 - PolySoft Solutions) F-Secure CCF Reputation (x32 Version: 2.0.1337.0 - F-Secure) Hidden F-Secure CCF Scanning 1.72.115.709 (release) (x32 Version: 1.72.115.709 - F-Secure Corporation) Hidden F-Secure Network CCF 1.04.119 (x32 Version: 1.04.119 - F-Secure Corporation) Hidden F-Secure SafeSearch 1.07.110.0 (release) (x32 Version: 1.07.110.0 - F-Secure Corporation) Hidden F-Secure Security Panel (HKLM-x32\...\F-Secure ServiceEnabler 54599) (Version: 2.50.214.0 - F-Secure Corporation) F-Secure Security Panel (x32 Version: 2.50.214.0 - F-Secure Corporation) Hidden Gebruikershandleiding weergeven (HKLM-x32\...\View User Guide) (Version: 3.60.43.0 - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.21.99 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden HMA! Pro VPN 2.8.24.0 (HKLM-x32\...\HMA! Pro VPN) (Version: 2.8.24.0 - Privax Ltd) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Kodi (HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\Kodi) (Version: - XBMC-Foundation) LAV Filters 0.55.3 (HKLM-x32\...\lavfilters_is1) (Version: 0.55.3 - Hendrik Leppkes) Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - ) ME-80 Driver (HKLM\...\RolandRDID0142) (Version: - Roland Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 45.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 nl)) (Version: 45.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla) MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD) Nero Burning ROM 2014 (HKLM-x32\...\{B0E4ACBC-4CFA-4B6D-9B7B-E13C171BCC23}) (Version: 15.0.05300 - Nero AG) Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG) NVIDIA 3D Vision controllerstuurprogramma 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 320.49 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.95 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation) NVIDIA PhysX systeemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) Online Safety 2.150.3659.2518 (x32 Version: 2.150.3659.2518 - F-Secure Corporation) Hidden OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation) PG Music DirectX Plugins 1.3.3.1 (HKLM-x32\...\PG Music DirectX Plugins_is1) (Version: - PG Music Inc.) Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder) Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.60.00(23-7-2013) - Samsung Electronics Co., Ltd.) Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Samsung Kies (x32 Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden Samsung M2020 Series (HKLM-x32\...\Samsung M2020 Series) (Version: 1.07 (7-12-2013) - Samsung Electronics Co., Ltd.) Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Shockwave (HKLM-x32\...\Shockwave) (Version: - ) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.1.0.9134 - Microsoft Corporation) Snagit 12 (HKLM-x32\...\{BDFD9ADC-3F97-4A8A-A533-987B21776449}) (Version: 12.4.0 - TechSmith Corporation) Software voor Intel® Chipset-apparaten (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden Sound Blaster Audigy (HKLM-x32\...\{1B1DDAD2-C704-49F8-8FC2-18DAAD9A87C5}) (Version: 1.0 - ) Stellar Phoenix Outlook PST Repair (HKLM\...\Stellar Phoenix Outlook PST Repair_is1) (Version: 5.0.0.0 - Stellar Information Technology Pvt Ltd.) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) Torrent Stream 2.0.8.14.2 (HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\TorrentStream) (Version: 2.0.8.14.2 - Torrent Stream) Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version: - EffectMatrix Inc.) Unity Web Player (HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS) Video to Video (HKLM-x32\...\{7F95A744-78DA-4AED-A8F0-A0AF330B8411}_is1) (Version: - Media Converters) Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.6.1.2 - Azureus Software, Inc.) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. ) Wondershare Filmora(Build 7.1.0) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) YTD Video Downloader 5.6 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.6 - GreenTree Applications SRL) <==== AANDACHT ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3131392693-243484964-1164385804-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Pim Kruijt\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3131392693-243484964-1164385804-1000_Classes\CLSID\{b5eedee0-c06e-11cf-8c56-444553540000}\InprocServer32 -> C:\Program Files (x86)\IDM Computer Solutions\UltraEdit\ue64ctmn.dll => Geen bestand ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0557F840-59EB-4827-82D9-0CE7F1F1C8CC} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-06-02] () Task: {072A4A78-E0B7-4804-B938-B4E07F3F8B83} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {12D113B4-E36E-48DE-B9F7-EA718025B96E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {1A26E151-988D-4550-BC7E-F24450AB4996} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-02] (Google Inc.) Task: {228C19AA-74A6-44F7-8874-747CA2EFCEEC} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {3240C0E6-A7BE-4642-B982-16C746726E51} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {38211549-6525-45E5-9D85-EB708EA4BF74} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {464EF145-5805-47FA-82C9-6C746D5777DA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {467040E4-45F2-4445-AFF2-C107A9E05938} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {494132DA-0C68-4FA7-BD79-738ADEAAD222} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [2014-07-31] (TechSmith Corporation) Task: {49C126E8-1EFD-4C26-9D5F-0597A1BF9CF8} - System32\Tasks\DistromaticUpdater-periodic => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-04-29] (Distromatic) <==== AANDACHT Task: {4AF45393-6DAF-424D-8BA0-5234C87999F2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {5209DEF8-4A90-41D2-936A-4F9A0056FE9E} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {5BB5A338-A110-4342-ACAC-D24965E3D252} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {5BDCFB30-D01F-48C1-8A0E-13E501DE3205} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {796E4649-7239-44CA-AD67-7708A406468D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {79C345FF-30AC-4426-A5A0-7862FC4D9C2B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13] (Adobe Systems Incorporated) Task: {83626812-FEF4-4C98-B2C2-146E00352E0D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {87D71F1E-B463-43D4-8197-6F15185BCF5E} - System32\Tasks\DistromaticUpdater-logon => C:\Program Files (x86)\Amazon Browser Settings\updater.exe [2016-04-29] (Distromatic) <==== AANDACHT Task: {8A4FDE2E-E2EC-4A6A-9060-9B1D526C7EAD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {8B20EBFF-9C64-415B-ACB1-22E0BCDC2D41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {9CE273EE-E9E4-4119-93CF-53207D3E6B3A} - System32\Tasks\F-Secure\F-Secure GUI => C:\Program Files (x86)\F-Secure\FsGuiStarter.exe [2016-03-11] (F-Secure Corporation) Task: {9ECA076A-84B4-41AB-922B-EB582208544F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {A1985AF8-16AA-49DC-95BC-F99DE92202C3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {A8EC9B40-EE63-4AA2-82D7-593BED396863} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {AC06ECD9-607C-4339-B81B-B4CCDB298C9F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {B0CCEC49-14A4-48B4-84A4-49E70987452C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {B62AC851-61CB-4DBA-AF58-F87A66EAF22C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {BA483AB3-746A-46C9-828F-5D0D4ED0349F} - System32\Tasks\DistromaticSearchProtect-hourly => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-04-29] (Distromatic) <==== AANDACHT Task: {BE7FCF52-B74B-47EF-94D6-6F688A8F11B6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {BEC77911-7C19-4037-BFE6-E8D360ACF9C0} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {BF7FA148-DAC5-4A95-B045-8B2568CDD23E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {CA9D09F9-CC9B-4B1F-87A4-7536B76251E8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-02] (Google Inc.) Task: {CB4EB4CF-1D0C-4609-AC98-791D548DDB87} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {DEEE88D6-2AB2-42E8-B5E5-6B7B77B99140} - System32\Tasks\{0704E7AE-65F9-460C-97C8-8DD5B8EB7624} => pcalua.exe -a "C:\Program Files\RdDrv001\RDID0142\Uninstall.exe" -d C:\Windows\ImmersiveControlPanel Task: {DF6167DA-08ED-47E6-9AD1-7C00404D566B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {E5A7EB4D-B097-4EC1-83FB-EB0189B8A69C} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {E68B7A6C-D8DD-41FB-9FD6-645D3DE65035} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {E8C9EF58-C650-4AF9-8F66-882BD2AC28E2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {ECCA3CF8-0C6A-4B2C-B17B-37BCBB2B9491} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {ED324A46-3811-4578-825B-184F09A02A6F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {EDC15893-0E28-42C0-BBCC-91E2B6A6B044} - System32\Tasks\DistromaticSearchProtect-logon => C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe [2016-04-29] (Distromatic) <==== AANDACHT Task: {EEAFD081-FF76-4E62-9C69-D106B2676965} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {F940C697-0448-4290-A272-F9AF9B54BAF0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {FA85A346-C8C8-4838-9CB6-5BED639131E2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {FB71400F-82F3-469F-9E95-0E30D12F5EFC} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2014-12-22 10:18 - 2014-12-22 10:18 - 00029184 _____ () C:\WINDOWS\System32\ssj2mlm.dll 2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-03-18 22:56 - 2016-03-18 22:56 - 01329936 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-03-10 11:41 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-02-12 13:15 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-05-10 15:07 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-03-10 11:41 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-05-10 15:07 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-05-10 15:07 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-05-10 15:07 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-02-12 13:15 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-22 05:19 - 2016-01-29 12:49 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-04-13 14:17 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 14:17 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2010-01-09 21:17 - 2010-01-09 21:17 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 02:40 - 2010-01-21 02:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2016-04-22 15:15 - 2016-04-22 15:15 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2015-12-22 12:27 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-11 15:47 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-05-11 15:47 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-05-11 15:47 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-05-11 15:48 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-05-11 15:48 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2012-03-09 09:58 - 2012-03-09 09:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe 2012-03-09 09:58 - 2012-03-09 09:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll 2015-08-02 19:47 - 2015-02-28 04:23 - 00022824 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe 2015-12-18 02:26 - 2015-12-18 02:26 - 00027000 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\ace_engine.exe 2016-05-10 15:07 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-05-10 15:07 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-04-19 08:15 - 2016-04-19 08:15 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-03-11 15:14 - 2016-03-11 15:14 - 00250840 _____ () C:\Program Files (x86)\F-Secure\daas2.dll 2016-05-12 17:08 - 2015-11-24 12:26 - 00072744 _____ () C:\Program Files (x86)\F-Secure\apps\ComputerSecurity\Anti-Virus\FSAVHRES.eng 2016-05-12 17:12 - 2016-05-12 17:12 - 00093152 _____ () C:\Program Files (x86)\F-Secure\apps\ComputerSecurity\Anti-Virus\minifilter\hashlib_x86.dll 2016-05-12 17:08 - 2016-05-12 17:12 - 00293344 _____ () C:\Program Files (x86)\F-Secure\apps\ComputerSecurity\Gemini\fsgem.dll 2016-05-12 17:08 - 2016-05-12 17:12 - 00213984 _____ () C:\Program Files (x86)\F-Secure\apps\ComputerSecurity\Spam Control\fsas.dll 2016-05-12 17:08 - 2016-05-12 17:12 - 00931808 _____ () C:\Program Files (x86)\F-Secure\apps\ComputerSecurity\Anti-Virus\fm4av.dll 2016-02-12 13:15 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-08-02 19:47 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\_socket.pyd 2015-08-02 19:47 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\_ssl.pyd 2015-08-02 19:47 - 2014-01-23 14:37 - 00036352 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\_psutil_mswindows.pyd 2015-08-02 19:47 - 2012-02-07 19:37 - 00098816 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\win32api.pyd 2015-08-02 19:47 - 2012-02-07 19:35 - 00110080 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\pywintypes27.dll 2015-08-02 19:47 - 2012-02-07 19:38 - 00358912 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\pythoncom27.dll 2015-08-02 19:47 - 2012-02-07 19:42 - 00266240 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\win32com.shell.shell.pyd 2015-08-02 19:47 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\_hashlib.pyd 2015-08-02 19:47 - 2011-06-12 15:06 - 00106496 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\_ctypes.pyd 2015-08-02 19:47 - 2010-10-11 00:23 - 00723968 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\apsw.pyd 2015-08-02 19:47 - 2011-01-19 00:56 - 00334336 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\M2Crypto.__m2crypto.pyd 2015-08-02 19:47 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\select.pyd 2015-08-02 19:47 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Pim Kruijt\AppData\Roaming\AceWebExtension\updater\lib\pyexpat.pyd 2015-12-18 02:27 - 2015-12-18 02:27 - 00309248 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.Core.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 00038400 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_socket.pyd 2011-06-12 15:09 - 2011-06-12 15:09 - 00720896 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_ssl.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00287232 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_hashlib.pyd 2015-04-16 14:27 - 2015-04-16 14:27 - 00018944 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pycompat.pyd 2014-01-23 13:37 - 2014-01-23 13:37 - 00036352 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_psutil_mswindows.pyd 2012-02-07 18:37 - 2012-02-07 18:37 - 00098816 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\win32api.pyd 2012-02-07 18:35 - 2012-02-07 18:35 - 00110080 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\pywintypes27.dll 2012-02-07 18:38 - 2012-02-07 18:38 - 00358912 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\pythoncom27.dll 2012-02-07 18:36 - 2012-02-07 18:36 - 00111616 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\win32file.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 00024064 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\win32pdh.pyd 2015-04-16 14:27 - 2015-04-16 14:27 - 02386432 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pywebrtc.pyd 2015-12-18 02:24 - 2015-12-18 02:24 - 02997760 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.live.pyd 2013-12-21 15:20 - 2013-12-21 15:20 - 00053248 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_blist.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00106496 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\_ctypes.pyd 2013-12-21 15:20 - 2013-12-21 15:20 - 00040448 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\bitarray._bitarray.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00011776 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\select.pyd 2015-12-17 23:19 - 2015-12-17 23:19 - 00240232 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pysegmenter.pyd 2015-04-16 14:29 - 2015-04-16 14:29 - 00112142 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\libgcc_s_dw2-1.dll 2011-01-18 23:56 - 2011-01-18 23:56 - 00334336 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\M2Crypto.__m2crypto.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00152576 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\pyexpat.pyd 2011-02-13 17:02 - 2011-02-13 17:02 - 00031232 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\Crypto.Cipher.AES.pyd 2015-12-18 02:46 - 2015-12-18 02:46 - 04100608 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\acestreamengine.CoreApp.pyd 2010-10-11 00:23 - 2010-10-11 00:23 - 00723968 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\apsw.pyd 2013-01-29 18:20 - 2013-01-29 18:20 - 00082944 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\cpyamf.util.pyd 2011-07-15 21:37 - 2011-07-15 21:37 - 00981504 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\wx._core_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00746496 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\wx._gdi_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00670720 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\wx._windows_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00966144 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\wx._controls_.pyd 2011-07-15 21:38 - 2011-07-15 21:38 - 00674816 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\wx._misc_.pyd 2012-02-07 18:37 - 2012-02-07 18:37 - 00167424 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\win32gui.pyd 2012-02-07 18:36 - 2012-02-07 18:36 - 00035840 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\win32process.pyd 2011-06-12 15:06 - 2011-06-12 15:06 - 00688128 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\unicodedata.pyd 2015-04-16 14:29 - 2015-04-16 14:29 - 00061952 _____ () C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\lib\miniupnpc.pyd 2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2015-11-11 03:42 - 2015-11-11 03:42 - 01045672 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2010-01-10 19:37 - 2010-01-10 19:37 - 00058208 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\UmOutlookStrings.dll 2016-04-19 08:15 - 2016-04-19 08:15 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 08:15 - 2016-04-19 08:15 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\amazon.com -> hxxps://amazon.com ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2015-12-26 15:09 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3131392693-243484964-1164385804-1000\Control Panel\Desktop\\Wallpaper -> HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\StartupApproved\Run: => "AceUpdater" HKU\S-1-5-21-3131392693-243484964-1164385804-1000\...\StartupApproved\Run: => "KiesPreload" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{CA949DAE-ECAC-42F3-84A0-1E23246DC204}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [{2A77A6DC-D731-480A-BEEC-ABB3223F9F58}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [{49E4459C-3025-4C92-BB9B-E27E739C244A}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{423DB25E-B647-4F3B-A104-FB89D4DF766F}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [UDP Query User{FC94A6D7-6062-4176-A0E3-51ED3789937B}C:\program files (x86)\tiger woods 12\tworuntimestandalone.exe] => (Allow) C:\program files (x86)\tiger woods 12\tworuntimestandalone.exe FirewallRules: [TCP Query User{A271D934-8D3B-49C5-A3F0-430B88F56C5F}C:\program files (x86)\tiger woods 12\tworuntimestandalone.exe] => (Allow) C:\program files (x86)\tiger woods 12\tworuntimestandalone.exe FirewallRules: [UDP Query User{312B70B8-BECA-4057-A340-C8745BB8CC59}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [TCP Query User{B7C07DAD-55E4-437A-B24F-84A379AB571F}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [UDP Query User{CBC40A12-10BC-42B6-891D-335DE5CC3CCA}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe FirewallRules: [TCP Query User{2F5375DD-3015-48A3-B293-FE7AD2719AD7}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe FirewallRules: [{2C2D4596-3B4F-4FD4-BD8F-C1FC014CB7A4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6D4D4452-2AD0-4B8C-8F94-0362A07535BC}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\player\ace_player.exe FirewallRules: [{2A80C5BA-48BB-4598-A65D-BB012BA97B86}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\player\ace_player.exe FirewallRules: [{6D2557F5-8633-41A2-BF7B-7579BEEE8316}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\player\ace_player.exe FirewallRules: [{77A1EA7C-8436-45B1-BCB6-2C7B20DCD65D}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\player\ace_player.exe FirewallRules: [{8B386330-1C11-46A6-A025-9B35787D6652}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{3F98BE9B-2E28-405F-945B-274A3537A16B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A6F8DCCC-EFAB-43C1-8B55-7866D630B6DF}] => (Allow) C:\Program Files (x86)\Twonky\TwonkyServer\twonkyserver.exe FirewallRules: [{0E749867-706E-4299-9798-A960BB08196B}] => (Allow) C:\Program Files (x86)\Twonky\TwonkyServer\twonkyserver.exe FirewallRules: [{1657232F-CB56-4016-9659-C0704A5EE549}] => (Allow) C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe FirewallRules: [{618CD874-9338-4B13-80CC-57B4D811DFBC}] => (Allow) C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe FirewallRules: [{5626A57A-DFA7-4C72-B2A7-74C19968449B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{0774CC03-580C-41A5-8F5E-2C718CF067F8}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{F29CC932-A7A9-4851-8416-1CBECD26405C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{4BB28828-E2B5-417F-98AA-BB7EDFEE7A4A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{914470F9-03D4-430A-8E35-3260B2EDA9F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{15295A0F-90C7-4EDC-BA13-6FAA4B3D96FC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{0371ACAA-954C-4808-B141-3B26E1FA7C7E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8B2823E8-A57A-462C-AF92-2F2286A98FA6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{E5C56F86-8085-4F08-8BD3-74A594447B6C}] => (Allow) C:\Program Files (x86)\Sitecom\WiFi USB adapter N300 Driver and Utility\RtWLan.exe FirewallRules: [{6FA1249C-3FBF-44B7-8193-A97441A3C056}] => (Allow) C:\Program Files (x86)\Sitecom\WiFi USB adapter N300 Driver and Utility\RtWLan.exe FirewallRules: [{B55E9D9B-8AE7-49FC-9886-A474033579B5}] => (Allow) LPort=1542 FirewallRules: [{4B445570-B424-45CA-A2EE-BAF1D1432874}] => (Allow) LPort=1542 FirewallRules: [{2D29ACF5-F1B1-420B-A429-25F374F8E197}] => (Allow) LPort=53 FirewallRules: [{64D727EB-4DE1-49CD-91EE-52EB847CC244}] => (Allow) LPort=67 FirewallRules: [{962DE5F0-633F-4967-8BF8-504913883629}] => (Allow) LPort=68 FirewallRules: [{4E02A188-3FD2-409F-90B8-54FAA0A7DACC}] => (Allow) LPort=53 FirewallRules: [{EBA340F6-7D27-400B-A986-7ED9F1E171A7}] => (Allow) LPort=53 FirewallRules: [{DCD69107-257C-4F30-BD4D-FB57CA2985F1}] => (Allow) C:\Program Files (x86)\Sitecom\WiFi USB adapter N300 Driver and Utility\Rtldhcp.exe FirewallRules: [{1F055E83-8663-4B3D-98BB-E7AD54CAACD1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{F2DE4512-9962-4437-A32F-2D2075D8BD7F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{7EBF1689-8105-479C-8CBB-E73E7E98BD3D}] => (Allow) C:\Program Files\Vuze\Azureus.exe FirewallRules: [{B0EC9499-1C18-4C6B-BF60-A3269D89EF28}] => (Allow) C:\Program Files\Vuze\Azureus.exe FirewallRules: [{F3F5FA73-DB45-4D0E-9C08-320765933367}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{31905BBA-F5B0-4F5B-8F41-6973F675CC7D}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{4F80BE62-C5E5-4171-B210-E10038F4B8E9}] => (Allow) LPort=8298 FirewallRules: [{73D77631-C68C-4E86-8A08-3D13AEE5AF62}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{83371EE7-D8B3-42C5-A01A-671FB230E4A5}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{738E77C7-844C-43C6-AEBA-66D31360390E}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe FirewallRules: [{6DA52D8C-36F9-470E-86B0-34B44844FC60}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe FirewallRules: [{8C3AEA84-B206-474F-BE03-D0630D405979}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe FirewallRules: [{1BCF1B99-A57D-485F-A25F-AB963389FB40}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe FirewallRules: [{DCC3BB9A-68D0-472F-9A59-09C0503FFAEF}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe FirewallRules: [{C38557F7-7886-411D-B257-07C101B03C7A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe FirewallRules: [{F1767571-83BD-4AFD-8214-B58CEBBA054A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe FirewallRules: [{2FD14BAA-D6FC-4445-9845-F907B6C42ED4}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe FirewallRules: [{CC58052F-8330-4BFE-8612-50E11A5410A5}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe FirewallRules: [{F8519CB9-0047-4825-BBD2-AC6C1562FC3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe FirewallRules: [TCP Query User{FF4042B7-1EB3-4697-8C68-E47C63EF9FCE}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [UDP Query User{AEA1EACB-B039-4DBB-9685-290D2E504BB5}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe FirewallRules: [{157C1730-CBE7-44D6-BF83-6C6DACB5262A}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{815836CA-B603-4DFE-9F86-F4C6EA9BA78C}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{1456D852-B559-4938-AE2A-AB28D4D4BCCA}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{1CD00DD6-431A-4064-8F5F-237871E9BE3E}] => (Allow) C:\Users\Pim Kruijt\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{8F0ED773-7F60-4455-A62D-B5EF298A4FB1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{A7C20CC7-F120-436B-955A-DFDCC97D627C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{33BE3E7D-5CA6-404A-BF0B-46B3B5D0D27E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8DD9A7C7-92C7-4294-B2DD-D4E069CD9DD4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{9760381B-E236-4CC8-8C8F-F81BE312473D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A0E13C28-3457-4E5C-88D5-5F4DF09D5A68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{6A51826D-3401-4F71-B9C5-0D38611DA279}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{41A9070F-9692-4CAB-8A18-3DA9D7163E36}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E66FCAA7-2EA7-4800-B4BC-024825343DD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{99D7144D-BE84-47AA-93F4-28654BFB8C64}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{167DF1AC-97FD-49E2-9BC2-7D70AF2AB8F3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{82843E1A-B2DD-4C54-9E78-B0B19302408D}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{5B777199-5A4B-40DA-ADA1-DCD641D349DB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{77B1AA3A-0D22-49CD-95E0-CF9B672665BD}] => (Allow) LPort=2869 FirewallRules: [{CA3C900E-42FF-48E3-92F5-A8618EA1A201}] => (Allow) LPort=1900 FirewallRules: [{C5EABD3A-2F63-4014-BFFA-BD5456DD552B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 09-05-2016 15:45:53 DirectX is geïnstalleerd. 11-05-2016 14:04:01 Installed Samsung Kies3 12-05-2016 14:13:43 Removed Skype™ 7.23 21-05-2016 09:37:28 Gepland controlepunt ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (05/25/2016 09:39:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 84703 Error: (05/25/2016 09:39:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 84703 Error: (05/25/2016 09:39:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/25/2016 09:39:38 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 76250 Error: (05/25/2016 09:39:38 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 76250 Error: (05/25/2016 09:39:38 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/25/2016 09:39:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 67797 Error: (05/25/2016 09:39:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 67797 Error: (05/25/2016 09:39:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/25/2016 09:39:21 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 59344 Systeemfouten: ============= Error: (05/26/2016 11:13:41 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:58:48 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:58:48 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:59 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:59 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:59 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:59 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:58 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:58 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/26/2016 10:55:58 AM) (Source: DCOM) (EventID: 10016) (User: PIMKRUIJT-PC) Description: standaard voor deze computerLokaalActiveren{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PimKruijt-PCPim KruijtS-1-5-21-3131392693-243484964-1164385804-1000LocalHost (via LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 CodeIntegrity: =================================== Date: 2016-05-18 15:22:36.675 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-16 00:04:29.645 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 10:23:47.144 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-14 09:07:45.191 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 17:13:33.179 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 16:58:50.362 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-12 16:56:43.452 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-12 16:56:43.352 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-12 16:56:43.252 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-05-12 16:56:43.152 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz Percentage geheugen in gebruik: 47% Totaal fysiek RAM-geheugen: 4077.24 MB Beschikbaar fysiek RAM-geheugen: 2137.32 MB Totaal Virtueel geheugen: 8173.24 MB Beschikbaar Virtual geheugen: 5914.04 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:931.06 GB) (Free:669.17 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)] Drive d: () (Fixed) (Total:931.07 GB) (Free:885.6 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BECABECA) Partition 1: (Active) - (Size=931.1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D6513DD8) Partition 1: (Not Active) - (Size=931.1 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ==================== Eind van Addition.txt ============================