Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 16-10-2016 Gestart door Yoke (17-10-2016 19:41:02) Gestart vanaf C:\Users\Yoke\Downloads Windows 10 Home Versie 1511 (X64) (2015-12-30 19:02:06) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-437695964-452967705-790082943-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-437695964-452967705-790082943-503 - Limited - Disabled) Gast (S-1-5-21-437695964-452967705-790082943-501 - Limited - Disabled) Yoke (S-1-5-21-437695964-452967705-790082943-1001 - Administrator - Enabled) => C:\Users\Yoke ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: Avast Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated) Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.28.3317.04403 - Alcor Micro Corp.) Alcor Micro USB Card Reader Driver (x32 Version: 20.28.3317.04403 - Alcor Micro Corp.) Hidden AMD Settings (HKLM\...\WUCCCApp) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Avast Internet Security (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite MFC-J6520DW (HKLM-x32\...\{6A367B4D-2E1C-4843-9FF0-A1DF1DEAB1E6}) (Version: 1.0.0.0 - Brother Industries, Ltd.) Catalyst Control Center Next Localization BR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization BR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden Classic Shell (HKLM\...\{D4B3454F-7529-4F5F-851D-2C36933F7D64}) (Version: 4.2.5 - IvoSoft) CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.) CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.3.2509 - CyberLink Corp.) Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3724 - CyberLink Corp.) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2301 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2524 - CyberLink Corp.) CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.4930 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd) HP Connected Music (Meridian - player) (HKU\S-1-5-21-437695964-452967705-790082943-1001\...\HPConnectedMusic) (Version: 1.1 (build 128) hp - Meridian Audio Ltd) HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6263.4289 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.3.34.7 - HP) HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{2C355CC7-B163-4A89-8970-6C7B60FDA88A}) (Version: 12.5.32.37 - HP) HydraVision (x32 Version: 4.2.248.0 - Advanced Micro Devices, Inc.) Hidden IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Malwarebytes Anti-Malware versie 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 49.0.1 (x86 nl) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 nl)) (Version: 49.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Nuance PaperPort 12 (HKLM-x32\...\{869FCC6C-5669-4B0B-827E-2BBAACD88A87}) (Version: 12.1.0006 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.) PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.41.17507 - pdfforge GmbH) PDF Architect 2 Asian Fonts Pack (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Convert Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Create Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Edit Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Forms Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Insert Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 OCR Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Review Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 Secure Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PDF Architect 2 View Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden PE-DESIGN NEXT (HKLM-x32\...\{041EDAC5-853E-4A10-A0C8-ED0CF7769306}) (Version: 9.30.0000 - Brother Industries, Ltd.) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros) Recovery Manager (x32 Version: 5.5.0.6208 - CyberLink Corp.) Hidden SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden Samsung i-Launcher 1.0.1.57 (HKLM-x32\...\Samsung i-Launcher) (Version: 1.0.1.57 - Samsung Electronics Co., Ltd.) Scansoft PDF Professional (x32 Version: - ) Hidden Silhouette Studio (HKLM-x32\...\{96E3C756-D2FB-45CC-A71C-12D7319660EA}) (Version: 3.6.057 - Silhouette America) Software voor Intel® Chipset-apparaten (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-437695964-452967705-790082943-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Yoke\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {07743047-D879-4F86-8539-DB893DA25C9C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated) Task: {0A23405A-8669-4C83-BDBB-0656503D75F5} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-01] (CyberLink) Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {40E1B1E5-ABD1-4F26-9AE4-2E8CBC8F63FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {5CBA3487-A022-4400-9DF0-0F703B30C984} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-08-18] (HP Inc.) Task: {607DCC69-D5C9-4A77-A0FB-D80660B6B9F4} - System32\Tasks\HPCeeScheduleForYoke => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {78CBCF5D-4C74-4C57-85FB-2D860193C1EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) Task: {7F9D889A-C9ED-4F21-84B9-76E50319D377} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-11] (Adobe Systems Incorporated) Task: {804A0706-F846-46AA-950F-B73A0F2715F1} - System32\Tasks\{6B78F197-84A6-477C-AA20-6CF98BBD9F05} => pcalua.exe -a "C:\ProgramData\PDF Architect 2\Installation\PDFArchitect2Installer.exe" -c /uninstall Task: {8E3E8301-5E09-4C60-AAEA-FF13A04CCC26} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Yoke\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-25] (Microsoft Corporation) Task: {9DAB3F8C-48A0-4EB4-BA8F-C635EE015AE3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.) Task: {B60F2969-A7D8-418D-987D-1CB04265121A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-10-15] (Microsoft Corporation) Task: {B6C38F61-4E2F-4915-8776-C7728930B1D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) Task: {C103B5E1-838D-4F23-80C9-BCCDBA1CACEB} - System32\Tasks\SafeZone scheduled Autoupdate 1455017695 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software) Task: {C36BE4E1-12CC-46E7-BF6F-A891273E1AD8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-19] (AVAST Software) Task: {D703AA8D-9D05-4296-A013-9BB48FFA3FFF} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-11-01] (CyberLink Corp.) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForYoke.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-09-18 15:18 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-18 15:18 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-08-25 12:06 - 2016-08-25 12:06 - 01864384 _____ () C:\Users\Yoke\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll 2016-04-19 11:09 - 2016-04-19 11:09 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2015-12-30 17:07 - 2012-10-12 06:04 - 00376448 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll 2015-12-30 17:07 - 2012-11-02 20:32 - 00499264 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll 2015-12-30 23:10 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-07-13 11:59 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-09-18 15:16 - 2016-09-07 06:15 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-09-18 15:16 - 2016-09-07 06:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-09-18 15:16 - 2016-09-07 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-09-18 15:17 - 2016-09-07 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2016-06-24 12:51 - 2016-06-24 12:51 - 00138752 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe 2016-10-03 11:50 - 2016-10-03 11:50 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-10-17 17:32 - 2016-10-17 17:32 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101701\algo.dll 2016-10-03 11:50 - 2016-10-03 11:50 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-04-19 11:09 - 2016-04-19 11:09 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 11:09 - 2016-04-19 11:09 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2014-01-08 02:26 - 2012-06-08 05:34 - 00627216 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll 2012-06-08 13:34 - 2012-06-08 13:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll 2016-08-25 12:06 - 2016-08-25 12:06 - 01383616 _____ () C:\Users\Yoke\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll 2016-08-25 12:06 - 2016-08-25 12:06 - 00118976 _____ () C:\Users\Yoke\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll 2016-01-06 19:10 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2016-10-03 11:50 - 2016-10-03 11:50 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2012-07-26 07:26 - 2016-10-14 21:50 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-437695964-452967705-790082943-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\HP\HP_Svinoya_Norway_Sunset.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{B2259B75-E785-4AA4-9B05-E97533FFE524}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{3DDF001F-500F-4DFC-B911-AF299AEFECFA}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{6775E49B-E497-4B19-884F-40B4B92CE19F}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{9D92EF4E-AB11-46EB-AE14-BFED56884A55}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{50D2EA82-FDE8-4EFE-920D-CB6E86E7D207}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D45A115E-F36C-406B-B20D-4D2A3ACD4F70}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C66B5987-68E7-4A49-8CC5-4DD1CBBB03C3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F1CC7A82-CC96-40ED-AFAC-DDBFF2B19736}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe FirewallRules: [{7F2C9DCF-3F80-42A2-9E17-BABB59BCF2DD}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe FirewallRules: [{2ED782B4-BC85-4157-88C5-2AE8F139F8DF}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe FirewallRules: [{082AA58C-8703-4678-8EF9-6DB34ADE7300}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe FirewallRules: [{5E4FC8AF-98FE-4CAF-A50B-6E5C5BF2A68F}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe FirewallRules: [{5F813910-FCAA-4930-871F-5447F138EA37}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe FirewallRules: [{A41D0CFE-F72D-4111-85A9-98137CC629F5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A8AFC465-5410-4EB2-8D14-8A0488659645}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{8EBF8836-E58E-4B6A-A8F4-AD8D5DBDFD79}] => (Allow) C:\Program Files (x86)\Samsung\PC Auto Backup\WiselinkPro.exe FirewallRules: [{BCD58994-4D39-4937-A339-E45A0A080B20}] => (Allow) C:\Program Files (x86)\Samsung\PC Auto Backup\WiselinkPro.exe FirewallRules: [{7CDAD1B1-043F-438D-88A4-7292291F5770}] => (Allow) C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [{E559BB11-E338-44C2-8541-0CF9DC87027F}] => (Allow) C:\Program Files (x86)\Samsung\PC Auto Backup\http_ss_win_pro.exe FirewallRules: [{1C0AEC1A-49B3-4AEC-B4D3-F65F535BBB60}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{64064002-03BC-4F4B-B13B-EB8CADF6BF3E}] => (Allow) LPort=2869 FirewallRules: [{D34DEFC9-08AA-4EF7-948C-52596348DFFB}] => (Allow) LPort=1900 ==================== Herstelpunten ========================= 14-10-2016 22:17:28 End of disinfection ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (10/17/2016 07:34:57 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 07:22:22 PM) (Source: ESENT) (EventID: 412) (User: ) Description: svchost (1428) Kan de header van logboekbestand C:\Users\Yoke\AppData\Local\Comms\UnistoreDB\USS.log niet lezen. Fout -4001. Error: (10/17/2016 04:57:11 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Systeemfouten: ============= Error: (10/17/2016 07:35:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80004005: Skype Preview. Error: (10/17/2016 07:34:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_30f81-service is gestopt met de volgende foutcode: Kan de aangevraagde bewerking niet voltooien vanwege een fatale mediumfout of een beschadigde gegevensstructuur op de schijf. . Error: (10/17/2016 07:22:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_30f81-service is gestopt met de volgende foutcode: Kan de aangevraagde bewerking niet voltooien vanwege een fatale mediumfout of een beschadigde gegevensstructuur op de schijf. . Error: (10/17/2016 07:22:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_30f81-service is gestopt met de volgende foutcode: Kan de aangevraagde bewerking niet voltooien vanwege een fatale mediumfout of een beschadigde gegevensstructuur op de schijf. . Error: (10/17/2016 07:22:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_30f81-service is gestopt met de volgende foutcode: Klasse is niet geregistreerd . Error: (10/17/2016 07:19:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Storage_449b607-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (10/17/2016 07:19:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Host synchroniseren_449b607-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (10/17/2016 07:13:21 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {F3B4E234-7A68-4E43-B813-E4BA55A065F6} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/17/2016 04:51:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_449b607-service is gestopt met de volgende foutcode: Kan de aangevraagde bewerking niet voltooien vanwege een fatale mediumfout of een beschadigde gegevensstructuur op de schijf. . Error: (10/17/2016 10:51:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De User Data Access_449b607-service is gestopt met de volgende foutcode: Kan de aangevraagde bewerking niet voltooien vanwege een fatale mediumfout of een beschadigde gegevensstructuur op de schijf. . CodeIntegrity: =================================== Date: 2016-10-17 19:40:20.716 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:40:20.692 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:40:20.665 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:05:02.697 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:57.738 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:50.962 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:34.025 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:14.304 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:11.013 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-10-17 19:04:04.649 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\stapo64.dll because the set of per-page image hashes could not be found on the system. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz Percentage geheugen in gebruik: 17% Totaal fysiek RAM-geheugen: 12241.24 MB Beschikbaar fysiek RAM-geheugen: 10074.52 MB Totaal Virtueel geheugen: 12641.24 MB Beschikbaar Virtual geheugen: 10402.25 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:915.3 GB) (Free:851.15 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] Drive d: (Recovery Image) (Fixed) (Total:13.95 GB) (Free:0.64 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 02DC4FAE) Partition: GPT. ==================== Eind van Addition.txt ============================