Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 04-11-2016 Gestart door Gebruiker (05-11-2016 20:23:18) Gestart vanaf C:\Users\Gebruiker\Downloads Windows 10 Home Versie 1607 (X64) (2016-10-06 14:50:49) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3575262360-258679368-1463809348-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3575262360-258679368-1463809348-503 - Limited - Disabled) Gast (S-1-5-21-3575262360-258679368-1463809348-501 - Limited - Disabled) Gebruiker (S-1-5-21-3575262360-258679368-1463809348-1001 - Administrator - Enabled) => C:\Users\Gebruiker ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) 3M Products Update version 2012-05 for Microsoft Office 2010 (HKLM-x32\...\{605540BB-36B3-49F0-96D8-B760CBD6E0E8}_is1) (Version: - 3M Company) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Aangifte inkomstenbelasting 2013 (HKLM-x32\...\Aangifte inkomstenbelasting 2013) (Version: - Belastingdienst) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.) AIO_CDA_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden AIO_CDA_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden Amazon 1Button App (x32 Version: 2.3.4 - Amazon) Hidden <==== AANDACHT Amazon Assistant (HKLM-x32\...\Amazon Assistant) (Version: 2.3.4 - Amazon) <==== AANDACHT ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Avast Internet Security (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden C5100 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden c5100_Help (x32 Version: 82.0.256.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.2.0.10 - Citrix Systems, Inc.) Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden Elevated Installer (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden Garmin Express (HKLM-x32\...\{855d8086-4275-4bd3-a7a8-b44da3a56d7a}) (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{d74c733b-9216-49f5-ae3a-14bf3a3d66f5}) (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Garmin Express (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Photosmart All-In-One Driver Software (HKLM\...\{4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2}) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Assistant (HKLM-x32\...\{56D27851-B9A6-430F-875A-E2D7A3802C7B}) (Version: 8.3.34.7 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{4CBA8ECF-0519-4583-91ED-F098522245EB}) (Version: 12.5.32.37 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Microsoft Office Language Pack 2010 - Dutch/Nederlands (HKLM\...\Office14.OMUI.nl-nl) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) MiniTool Power Data Recovery Free Edition 7.0 (HKLM\...\MiniTool Power Data Recovery Free Edition_is1) (Version: - MiniTool Solution Ltd.) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP) Online Plug-in (x32 Version: 14.2.0.10 - Citrix Systems, Inc.) Hidden PSTScanner (HKLM\...\{AD39F8BE-AB2E-4160-80D9-D9150E65A294}_is1) (Version: 2.5.0.10 - ) Ralink RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.14.0 - Ralink) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Self-service Plug-in (x32 Version: 4.2.0.2495 - Citrix Systems, Inc.) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 64-Bit Edition (HKLM\...\{90140000-0100-0413-1000-0000000FF1CE}_Office14.OMUI.nl-nl_{D62BBB58-8FD0-4BFD-AD13-237730FE5ED7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 64-Bit Edition (Version: - Microsoft) Hidden Servicetool (HKLM-x32\...\Servicetool) (Version: 2.16.1.1043 - KPN) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Spotify (HKU\S-1-5-21-3575262360-258679368-1463809348-1001\...\Spotify) (Version: 1.0.41.375.g040056ca - Spotify AB) Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden UnHackMe 8.40 (HKLM-x32\...\UnHackMe_is1) (Version: - Greatis Software, LLC.) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3575262360-258679368-1463809348-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3575262360-258679368-1463809348-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {070FCBD4-1E35-4569-97F1-60A29CECEE52} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-10-12] (Microsoft Corporation) Task: {084CD369-F31E-4DC7-A010-CB17D82A3CDC} - \Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan -> Geen bestand <==== AANDACHT Task: {15DBF6DC-9C8D-4D18-82B2-3DE634F3283C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {17384AE7-27EA-45FA-86EB-8FA6F98E079B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {18882AAA-06CD-4D2D-9AE3-C707F5CD09A1} - \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater -> Geen bestand <==== AANDACHT Task: {21A94387-0F4C-4F82-9DC9-01D3952B57D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3A1A6566-C22A-4035-A74E-CBD4A62226E0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {3AD813B8-B488-4866-8812-25689E8FE42C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {3B716147-FA83-4EA6-ACE8-974137B9C1D7} - \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start -> Geen bestand <==== AANDACHT Task: {4A7681AF-6BBA-4868-8B45-C36161218FAD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {532010AB-70CD-4B22-AF33-5B190298D94E} - \Hewlett-Packard\HP Support Assistant\PC Health Analysis -> Geen bestand <==== AANDACHT Task: {60BF9772-58D6-4E55-90E7-644B9BBFDD95} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {66C04CB5-331B-45AD-B9A3-D30622506727} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {6F35135B-1444-4E9A-8061-55B4A1739233} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {79F7D7E8-61E8-4430-8280-53E6BE1AEF68} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {89F69D93-7C35-43B3-82CC-18037EE74211} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {9F098F26-F6D7-40CA-B8D8-F02A9FE81FB9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {A83DF10A-D28C-4565-A1D9-D08C627803C8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd) Task: {A8860FB6-BC5B-43DB-BE1A-6D852F6C1A12} - \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report -> Geen bestand <==== AANDACHT Task: {B6C753D5-5D5D-4A13-A6AB-AB76A994F937} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {BB28769A-5B51-445A-9E9F-7394325018AE} - \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources -> Geen bestand <==== AANDACHT Task: {C97DDFDF-5AD5-45AA-A116-2D58470E3170} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-08-18] (HP Inc.) Task: {ED9E84CE-B8D7-4BA1-ACC3-CEB7FD6B74EE} - \WPD\SqmUpload_S-1-5-21-3575262360-258679368-1463809348-1001 -> Geen bestand <==== AANDACHT (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-10-06 16:06 - 2016-10-06 16:06 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-05-04 08:40 - 2016-05-04 08:40 - 00137920 _____ () C:\Program Files\AVAST Software\Avast\x64\log.dll 2016-11-05 13:12 - 2016-11-05 13:12 - 00142848 ____H () C:\local64spl.dll 2016-11-05 13:12 - 2016-11-05 13:12 - 00142848 ____H () C:\_\local64spl.dll 2016-10-06 16:06 - 2016-10-06 16:06 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-06 15:55 - 2016-10-06 15:55 - 01864384 _____ () C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-10-06 16:06 - 2016-10-06 16:06 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-10-12 17:34 - 2016-10-05 10:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-10-28 14:50 - 2016-10-15 04:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-10-28 14:50 - 2016-10-15 04:34 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-10-28 14:50 - 2016-10-15 04:34 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-10-28 14:50 - 2016-10-15 04:34 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-10-28 14:50 - 2016-10-15 04:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-05-27 14:50 - 2016-11-01 23:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe 2016-11-05 12:57 - 2016-11-05 12:59 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-11-05 12:57 - 2016-11-05 12:59 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-11-05 12:57 - 2016-11-05 12:59 - 41608704 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-08-16 09:39 - 2016-08-16 09:39 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-08-16 09:39 - 2016-08-16 09:39 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-06-06 15:07 - 2016-06-06 15:07 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll 2016-03-04 11:08 - 2016-03-04 11:08 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf 2015-11-11 02:49 - 2015-11-11 02:49 - 01557160 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2016-05-04 08:40 - 2016-05-04 08:40 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2016-05-04 08:40 - 2016-05-04 08:40 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-10-25 11:36 - 2016-10-25 11:36 - 00073216 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\FixBootSector.dll 2015-12-22 17:05 - 2015-12-22 17:05 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-05-04 08:40 - 2016-05-04 08:40 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-11-05 18:11 - 2016-11-05 18:11 - 03130832 _____ () C:\Program Files\AVAST Software\Avast\defs\16110500\algo.dll 2016-05-04 08:40 - 2016-05-04 08:40 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll 2016-10-06 16:06 - 2016-10-06 16:06 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\WINDOWS\system32\drivers:ucdrv-x64.sys [20324] AlternateDataStreams: C:\WINDOWS\system32\drivers:x64 [360904] AlternateDataStreams: C:\WINDOWS\system32\drivers:x86 [1157922] AlternateDataStreams: C:\ProgramData\TEMP:BF31A799 [126] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zdwfp => ""="Driver" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-3575262360-258679368-1463809348-1001\...\amazon.com -> hxxps://amazon.com ==================== Hosts inhoud: ========================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 14:25 - 2016-11-04 21:17 - 00001188 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3575262360-258679368-1463809348-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gebruiker\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{0ace688e-54a9-4d9c-bc70-c78b9473bf38}.jpg DNS Servers: 192.168.2.254 - 195.121.1.34 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run32: => "ConnectionCenter" HKLM\...\StartupApproved\Run32: => "CitrixReceiver" HKU\S-1-5-21-3575262360-258679368-1463809348-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_5FEA36A39174F28C3634662B2D565CAA" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{67A3E2EE-E0EB-4D70-9BD6-5C5B9A295046}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\PDF_Viewer\m2PDFViewer.exe FirewallRules: [{89C78B2B-B32C-4A73-975A-45D38B8403FF}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\PDF_Viewer\m2PDFViewer.exe FirewallRules: [{64B5DE5B-F99F-4BBA-A9CA-432290FBECBD}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\Update\M2Updater.exe FirewallRules: [{08A70D66-4B3D-48E9-A196-03188BD4C7CC}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\Update\M2Updater.exe FirewallRules: [{665E116D-6B66-4455-B03E-778A93060D2A}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\WLAN\KPN_WNA.exe FirewallRules: [{1C15BC4F-B20E-4DED-98C8-793FD19241BA}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\WLAN\KPN_WNA.exe FirewallRules: [{002BFDBF-44B2-4361-AD71-600D06C6477D}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool.exe FirewallRules: [{AB50BA5A-F62F-42FA-824D-C81C464D6220}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool.exe FirewallRules: [{32D6AA63-7793-4BD6-BAED-4C8128A5C072}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool_Repair.exe FirewallRules: [{226EE05F-CED2-4A38-8131-E983B8780145}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool_Repair.exe FirewallRules: [{0974F80F-746A-46E4-9440-6714D42F0E69}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool_Launcher.exe FirewallRules: [{70F1C75D-9D91-4C7A-9A27-02094F3753C1}] => (Allow) C:\Program Files (x86)\KPN\Servicetool\KPNServicetool_Launcher.exe FirewallRules: [{274322A7-F818-4C4E-89FC-25798A4DB92D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{A3396287-931E-4A91-A9D5-6ACBD28D7A81}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{66CB8B96-D4B6-4063-A30A-E5F23FDA24FF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{12F8FAD8-F8FD-42E1-914C-9EFC57A27C5F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{36769CE0-DB65-42EF-B4BF-8B7D4926C049}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaUI.exe FirewallRules: [{7C3B411D-AB0B-4EF1-9ED7-D509D9A48DBF}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaUI.exe FirewallRules: [{AB717B96-B2E3-4609-9EC1-3B55DD28D99A}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe FirewallRules: [{743B2563-86FE-49A2-9450-C075742DD9A5}] => (Allow) C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe FirewallRules: [TCP Query User{22E3F588-3FBD-4CFF-B51F-7FD39EA86192}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{5F43F4A5-D913-4AE1-BC95-F2A3CEC36A8F}] => (Allow) C:\Users\Gebruiker\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [UDP Query User{D130D588-EA85-430D-83D4-B83AA20456D3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{8BEF0CB7-E937-4E42-83CE-900E7A8928FC}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{916ED52D-9F22-4371-8C39-DA109831D77C}C:\users\gebruiker\appdata\local\apps\2.0\mxa6x1my.bht\nhd4yq7r.v74\lego...app_8c161902ccf9ca2a_0001.0000_bc532d3a075e6a08\lmo.exe] => (Block) C:\users\gebruiker\appdata\local\apps\2.0\mxa6x1my.bht\nhd4yq7r.v74\lego...app_8c161902ccf9ca2a_0001.0000_bc532d3a075e6a08\lmo.exe FirewallRules: [TCP Query User{F812021D-7837-4FC0-B471-18CF11D0BE79}C:\users\gebruiker\appdata\local\apps\2.0\mxa6x1my.bht\nhd4yq7r.v74\lego...app_8c161902ccf9ca2a_0001.0000_bc532d3a075e6a08\lmo.exe] => (Block) C:\users\gebruiker\appdata\local\apps\2.0\mxa6x1my.bht\nhd4yq7r.v74\lego...app_8c161902ccf9ca2a_0001.0000_bc532d3a075e6a08\lmo.exe FirewallRules: [{C4A0848F-17D9-4475-817B-18E9BC952505}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS1448\HPDiagnosticCoreUI.exe FirewallRules: [{534962AA-3C17-48B8-9450-DE1DB732BA48}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS1448\HPDiagnosticCoreUI.exe FirewallRules: [{CCF58DA1-1B28-4516-8691-8E95DC35C8F8}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{9FE86A9B-4CB1-434B-A82B-6ABD71DFD4C0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{99F33E97-8AC2-48F9-8836-E00AE180FCBD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{E5D9D469-CE59-4F18-BA59-DBBFCA547A66}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{5C45E442-9ECF-4045-A64A-F5514862F4DD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{82A48681-3EC6-4067-92D0-161D81155CA5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{76FFD737-F450-4309-9CD5-A5ABBFA95C11}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{6EE9DDF6-CA16-4A35-A78E-9B4BDDF3619F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{EE053537-2439-4599-A6B5-AF76EB6C8787}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe FirewallRules: [{7DE32EF9-2F6B-4A2D-B5E2-C1F2C7A4D8DB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{C9CBEBAD-0D8B-411F-A0FA-9624F9E64E6D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{60C4DF29-FD8D-4C11-956D-1403DA7E7788}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{8B712450-FF1A-49D4-9824-376A41DB2229}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{EE758ECB-C436-490E-A8A6-4C2C850630E1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{02FD0E58-F2E3-401F-A5A3-FE4781C569C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{513BCB96-1A08-4F9E-8517-D9153C7FB2F4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{27D4806A-0A7E-404A-A3F8-B69C7FBA1B8C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{DDECD7CC-669F-4A3C-B8C7-34FAE6CFACC0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{D177B0E0-96F8-417F-81FA-B86CB75FC258}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{F2F105DD-AB0C-4076-8A22-4CBC03B454C2}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS3B38\HPDiagnosticCoreUI.exe FirewallRules: [{AF4A7FE6-0ED3-4E99-9FE1-B3E3EFB60945}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS3B38\HPDiagnosticCoreUI.exe FirewallRules: [UDP Query User{98114A59-7304-4873-8C43-6B130D75F03E}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [TCP Query User{9BA01458-EF66-46A8-872A-1E4E07BC8BF4}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{CF9909F0-D078-4B6E-984B-5898B8B8F530}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFile.exe FirewallRules: [{56D225A1-D24B-4782-B998-721C5144E422}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFile.exe FirewallRules: [{BD925610-FC69-4CCF-9929-A747891959C2}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{0F4C77DB-F4AD-4426-A0E5-E59C0B306D48}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{05A28AD7-C04D-4E8B-B950-6B8106A4C567}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{E9ACE4B0-4E91-46CC-89EA-3DBBD5789FCA}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [TCP Query User{9F6CB12F-A127-46A7-ACFC-DA11A3FAD913}C:\users\gebruiker\appdata\local\roblox\versions\version-6595ec72f2ec4e67\robloxstudiobeta.exe] => (Block) C:\users\gebruiker\appdata\local\roblox\versions\version-6595ec72f2ec4e67\robloxstudiobeta.exe FirewallRules: [UDP Query User{73F4D45D-B770-4BA5-95FF-3A7BFE04C5B9}C:\users\gebruiker\appdata\local\roblox\versions\version-6595ec72f2ec4e67\robloxstudiobeta.exe] => (Block) C:\users\gebruiker\appdata\local\roblox\versions\version-6595ec72f2ec4e67\robloxstudiobeta.exe FirewallRules: [{6C75FA58-D25C-4676-BB2F-C5C96676EB64}] => (Allow) C:\Program Files (x86)\WinZip Driver Updater\winzipdu.exe FirewallRules: [{F0379B3C-9361-481D-BF88-20A52F559E71}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS0A38\HPDiagnosticCoreUI.exe FirewallRules: [{59BB45DA-0C27-401B-905C-3E0A6BD35235}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS0A38\HPDiagnosticCoreUI.exe FirewallRules: [{41C295B3-36FF-464D-9D66-493DACA540BB}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS0B4D\HPDiagnosticCoreUI.exe FirewallRules: [{ED0A6813-0C81-45CC-AD08-E667565ED780}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS0B4D\HPDiagnosticCoreUI.exe FirewallRules: [{CE18D467-1931-486F-82C8-B06A89E407E4}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS5036\HPDiagnosticCoreUI.exe FirewallRules: [{83BA0BF6-9D92-4D84-9A3E-6EEF8D30450C}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS5036\HPDiagnosticCoreUI.exe FirewallRules: [{8B2A753E-E6FE-439E-8C29-BA7F4811AF97}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS5121\HPDiagnosticCoreUI.exe FirewallRules: [{B0A94D4B-81DD-42E8-B925-5AC3E39DF4F4}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS5121\HPDiagnosticCoreUI.exe FirewallRules: [{4F519F87-AF88-46C6-AEA4-FDBB48AB7880}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS283E\HPDiagnosticCoreUI.exe FirewallRules: [{98535566-FCC9-4E91-88EF-219C1E963249}] => (Allow) C:\Users\Gebruiker\AppData\Local\Temp\7zS283E\HPDiagnosticCoreUI.exe FirewallRules: [{9B1413EC-6690-4071-BA0F-8351641312A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{D28128F2-71F8-4366-933F-98A031CA10F4}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{5B6A7587-B865-4AF7-8153-9051B8E684BB}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe FirewallRules: [{563BA63F-D16C-4ACD-9336-899173192257}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{205599D0-F785-4100-828B-378FEE3F8114}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe FirewallRules: [{ECC5FD58-055C-469C-A44F-B1FC573DB898}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe FirewallRules: [{38DAE354-1623-46FF-B001-9F940FDF09FA}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe ==================== Herstelpunten ========================= 16-10-2016 13:03:29 Installed HP Support Solutions Framework 25-10-2016 15:56:34 Gepland controlepunt 02-11-2016 13:24:52 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (11/05/2016 08:20:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: microsoftedgecp.exe, versie: 11.0.14393.82, tijdstempel: 0x57a55786 Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x00007ff7d29e8424 Id van proces met fout: 0x22fc Starttijd van toepassing met fout: 0x01d23799a3d33cfa Pad naar toepassing met fout: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Pad naar module met fout: unknown Rapport-id: 3fb6b8a0-de60-435b-9915-fd768987b7a1 Volledige pakketnaam met fout: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: MicrosoftEdge Error: (11/05/2016 08:20:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: microsoftedgecp.exe, versie: 11.0.14393.82, tijdstempel: 0x57a55786 Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutmarge: 0x00007ff7d29e8424 Id van proces met fout: 0x19f0 Starttijd van toepassing met fout: 0x01d23799a2bb63a4 Pad naar toepassing met fout: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Pad naar module met fout: unknown Rapport-id: 8884d971-69c0-401d-8ddd-d41dea0038b9 Volledige pakketnaam met fout: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: MicrosoftEdge Error: (11/05/2016 07:57:21 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\x64\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="amd64",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 07:57:20 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="x86",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 02:32:08 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\x64\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="amd64",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 02:32:05 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="x86",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 02:02:23 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\x64\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="amd64",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 02:02:22 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\avast software\avast\CrtCheck.exe' niet maken. Kan afhankelijke assembly Avast.VC140.CRT,processorArchitecture="x86",publicKeyToken="fcc99ee6193ebbca",type="win32",version="14.0.23918.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (11/05/2016 12:56:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: AvastSvc.exe, versie: 11.2.2738.0, tijdstempel: 0x571e0372 Naam van module met fout: ntdll.dll, versie: 10.0.14393.351, tijdstempel: 0x5801a3a8 Uitzonderingscode: 0xc0000374 Foutmarge: 0x000d98f1 Id van proces met fout: 0x7f0 Starttijd van toepassing met fout: 0x01d2313eb318a4b4 Pad naar toepassing met fout: C:\Program Files\AVAST Software\Avast\AvastSvc.exe Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll Rapport-id: e349506b-020b-4f5d-b683-9c94c731a34f Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (11/05/2016 12:31:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: iexplore.exe, versie: 11.0.14393.0, tijdstempel: 0x57899082 Naam van module met fout: ntdll.dll, versie: 10.0.14393.351, tijdstempel: 0x5801a3a8 Uitzonderingscode: 0xc0000409 Foutmarge: 0x00082430 Id van proces met fout: 0x53a0 Starttijd van toepassing met fout: 0x01d237581efdfdd8 Pad naar toepassing met fout: C:\Program Files (x86)\Internet Explorer\iexplore.exe Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll Rapport-id: 2eb3d933-6e9e-4076-95d4-c0a3c1fc6d0d Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Systeemfouten: ============= Error: (11/05/2016 06:12:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Avast Antivirus-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 5000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (11/05/2016 02:14:28 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (11/05/2016 02:11:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} en APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (11/05/2016 02:10:55 PM) (Source: bowser) (EventID: 8016) (User: ) Description: Het browserstuurprogramma heeft te veel ongeldige datagrammen van de externe computer EXPERIA ontvangen om PETER op transport NetBT_Tcpip_{BBDAE197-247C-4EE3-BAC3-E5305C726919} te kunnen benoemen. Raadpleeg het datagram voor verdere gegevens. Er worden pas weer gebeurtenissen gegenereerd nadat de herstelfrequentie is verlopen. Error: (11/05/2016 02:10:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De Arakosatuhph-service is gestopt met de volgende foutcode: Kan opgegeven module niet vinden. . Error: (11/05/2016 02:10:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De zigipyro-service kan vanwege de volgende fout niet worden gestart: Toepassing zigipyro kan niet worden uitgevoerd in Win32-modus. Error: (11/05/2016 02:10:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De UCBrowserSvc-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (11/05/2016 02:06:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De UC浏览器基础服务-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (11/05/2016 02:06:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Double Spaced Firewall-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (11/05/2016 02:06:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Telephone Square Bracket-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. CodeIntegrity: =================================== Date: 2016-10-30 12:20:02.360 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:55:31.932 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:55:31.931 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:55:31.928 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:55:31.547 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:55:31.504 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-14 19:31:48.091 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-13 16:47:06.891 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-07 18:43:49.738 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-07 18:43:49.672 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz Percentage geheugen in gebruik: 43% Totaal fysiek RAM-geheugen: 8070.08 MB Beschikbaar fysiek RAM-geheugen: 4599.59 MB Totaal Virtueel geheugen: 9350.08 MB Beschikbaar Virtual geheugen: 5754.81 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:1846.97 GB) (Free:1338.37 GB) NTFS Drive g: (oude schijf) (Fixed) (Total:698.63 GB) (Free:577.72 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 1863 GB) (Disk ID: A5524D03) Partition: GPT. ======================================================== Disk: 1 (Size: 698.6 GB) (Disk ID: 27F827F8) Partition 1: (Active) - (Size=698.6 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================