Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 01-01-2017
Gestart door Eigenaar (05-01-2017 10:37:21)
Gestart vanaf C:\Users\Eigenaar\Downloads
Windows 10 Pro Versie 1607 (X64) (2016-10-14 17:18:03)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-359008621-143019482-330380727-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-359008621-143019482-330380727-503 - Limited - Disabled)
Eigenaar (S-1-5-21-359008621-143019482-330380727-1000 - Administrator - Enabled) => C:\Users\Eigenaar
Gast (S-1-5-21-359008621-143019482-330380727-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-359008621-143019482-330380727-1003 - Limited - Enabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Malwarebytes (Enabled - Out of date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Out of date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2108.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.2108.00 - CyberLink Corp.) Hidden
Acronis True Image 2015 (HKLM-x32\...\{37CCA8DF-DC5A-4DB9-B714-213EA567EEBC}Visible) (Version: 18.0.6615 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6615 - Acronis) Hidden
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
Albelli.be Fotoboeken (HKU\S-1-5-21-359008621-143019482-330380727-1000\...\{C16DFB31-4A09-474E-AF61-02AFB3008763}_is1) (Version: 11.0.2.1565 - Albelli)
Albelli.be Fotoboeken (HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\{C16DFB31-4A09-474E-AF61-02AFB3008763}_is1) (Version: 11.0.2.1565 - Albelli)
Albelli.be Fotoboeken (HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\{C16DFB31-4A09-474E-AF61-02AFB3008763}_is1) (Version: 11.0.2.1565 - Albelli)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.212 - Alps Electric)
ArcSoft PhotoImpression 6 (HKLM-x32\...\{D56401D6-E356-4CA5-97A3-024D666F5E5C}) (Version:  - ArcSoft)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Belgium e-ID middleware 4.1.10 (build 1698) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71698}) (Version: 4.1.1698 - Belgian Government)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Copy (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F2400_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)
DolbyFiles (x32 Version: 2.0 - Nero AG) Hidden
ETDWare PS/2-X64 11.6.4.001_WHQL (HKLM\...\Elantech) (Version: 11.6.4.001 - ELAN Microelectronic Corp.)
F2400 (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F2400 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{819CA3BC-2FF8-4811-B42F-421F7BFD3559}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kruidvat fotoservice (HKLM-x32\...\Kruidvat fotoservice) (Version: 5.1.8 - CEWE Stiftung u Co. KGaA)
Malwarebytes versie 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Menu Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 (HKLM-x32\...\{5cc6bf7c-0bfd-40f1-8bc4-8658e22458d1}) (Version:  - Nero AG)
NVIDIA GeForce Experience 2.8.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.8.1.21 - NVIDIA Corporation)
NVIDIA Grafisch stuurprogramma 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.43 - NVIDIA Corporation)
NVIDIA PhysX Systeem Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OVTScanner_X64 (HKLM-x32\...\{AE09704D-9051-4C25-B940-77F889F0C93F}) (Version: 1.00.0000 - Uw bedrijfsnaam)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.85 - Realtek Semiconductor Corp.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Silhouette Studio (HKLM-x32\...\{DEDEE88E-B8E5-42D9-AD54-4FADBA227BB8}) (Version: 3.7.206 - Silhouette America)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
SoundTrax (x32 Version: 4.4.23.0 - Nero AG) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Stuurprogrammapakket voor Windows - Fedict SmartCard  (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1222 - SUPERAntiSpyware.com)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.18 - VSO Software)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Repair Toolbox version 1.7.0.0 (HKLM-x32\...\{A8D7DA31-9E70-437D-97C4-C4887752E029}_is1) (Version: 1.7.0.0 - Alexandre Miguel Canotilho Coelho)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-359008621-143019482-330380727-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {08F4966E-C7B1-41AE-8847-99D2D74231AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {09989873-5312-430A-ADAA-375584CEBE58} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT
Task: {0F55C599-1F5C-494F-BF75-484BC8B82D1B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {103311B1-E2E9-448C-9462-73D6A226F772} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1051FAD3-216D-4565-971A-79287ABA6711} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-12-16] (Microsoft Corporation)
Task: {11176932-0E8C-4698-A93D-98E1F2598A71} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {146F6941-FCB4-4555-B1ED-100565A87002} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {166D0274-72E8-4B28-9784-BF5D31BC4740} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {275B3647-37B4-4BB4-A7C9-D9F7D5F310EA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-359008621-143019482-330380727-1000UA => C:\Users\Eigenaar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {28B227F5-67E1-4096-BA3C-2D7010E18CB5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2BB81E48-C47A-4E27-9A16-9D70555D6218} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {3670C813-F282-4F49-BFA5-2177E82D840E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {3B2F3F84-8127-4D01-8AC1-0C45842BCDE0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3ED5B42A-5C4F-455A-ACDA-4964247A1F9A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT
Task: {3F47A334-2ADB-450E-B671-36F87B2784D8} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {46D58CFD-BA74-46BB-823D-700B42497AC5} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT
Task: {4A93543B-8F2F-45D0-8C12-180308D8CC70} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4E92F4A5-47A7-4C02-A126-2E2AD7C6ED81} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5766167F-055A-4029-9032-D5BA486181C1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {584F7113-B555-4D11-B7E4-1329D53FB3E6} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT
Task: {5E1F63DB-07B9-47D9-96CB-55A1824175D4} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6492A93D-7A79-4CC0-8AAB-DB3BFAB9AD98} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {667584D8-9006-4F8F-9BAB-D0A1C5D92580} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT
Task: {675737B3-D704-43B9-8925-971F8D02DB40} - System32\Tasks\AdobeAAMUpdater-1.0-Eigenaar-PC-Eigenaar => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {69F8CAB4-BBDA-4254-8A8B-92FA27D32ABF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-11-13] (AVAST Software)
Task: {6D93FF8B-0ED6-46EF-9A17-B03F470E3DEF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT
Task: {70A9D9C8-B2F4-4115-9260-6F6D70C0234C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT
Task: {71BCE97E-1844-4C66-A107-1988FAEC7D9E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {78BC3B56-8A3E-4A59-8854-15ACF9645E5C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {7D7079A7-965A-4092-8FFA-696C2BB5F256} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {80F83E81-8FF2-45B7-80BE-45CAE89063DC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Geen bestand <==== AANDACHT
Task: {826C1AE5-5032-4DBE-94E1-45C2F8781F78} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {89729834-29EA-4A27-8308-1A0F6CFB2454} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E421E1B-92A3-4B9E-8D1E-E5E1BC38348B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT
Task: {9E33F995-A85C-411F-868C-E0B48B0F0A45} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-12] (Adobe Systems Incorporated)
Task: {A2D10561-143F-4189-9728-5ADC5F26B6C2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {ABFC16FC-4BBD-49BE-A08B-5C7F8D400E24} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {B80DCD07-14B0-4026-A8FA-E8B1BBCD8571} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {B863F4A1-0379-4EAD-A7C7-A1BB6C5A3DB5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {BEAB0911-7492-4327-9352-1A6C4FBA5375} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C5B085DC-6110-40AC-954B-5F3FC1856F40} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT
Task: {D2840EA5-5101-40CA-B3D7-C04603AB68B8} - System32\Tasks\{586EF4E7-3F8C-4A58-906F-96CA45A5E9A3} => pcalua.exe -a "C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1FKY2NCF\win64_153336.exe" -d C:\Users\Eigenaar\Desktop
Task: {DB1571E9-2347-46E2-86E0-EDF16F04306D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E7129EB1-8D3F-4C76-85F4-EC2B364CC2F5} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E974487A-3AD0-46DE-BABC-0073547F730D} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EEC19195-B6BF-4509-90A8-13E005611C9C} - System32\Tasks\{D9A05660-CEB9-43E3-B2A5-1C08FECEBF59} => pcalua.exe -a "C:\Program Files (x86)\VSO\ConvertX\6\unins000.exe"
Task: {FA43C471-ECFF-4F7E-BDC8-62361033C26F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT
Task: {FAC35FC8-8D59-48D3-8494-38DC95D1BC22} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Geen bestand <==== AANDACHT
Task: {FD3443DB-FFAD-4E66-91C5-132C3E73FEBA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

ShortcutWithArgument: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\AdbIøck Plus.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=nnhdkdphjifgeidjfpcninoillbefoag

==================== Geladen Modules (gefilterd) ==============

2016-12-29 17:00 - 2016-12-14 12:55 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2016-12-29 17:00 - 2016-12-14 12:55 - 02247632 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-12-29 17:00 - 2016-12-14 12:55 - 02813904 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-15 18:44 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-10-14 17:45 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-15 18:44 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-15 18:44 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-14 18:23 - 2016-10-14 18:23 - 01864384 _____ () C:\Users\Eigenaar\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-10-14 18:35 - 2016-10-14 18:35 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-15 18:45 - 2016-12-09 10:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 12:46 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 12:46 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 12:46 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 12:46 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 12:46 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-13 21:28 - 2016-11-13 21:28 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-11-13 21:28 - 2016-11-13 21:28 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-04 20:48 - 2017-01-04 20:48 - 03132936 _____ () C:\Program Files\AVAST Software\Avast\defs\17010400\algo.dll
2015-07-21 14:50 - 2015-07-21 14:50 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-21 14:57 - 2015-07-21 14:57 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-11-28 14:28 - 2014-11-28 14:28 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2013-01-17 15:54 - 2011-12-16 10:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-01-06 16:57 - 2015-12-16 18:34 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-13 21:28 - 2016-11-13 21:28 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)

AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]

==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)

IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000\...\1001movie.com -> 1001movie.com

Er zijn 6091 Meer websites.

IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\1001movie.com -> 1001movie.com

Er zijn 6091 Meer websites.

IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\1001movie.com -> 1001movie.com

Er zijn 6091 Meer websites.


==================== Hosts inhoud: ==========================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2009-07-14 03:34 - 2016-08-29 15:58 - 00007415 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 hh-software.com
127.0.0.1 www.hh-software.com
127.0.0.1 activate.adobe.de
127.0.0.1 practivate.adobe.de
127.0.0.1 ereg.adobe.de
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 wip3.adobe.de
127.0.0.1 3dns-3.adobe.de

Er zijn 128 meer regels.


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436257\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075709812\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12312016075527361\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436429\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075709875\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12312016075527469\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-359008621-143019482-330380727-1000\Control Panel\Desktop\\Wallpaper -> c:\users\eigenaar\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{9eb2e40c-a070-4165-b44d-4c82bad66817}.jpg
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\Control Panel\Desktop\\Wallpaper -> c:\users\eigenaar\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{9eb2e40c-a070-4165-b44d-4c82bad66817}.jpg
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\Control Panel\Desktop\\Wallpaper -> c:\users\eigenaar\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{9eb2e40c-a070-4165-b44d-4c82bad66817}.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> 
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070437382\Control Panel\Desktop\\Wallpaper -> 
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075711000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 195.130.131.3 - 195.130.130.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Eigenaar^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Download.lnk => C:\Windows\pss\Download.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Eigenaar^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Schermopname en Snel starten.lnk => C:\Windows\pss\OneNote 2010 Schermopname en Snel starten.lnk.Startup
MSCONFIG\startupreg: Acronis Scheduler2Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: SAOB Monitor => C:\Program Files (x86)\Acronis\OnlineBackupStandalone\TrueImageMonitor.exe
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run: => "Apoint"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "RtHDVBg_Dolby"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "ArcSoft Connection Service"
HKU\S-1-5-21-359008621-143019482-330380727-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-359008621-143019482-330380727-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-359008621-143019482-330380727-1000\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01032017070436695\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-359008621-143019482-330380727-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01052017075710000\...\StartupApproved\Run: => "SUPERAntiSpyware"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [{4745196F-8C0C-4D46-B7AF-2F8CCEF61E93}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{93A9ACD0-C5E7-4F8B-83E0-A6D509AB91EB}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{C6EFB919-04E0-40DD-AC5C-8D4C36E3E60C}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{E58B270C-D35A-43BB-9252-ED92027C05EC}] => C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{D898ABF7-13E2-4C7A-936E-0F744C118320}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4AE48AD6-C5E1-4F5F-91ED-F09B8A8ACF3A}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{56CB07BA-4850-44CE-AF60-4CA5C20FAC7F}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{1CFF77D6-8702-4943-B35A-1F5C345C3DC3}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{32853417-A3DE-4FAB-A84E-63B3932F89C2}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{E06E4F10-5597-4B7E-B2D2-3D05AD29BE0D}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{D0E986C6-712B-42F6-BCEB-7FB670BD8880}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{8200D7D9-AB60-454E-A855-8C8310B247A7}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{1AFA3EF4-1994-40A9-9890-112E69B74702}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{F8C2EC2D-BB5B-40C9-8DC3-013BCC17ADB9}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{FED4B526-E28C-4E2D-945B-7371458D454D}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{753EDF5F-BCD4-4F79-8033-ACDFFA5F603E}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{7B3DDA9D-E7C3-472D-95E2-A8ADF3AD1C3A}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{8FBBD499-FC16-4E4F-A993-34B228C99BF7}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{0FE93F29-9FC7-49A2-A68A-1DEE0116ED91}] => C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{66CB545B-6773-433E-94B2-1A2BBEB6DA8B}] => C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{97FEF75C-87A3-48A8-96CE-D36BF3669EF9}C:\program files\internet explorer\iexplore.exe] => C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{62D49D16-C867-4971-838A-2FC68C71CD68}C:\program files\internet explorer\iexplore.exe] => C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{A59BF62D-4212-44D8-B3D8-E8A21DF8FE38}C:\program files (x86)\internet explorer\iexplore.exe] => C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{A79286A9-3DD2-47A4-9A66-68493E48A501}C:\program files (x86)\internet explorer\iexplore.exe] => C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{CF94D07B-4AF7-4260-8A4B-F97C092D2A2C}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{52378848-4B05-4A70-B5AE-E89E9BB2681A}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{EABEBA52-1115-4F8E-AE7A-1107CE3A18EF}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A7056100-2035-4A1A-B19E-A78D3DC74C1A}] => LPort=2869
FirewallRules: [{693B8E97-958A-4BDA-B86D-789AB7C57A8D}] => LPort=1900
FirewallRules: [{C31B5E39-282F-4C2D-8830-DCFEADC3F21B}] => C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe
FirewallRules: [{993F2446-AF55-48F9-8B47-AA1121A3841A}] => C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe
FirewallRules: [{2CB2D309-8432-4EAA-B427-17C1FAEB098B}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BE7AF9C6-B236-4CCA-9DC7-4C9475AFFF80}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AB4C1C02-5802-4F7F-B4B4-9F0147DF9794}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5E108617-E67E-415D-B3BB-4E96FEA41B66}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{85C14983-7EDD-47B9-B015-B04DCF35D116}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D605C607-A026-40D9-AA05-3E6485638F19}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A24226C4-984E-4A58-A725-D880A835F655}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1A0B5FD8-7D30-46B6-850A-CE37411400EF}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Herstelpunten =========================

16-12-2016 06:59:24 Windows Update
24-12-2016 17:53:05 Gepland controlepunt
02-01-2017 15:44:00 Gepland controlepunt

==================== Defecte Apparaatbeheer Apparaten =============


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (01/05/2017 10:29:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Eigenaar-PC)
Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2147023170. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (01/05/2017 08:14:24 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Toegang geweigerd.
.

Error: (01/05/2017 08:09:44 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Toegang geweigerd.
.

Error: (01/05/2017 08:07:25 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Kan activeringscontext voor C:\Program Files (x86)\Nero\Nero 9\Nero PhotoSnap\PhotoSnapViewer.exe.Manifest niet maken. Fout in manifest of beleidsbestand  op regel .
Een onderdeelversie die nodig is voor de toepassing, conflicteert met een andere onderdeelversie die reeds actief is.
Conflicterende onderdelen zijn:
Onderdeel 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Onderdeel 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.

Error: (01/05/2017 08:02:06 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Eigenaar-PC)
Description: Het pakket Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge is beëindigd omdat het onderbreken te lang duurde.

Error: (01/04/2017 10:37:40 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (9860) WebCacheLocal: Een poging het bestand C:\Users\Eigenaar\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm te openen voor lees-/schrijftoegang is mislukt. Systeemfout 32 (0x00000020): Het proces heeft geen toegang tot het bestand omdat het door een ander proces wordt gebruikt. . Tijdens het openen van het bestand treedt fout -1032 (0xfffffbf8) op.

Error: (01/04/2017 10:00:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Eigenaar-PC)
Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2147023170. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (01/04/2017 05:08:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Eigenaar-PC)
Description: Het activeren van de app Microsoft.Windows.Photos_8wekyb3d8bbwe!App is mislukt door de fout -2147023170. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (01/04/2017 01:01:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma mmc.exe, versie 10.0.14393.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 2bc8

Starttijd: 01d2668242d24429

Eindtijd: 16

Toepassingspad: C:\Windows\System32\mmc.exe

Rapport-id: 89f6d97e-d275-11e6-a5a9-9cb70df79e94

Volledige pakketnaam met fout: 

Relatieve toepassings-id van pakket met fout:

Error: (01/04/2017 11:04:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Eigenaar-PC)
Description: Het pakket Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge is beëindigd omdat het onderbreken te lang duurde.


Systeemfouten:
=============
Error: (01/05/2017 08:35:15 AM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/05/2017 08:01:51 AM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/05/2017 07:57:13 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 en APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/05/2017 07:57:13 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 en APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/05/2017 07:57:13 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 en APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/04/2017 10:50:24 PM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/04/2017 10:46:38 PM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/04/2017 10:38:12 PM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/04/2017 10:35:54 PM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.

Error: (01/04/2017 09:07:46 PM) (Source: DCOM) (EventID: 10016) (User: Eigenaar-PC)
Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 en APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 aan de gebruiker Eigenaar-PC\Eigenaar SID (S-1-5-21-359008621-143019482-330380727-1000) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services.


CodeIntegrity:
===================================
  Date: 2016-12-17 18:50:11.907
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:11.878
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:11.812
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:11.677
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:11.639
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:11.583
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:09.592
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:50:08.879
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:45:04.016
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

  Date: 2016-12-17 18:45:03.990
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Geheugen info =========================== 

Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage geheugen in gebruik: 37%
Totaal fysiek RAM-geheugen: 8030.35 MB
Beschikbaar fysiek RAM-geheugen: 5040.44 MB
Totaal Virtueel geheugen: 16222.35 MB
Beschikbaar Virtual geheugen: 13056.19 MB

==================== Schijven ================================

Drive c: () (Fixed) (Total:244.56 GB) (Free:161.66 GB) NTFS
Drive d: (Data) (Fixed) (Total:438.47 GB) (Free:68.71 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 7BB2CF1F)
Partition 1: (Not Active) - (Size=15.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=244.6 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=438.5 GB) - (Type=07 NTFS)

==================== Eind van Addition.txt ============================