Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 05-02-2017 Gestart door mouch (06-02-2017 20:29:51) Gestart vanaf C:\Users\mouch\Downloads Windows 10 Home Versie 1607 (X64) (2017-01-04 20:58:43) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3610571976-3903175460-2027010726-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3610571976-3903175460-2027010726-503 - Limited - Disabled) defaultuser0 (S-1-5-21-3610571976-3903175460-2027010726-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gast (S-1-5-21-3610571976-3903175460-2027010726-501 - Limited - Disabled) mouch (S-1-5-21-3610571976-3903175460-2027010726-1001 - Administrator - Enabled) => C:\Users\mouch ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) µTorrent (HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.) 2.23 (HKLM-x32\...\{338761A3-7305-4C78-A41B-B1EA1E00912E}_is1) (Version: 2.23 - pop_0098) Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies) AVG (Version: 16.141.7998 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4756 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.141.7998 - AVG Technologies) AVG Zen (Version: 1.113.1 - AVG Technologies) Hidden Belgium e-ID middleware 4.1.20 (build 1779) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71779}) (Version: 4.1.1779 - Belgian Government) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Explor@ Park (HKLM-x32\...\VTechDownloadManager) (Version: - VTech) FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden HP Dropbox Plugin (HKLM-x32\...\{714EA650-B1EC-4731-A7BF-50BB65C7C1A4}) (Version: 36.0.31.53050 - Hewlett-Packard Co.) HP ENVY 4520 series Basissoftware van het apparaat (HKLM\...\{2FE26F6F-9DFF-4700-BE09-D7BEDC190F3C}) (Version: 36.0.72.54013 - Hewlett-Packard Co.) HP ENVY 4520 series Help (HKLM-x32\...\{13BB4F7C-E718-43F9-9BF8-4F824436C7D0}) (Version: 36.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM-x32\...\{30FEB472-BC59-4966-8B0C-F8C2045D413E}) (Version: 36.0.31.53050 - Hewlett-Packard Co.) HP Photo Creations (HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP) HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.3.50.9 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{FEC61634-7B6D-4859-83FD-DDF2E76570F9}) (Version: 12.5.32.203 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) iCloud (HKLM\...\{0493048C-CB1A-44B7-8BB3-8467AF7BA9E4}) (Version: 6.1.2.13 - Apple Inc.) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation) iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.) K-Lite Codec Pack 12.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.8.0 - KLCP) Kodi (HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\Kodi) (Version: - XBMC-Foundation) Microsoft OneDrive (HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team) Productverbeteringsonderzoek voor HP ENVY 4520 series (HKLM\...\{9898E457-1F48-416B-8104-0272E2891EC1}) (Version: 36.0.72.54013 - Hewlett-Packard Co.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.) Stuurprogrammapakket voor Windows - Fedict SmartCard (11/30/2016 4.1.9) (HKLM\...\A9FBB4D4E267FA9BF2CEBF564F02DB39E147B466) (Version: 11/30/2016 4.1.9 - Fedict) Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.4.10 - Synaptics Incorporated) TomTom MyDrive Connect 4.1.4.3031 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.4.3031 - TomTom) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VTech Download Agent Library (x32 Version: 1.00.0000 - VTech) Hidden WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {065DEAEC-7462-4BEE-B115-B614B5F8ED74} - System32\Tasks\HPCeeScheduleFormouch => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.) Task: {08076D04-818B-45EC-940E-96F214B85E6D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {3329F212-7111-49C6-A2E6-DE0285B5A792} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.) Task: {3BF11C05-E0D9-427D-9616-1758B6380D27} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.) Task: {5310FC25-A71F-474A-AA80-F6E7174913C9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.) Task: {62F02C17-4803-4827-BEE3-230F3EC7775B} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {69EC5229-05C9-4495-A99A-A4DE0A41E0C6} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2017-01-17] (Apple Inc.) Task: {75682C42-C53A-4E64-8B73-A660AC661AD7} - System32\Tasks\{85D313B2-84E3-4868-A0BD-609EA4644BAB} => pcalua.exe -a "C:\Program Files (x86)\VobSub\unins000.exe" Task: {809DE6BC-165E-4345-9D0A-3C1AD3AE5C3B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.) Task: {81F7394D-7966-4F21-B011-4313EC76E787} - System32\Tasks\HPCustParticipation HP ENVY 4520 series => C:\Program Files\HP\HP ENVY 4520 series\Bin\HPCustPartic.exe [2015-03-09] (Hewlett-Packard Development Company, LP) Task: {B599AAEA-1F63-409A-B753-0144132F5E7B} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-01-13] () Task: {DA4665AB-D210-482B-8081-96B117E3E985} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {DDD99DEC-E1BA-4D39-A70D-78B88D0CA25F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.) Task: {E995F665-90B8-4878-A3BC-76F73D81422C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\HPCeeScheduleFormouch.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll 2017-01-04 22:41 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-11-17 01:28 - 2016-11-17 01:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-01-04 22:41 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll 2017-01-04 22:39 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-11 17:59 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-11 17:59 - 2016-12-21 07:52 - 03940864 _____ () C:\Windows\ShellExperiences\PenWorkspace.dll 2017-01-11 17:59 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-11 17:59 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-11 17:58 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-11 17:59 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-11 17:59 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-02-06 17:15 - 2017-02-06 17:20 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-02-06 17:15 - 2017-02-06 17:20 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-02-06 17:15 - 2017-02-06 17:20 - 42895872 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-02-06 17:15 - 2017-02-06 17:20 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\roottools.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2017-01-13 13:56 - 2017-01-13 13:56 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2016-11-17 01:29 - 2016-11-17 01:29 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2017-01-04 22:23 - 2017-01-04 22:22 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2016-07-16 12:47 - 2016-07-16 12:45 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\Run32: => "AgentMonitor" HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\StartupApproved\Run: => "iCloudDrive" HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\StartupApproved\Run: => "iCloudPhotos" HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3610571976-3903175460-2027010726-1001\...\StartupApproved\Run: => "MyDriveConnect.exe" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{6CDA4D1F-051F-498E-AD3A-5408B1896F8B}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{BD9A008A-AFBD-4920-916F-D1754FA329C6}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{7D6426C9-8142-4616-8F48-75983242DD35}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{02BD85A1-C611-452F-BDCA-E831A0E7E0DB}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{F2592F59-F381-4145-8EB3-C2301F7944CC}] => C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{1AF4372C-0C31-4CEE-844D-6A229E55F9C5}] => C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [TCP Query User{40CA0ADE-9E2F-401C-839A-B465DC97AA68}C:\program files (x86)\kodi\kodi.exe] => C:\program files (x86)\kodi\kodi.exe FirewallRules: [UDP Query User{E4493EE9-2686-4491-A71B-6E6DA575DC74}C:\program files (x86)\kodi\kodi.exe] => C:\program files (x86)\kodi\kodi.exe FirewallRules: [{1E9E6994-E0AF-4ABC-87E5-C26B0C685D2D}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{43AA8C32-0BCF-4B18-91CD-84ABFBAEF651}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{73EF9946-E0D9-4B3B-8E43-8FC6D0D02C71}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C7F84FB9-DEB8-4DE2-8DC2-7AF1CB6E19B9}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EF9BA7DB-739B-42C8-B3B1-C8481409A474}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7B6A6451-9E51-463D-BFEF-DEA4FB2D0189}] => C:\Users\mouch\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{14D71FDF-1CEC-4C3F-9A47-F05C07C96A88}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{B6AA1660-A55E-41B0-AE2A-0AD3C2BA4B8A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F8D1F949-3D12-4B1D-A0B3-7DFD5CA9D93D}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E4B6F1CE-9F2D-4C4F-AA87-7593F2386512}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{BE573D5C-39EA-4D66-AD6F-CF6EDBE8ABD3}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{1DF3F1F5-980A-4896-A7B6-2F80BBB53B97}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{AF2F8D38-F11E-4177-A9F8-31A06CF9ED07}] => C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{2C8DB580-03EC-4F6B-9E98-8932D64FC47E}] => C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [TCP Query User{63D58793-1DCB-4837-933F-1F3F730AF78E}C:\program files (x86)\emule\emule.exe] => C:\program files (x86)\emule\emule.exe FirewallRules: [UDP Query User{F65C7FA5-FE64-4577-8496-3B4768F05EDF}C:\program files (x86)\emule\emule.exe] => C:\program files (x86)\emule\emule.exe FirewallRules: [{D0276FBC-8EAF-45B7-AB8B-D5EF24F8A9E2}] => C:\Program Files (x86)\FrostWire 6\FrostWire.exe FirewallRules: [{61980E6D-F938-4EE3-A1C9-AEF63A70CE0A}] => C:\Program Files (x86)\FrostWire 6\FrostWire.exe FirewallRules: [TCP Query User{61D1D4A1-B892-4313-83BF-38680EDEF61F}C:\program files (x86)\emuletorrent\emuletorrent.exe] => C:\program files (x86)\emuletorrent\emuletorrent.exe FirewallRules: [UDP Query User{811AD719-A8BD-4BB8-B9C1-7CBF3B9903C7}C:\program files (x86)\emuletorrent\emuletorrent.exe] => C:\program files (x86)\emuletorrent\emuletorrent.exe FirewallRules: [{15B4A8D5-966B-411A-9888-E57C014831E0}] => C:\Program Files (x86)\Blubster\Blubster.exe FirewallRules: [{466ABC21-49FB-4A9C-A804-C3E8C70331FC}] => C:\Program Files (x86)\Blubster\Blubster.exe FirewallRules: [{DD21B655-2054-482E-89CD-333FD31B9497}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [{83AD1F35-B4F8-4A45-AD11-AD9FCD9FB0FC}] => C:\Program Files\HP\HP ENVY 4520 series\Bin\DeviceSetup.exe FirewallRules: [{35AD24C4-CA92-423D-A620-D6118CC8040B}] => LPort=5357 FirewallRules: [{3C2E8A7C-FA75-4837-9D28-D927F6CCF859}] => C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe ==================== Herstelpunten ========================= 13-01-2017 12:50:00 Installed iTunes 23-01-2017 09:12:56 Gepland controlepunt 01-02-2017 11:39:37 Gepland controlepunt 04-02-2017 19:28:45 Installed HP Support Solutions Framework ==================== Defecte Apparaatbeheer Apparaten ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (02/06/2017 05:20:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-OHO2HHD) Description: Het activeren van de app Microsoft.SkypeApp_kzf8qxf38zg5c!ppleae38af2e007f4358a809ac99a64a67c1 is mislukt door de fout -2147009280. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (02/06/2017 05:15:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 128938 Error: (02/06/2017 05:15:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 128938 Error: (02/06/2017 05:15:08 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/06/2017 05:12:53 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 10750 Error: (02/06/2017 05:12:53 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 10750 Error: (02/06/2017 05:12:53 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/06/2017 05:03:54 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (02/06/2017 05:03:51 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (02/06/2017 05:03:51 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Systeemfouten: ============= Error: (02/06/2017 06:25:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/06/2017 06:20:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OHO2HHD) Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (02/06/2017 06:18:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De Service Platform voor verbonden apparaten-service is gestopt met de volgende foutcode: Niet nader omschreven fout . Error: (02/06/2017 06:01:37 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OHO2HHD) Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (02/06/2017 05:59:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De Service Platform voor verbonden apparaten-service is gestopt met de volgende foutcode: Niet nader omschreven fout . Error: (02/06/2017 05:59:37 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OHO2HHD) Description: De server {37998346-3765-45B1-8C66-AA88CA6B20B8} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (02/06/2017 05:57:37 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: De Service Platform voor verbonden apparaten-service is gestopt met de volgende foutcode: Niet nader omschreven fout . Error: (02/06/2017 05:42:44 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (02/06/2017 05:20:51 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-OHO2HHD) Description: Kan DCOM Server App.AppX85gcbw533amccd2rr8qswxymhfj649t2.mca niet starten als Niet beschikbaar/Niet beschikbaar. Foutmelding "15616" is opgetreden bij het uitvoeren van de opdracht "C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer Error: (02/06/2017 05:12:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. CodeIntegrity: =================================== Date: 2017-02-06 20:27:55.301 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 20:27:55.299 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 20:22:47.758 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 20:22:47.754 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:55.190 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:55.018 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:54.886 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:53.647 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:53.542 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-06 17:03:53.414 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz Percentage geheugen in gebruik: 47% Totaal fysiek RAM-geheugen: 8122.15 MB Beschikbaar fysiek RAM-geheugen: 4278.94 MB Totaal Virtueel geheugen: 9402.15 MB Beschikbaar Virtual geheugen: 4641.37 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:908.73 GB) (Free:596.36 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:20.42 GB) (Free:2.27 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)] ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: D003A929) Partition: GPT. ==================== Eind van Addition.txt ============================