Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 15-03-2017 Gestart door Eigenaar (03-04-2017 17:20:45) Gestart vanaf C:\Users\Eigenaar\Downloads Windows 10 Home Versie 1607 (X64) (2016-10-29 14:47:44) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3851786543-2020633302-193524334-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3851786543-2020633302-193524334-503 - Limited - Disabled) Eigenaar (S-1-5-21-3851786543-2020633302-193524334-1000 - Administrator - Enabled) => C:\Users\Eigenaar Gast (S-1-5-21-3851786543-2020633302-193524334-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3851786543-2020633302-193524334-1004 - Limited - Enabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton 360 (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Norton 360 (Enabled - Up to date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117} FW: Norton 360 (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Aangifte inkomstenbelasting 2012 (HKLM-x32\...\Aangifte inkomstenbelasting 2012) (Version: - Belastingdienst) Aangifte inkomstenbelasting 2013 (HKLM-x32\...\Aangifte inkomstenbelasting 2013) (Version: - Belastingdienst) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated) Adobe Digital Editions 2.0 (HKLM-x32\...\Adobe Digital Editions 2.0) (Version: 2.0.1 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated) ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) ArcSoft PhotoImpression 6 (HKLM-x32\...\{063E409E-3D7C-4A4A-95AB-2F124B9224B3}) (Version: - ArcSoft) AVG Security Toolbar (HKLM-x32\...\AVG Secure Search) (Version: 14.1.0.10 - AVG Technologies) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.0.2905 - CDBurnerXP) CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.) CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2703 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DeLorme Send To GPS 1.5 (HKLM\...\{0F60FD8E-3E58-4F8E-BF2C-DFA4C9987AE2}_is1) (Version: 1.5 - DeLorme Publishing) Elevated Installer (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{bd8bd200-9a60-4969-b267-6b565f36e3da}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Garmin Express (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden HP Officejet 6500 E710a-f Basissoftware van het apparaat (HKLM\...\{8A7C08FA-6472-4A5E-BB87-21B5BF00947C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Officejet 6500 E710a-f Haelp (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard) HP Officejet 6500 E710a-f Productverbeteringsonderzoek (HKLM\...\{DF37117B-E553-44A9-BD4D-EFFB740D4D93}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) iCloud (HKLM\...\{7F40A9A7-B3BE-4EA8-B052-60449F6C3C02}) (Version: 6.2.1.67 - Apple Inc.) Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50905.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 52.0.1 (x86 nl) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 nl)) (Version: 52.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1.6284 - Mozilla) NimoFilm (HKLM-x32\...\{CE52F670-9E10-4C0A-B0CB-D78BAB0A7923}) (Version: 1.9.5 - Mysher) Norton 360 (HKLM-x32\...\N360) (Version: 22.9.1.12 - Symantec Corporation) Norton Security Scan (HKLM-x32\...\NSS) (Version: 3.7.2.5 - Symantec Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation) NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation) Opera Stable 37.0.2178.32 (HKLM-x32\...\Opera 37.0.2178.32) (Version: 37.0.2178.32 - Opera Software) Pen Tablet (HKLM-x32\...\Pen Tablet Driver) (Version: - Wacom Technology Corp.) Rapport (Version: 3.5.1205.17 - Trusteer) Hidden Rapport (x32 Version: 3.5.1804.96 - Trusteer) Hidden RealDownloader (x32 Version: 18.1.7.343 - RealNetworks) Hidden RealDownloader (x32 Version: 18.1.7.343 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer (RealTimes) (HKLM-x32\...\RealPlayer 18.1) (Version: 18.1.7 - RealNetworks) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7385 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden SCRABBLE (HKLM-x32\...\1c8c32cdac6be9752a16ee181120c1e6) (Version: - zylom) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) Trusteer Eindpuntbeveiliging (HKLM-x32\...\Rapport_msi) (Version: 3.5.1804.96 - Trusteer) TuneUp 2.5.0.1 (HKLM-x32\...\TuneUpMedia) (Version: 2.5.0.1 - TuneUp Media, Inc.) TwonkyMedia (HKLM-x32\...\TwonkyMediaTwonkyMedia) (Version: 6.0.1.0 - PacketVideo) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden vc2012_redist (x32 Version: 1.0.0.0 - Realnetworks) Hidden Video Downloader (x32 Version: 18.1.7 - RealNetworks) Hidden Video2Go Driver (HKLM-x32\...\TVEpaDrv) (Version: - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) vs2015_redist x86 (x32 Version: 1.0.0.0 - Realnetworks) Hidden WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.4 - Wacom Technology Corp.) WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.3 - Wacom Technology Corp.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) ZookaWare (HKLM-x32\...\ZookaWare) (Version: 5.0.1 - ZookaWare) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {040EBA22-111D-4993-BE17-78267DD2E916} - System32\Tasks\RealDownloader Update Check => C:\program files (x86)\real\realplayer\RealDownloader\downloader2.exe [2017-03-14] () Task: {081FC5FA-8CE0-4932-BB94-904FFF1B6C3B} - \Microsoft\Windows\Media Center\InstallPlayReady -> Geen bestand <==== AANDACHT Task: {088482FA-65B8-4E17-9ABF-1DCD48E8D373} - \Microsoft\Windows\Tcpip\IpAddressConflict1 -> Geen bestand <==== AANDACHT Task: {09F06BFE-A3C8-40E3-846A-6E6F4000C238} - \Microsoft\Windows\Tcpip\IpAddressConflict2 -> Geen bestand <==== AANDACHT Task: {11AEE886-BD5E-488F-91FF-5B647FFEE524} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-16] (Google Inc.) Task: {193D6A8D-7598-4C4D-9082-73E3A49F3455} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {1A18DA22-F5E9-428E-8204-D708AE746633} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.9.1.12\WSCStub.exe [2017-03-17] (Symantec Corporation) Task: {1BD71DBD-7062-4107-97F0-30E682DD2630} - \Microsoft\Windows\Media Center\mcupdate_scheduled -> Geen bestand <==== AANDACHT Task: {212F13F4-8576-4A53-89A8-2A1472838383} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {266F9362-25F8-4427-B9C5-AFE60D0577EB} - \Microsoft\Windows\Media Center\RegisterSearch -> Geen bestand <==== AANDACHT Task: {26A4D7D3-ABA6-4C75-A19E-D7D50A9A0D11} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Geen bestand <==== AANDACHT Task: {286CF330-33DF-41BE-ABB4-2E8F2D2885E6} - \Microsoft\Windows\Media Center\mcupdate -> Geen bestand <==== AANDACHT Task: {28826BAC-D64A-4407-A816-BD26EDB25DA4} - \Microsoft\Windows\Media Center\SqlLiteRecoveryTask -> Geen bestand <==== AANDACHT Task: {2F481CB7-2CA3-4E9F-B2EF-B35E9D598B9C} - \Microsoft\Windows\Media Center\MediaCenterRecoveryTask -> Geen bestand <==== AANDACHT Task: {2FF9B0FD-373A-4160-A9C3-57DC3EE5853A} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3851786543-2020633302-193524334-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.) Task: {3586E6DE-9F58-42BE-993F-947AB58A77FD} - \ASO-System Protector_startup -> Geen bestand <==== AANDACHT Task: {39CB106B-1749-4881-9997-08BF9C06C5B0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {3E6196A8-EBCF-42C8-82DB-7690C060AE56} - \Microsoft\Windows\Media Center\OCURActivate -> Geen bestand <==== AANDACHT Task: {40254A79-1A61-4B2B-B5C3-A8D2D2F0C540} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-24] (Adobe Systems Incorporated) Task: {42180601-72A5-4B02-8B6F-5A28EE1B7BF8} - \Microsoft\Windows\Media Center\PBDADiscoveryW2 -> Geen bestand <==== AANDACHT Task: {4443BB5C-34E0-4A45-8315-CEDE94AEB371} - \User_Feed_Synchronization-{3CBA21D4-563A-49D6-B4F4-8E4DF6168E4D} -> Geen bestand <==== AANDACHT Task: {47CBB6B6-A326-4F0F-B1EF-B55A5B583005} - \Microsoft\Windows\Media Center\RecordingRestart -> Geen bestand <==== AANDACHT Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - \Microsoft\Windows\Shell\WindowsParentalControlsMigration -> Geen bestand <==== AANDACHT Task: {4D527529-F701-4FE2-B6D3-4436F09DEA3F} - \Microsoft\Windows\MobilePC\HotStart -> Geen bestand <==== AANDACHT Task: {4D78F27E-D0B5-4BF2-842C-9197ECBB7F89} - \Microsoft\Windows\SideShow\SessionAgent -> Geen bestand <==== AANDACHT Task: {504E70C3-FAA5-4CAE-9800-B14EE0DEDFB6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {55E3F37D-8137-4DBC-B7AF-4C490E5FC31B} - \Microsoft\Windows\TabletPC\InputPersonalization -> Geen bestand <==== AANDACHT Task: {56FFC971-1D73-40AD-960D-EDB6EF7187A1} - \Microsoft\Windows\Media Center\PvrRecoveryTask -> Geen bestand <==== AANDACHT Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - \Microsoft\Windows\Shell\WindowsParentalControls -> Geen bestand <==== AANDACHT Task: {5D2123A6-B538-4DE4-BE28-2C6A048F46FB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {5DF4A6EE-DC89-4687-826C-9774D9A57292} - \Microsoft\Windows\Media Center\DispatchRecoveryTasks -> Geen bestand <==== AANDACHT Task: {5DFE715C-1DA5-4BB2-B7F7-97EF51332603} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> Geen bestand <==== AANDACHT Task: {63F46B70-8007-438C-837E-1727076F7691} - \{6C370445-5742-49CF-9466-DD22767A674C} -> Geen bestand <==== AANDACHT Task: {69FB2D72-7B29-4F59-91F2-2DCC3E826E89} - \Microsoft\Windows\Media Center\ehDRMInit -> Geen bestand <==== AANDACHT Task: {6A94326C-9EEC-435D-938A-EE2633F15DE5} - \Opera scheduled Autoupdate 1458586613 -> Geen bestand <==== AANDACHT Task: {70D9F269-9AA6-41AF-988B-3BD683F51921} - \Microsoft\Windows\Media Center\StartRecording -> Geen bestand <==== AANDACHT Task: {77584D81-31A2-4304-B2DC-0319D3FCBBA4} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3851786543-2020633302-193524334-1000 => C:\program files (x86)\real\realplayer\RealDownloader\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.) Task: {77FDA03F-9488-41D4-8E06-0937C203DF6D} - \Microsoft\Windows\Media Center\ActivateWindowsSearch -> Geen bestand <==== AANDACHT Task: {78D04300-32E1-4D82-9108-3F3A137872A7} - \Microsoft\Windows\Media Center\PeriodicScanRetry -> Geen bestand <==== AANDACHT Task: {7E36488A-DD52-4E78-B122-77A2A70A1F5D} - \Microsoft\Windows\Media Center\PvrScheduleTask -> Geen bestand <==== AANDACHT Task: {81562721-D4A1-413A-82EF-18FBEC5A9F48} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {8281598F-2A49-47C6-9508-A9FB5BC570B3} - \Microsoft\Windows\Media Center\PBDADiscoveryW1 -> Geen bestand <==== AANDACHT Task: {837887B1-29CE-4596-B992-3F277C536635} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {849E2D87-4AB2-4F18-BDE8-154715BAD35E} - \WPD\SqmUpload_S-1-5-21-3851786543-2020633302-193524334-1000 -> Geen bestand <==== AANDACHT Task: {860219A0-EA88-44E5-A2A8-228256784D2A} - \Start PC Reviver Schedule -> Geen bestand <==== AANDACHT Task: {87F74ACD-F978-44EC-8CB6-99D2D4C8BD24} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {8BA0C440-C8C9-4BD7-8E71-3DBC942EF8B9} - \Microsoft\Windows\Media Center\OCURDiscovery -> Geen bestand <==== AANDACHT Task: {8CABC96D-05E0-4DAF-881F-B95A0D21DC31} - \{4AC658C8-FF5C-45DF-8EE1-72BB7DA3BF26} -> Geen bestand <==== AANDACHT Task: {8CD861D5-3007-46CB-A144-0586330AD11E} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> Geen bestand <==== AANDACHT Task: {8D51DCD1-D30C-4A1F-9C49-2BA280B2C4A3} - \Microsoft\Windows\SideShow\SystemDataProviders -> Geen bestand <==== AANDACHT Task: {90E84202-6B5F-4AE2-A210-06021126F320} - System32\Tasks\{B7E18D79-6589-412E-A029-A634BFD51092} => pcalua.exe -a "C:\Program Files\McAfee Security Scan\uninstall.exe" Task: {92015C93-DECE-451B-988A-2451E7E28373} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3851786543-2020633302-193524334-1000 => C:\program files (x86)\real\realplayer\RealDownloader\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.) Task: {94D9C266-BD45-47E7-BB50-5D079F14896A} - \Microsoft\Windows\Media Center\UpdateRecordPath -> Geen bestand <==== AANDACHT Task: {9A746992-4623-4997-A110-CF34897E4313} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {9AD82E0C-9826-4795-AD43-4FAC9BDF1D4C} - \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask -> Geen bestand <==== AANDACHT Task: {9B8E65E8-B286-4A43-AFDD-768DA8001847} - \Microsoft\Windows\SideShow\GadgetManager -> Geen bestand <==== AANDACHT Task: {9BD686DC-F42A-46AC-A8B5-2B24E8F36B4D} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.9.1.12\SymErr.exe [2017-02-20] (Symantec Corporation) Task: {A1B380B2-28A4-4CAB-99AC-80B1ECF84071} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-16] (Google Inc.) Task: {A679EA67-442A-4FF9-B352-D740AC2442DE} - \CreateChoiceProcessTask -> Geen bestand <==== AANDACHT Task: {A7244488-BF31-41C4-9CF6-965CF08AD19F} - \Microsoft\Windows\SideShow\AutoWake -> Geen bestand <==== AANDACHT Task: {AC92CD9E-FC40-467D-A1E0-C4F0D99D089F} - \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task -> Geen bestand <==== AANDACHT Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - \Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor -> Geen bestand <==== AANDACHT Task: {BBB14516-F68D-43D0-9B0F-6F1611176FDF} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-03-28] () Task: {BE771285-0C66-492D-B9EE-5DBBF5089BC8} - System32\Tasks\Driver Detective => C:\Program Files (x86)\Driver Detective\DriversHQ.DriverDetective.Client.exe [2015-09-15] (PC Drivers Headquarters) Task: {C10721F9-F780-4AF9-AD6B-DA52D6632559} - \HPCustParticipation HP Officejet 6500 E710a-f -> Geen bestand <==== AANDACHT Task: {C394C851-6FEF-4E34-A191-EB1E93E4291C} - \Driver Detective-RTMRules -> Geen bestand <==== AANDACHT Task: {C4ED0855-34B9-475C-A901-E93E566CD4D1} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.9.1.12\SymErr.exe [2017-02-20] (Symantec Corporation) Task: {C64C0969-EFA4-453F-A913-15C440228F3A} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3851786543-2020633302-193524334-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-03-14] (RealNetworks, Inc.) Task: {C85BCED3-ECD9-4B0B-9264-E957E374DD1D} - System32\Tasks\ZookaWare registration reminder => C:\Program Files (x86)\ZookaWare\ZookawareUpdater.exe [2017-03-14] () Task: {CB3BDD36-4034-4B1A-BDF5-45224A9FA3A4} - \RealUpgradeLogonTaskS-1-5-21-3851786543-2020633302-193524334-1000 -> Geen bestand <==== AANDACHT Task: {CBD360D7-8567-4018-9367-19CCC828CF48} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {CF5B0C1C-7A8D-4502-A7C3-72FDF5B175E8} - \Microsoft\Windows\Media Center\PBDADiscovery -> Geen bestand <==== AANDACHT Task: {CF8B056F-D06E-47AA-8F5F-CD43648E054F} - \Microsoft\Windows\WindowsBackup\Windows Backup Monitor -> Geen bestand <==== AANDACHT Task: {D0B6267F-1EB7-46B4-9BB9-FB5AC081008F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated) Task: {D1682DF9-3602-4DA3-BD99-8D374C477CB9} - \Adobe Reader and Acrobat Manager -> Geen bestand <==== AANDACHT Task: {D1E46686-9012-4115-A7AE-2989E7446354} - System32\Tasks\Norton Security Scan for Eigenaar => C:\Program Files (x86)\Norton Security Scan\Engine\3.7.2.5\Nss.exe [2012-04-03] (Symantec Corporation) Task: {D6CB9C69-5765-4509-B5D0-AA4E8AB038F8} - System32\Tasks\Zookaware Scheduled Update Check => C:\Program Files (x86)\ZookaWare\ZookaWare.exe [2017-03-14] (ZookaWare) Task: {D6FAE07F-8981-4814-BC31-70CE882EE68D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {D8750253-4178-47DC-975F-565C8130FD4F} - \Driver Detective-RTMUpdater -> Geen bestand <==== AANDACHT Task: {DDDFCCE0-4BD6-4BB9-A9BE-ECACDFD1A1AE} - \Microsoft\Windows\Media Center\ReindexSearchRoot -> Geen bestand <==== AANDACHT Task: {DEAA70C9-383B-4F66-907A-2B9ACD01E81F} - \Microsoft\Windows\RemovalTools\MRT_HB -> Geen bestand <==== AANDACHT Task: {DFE6F08B-8C25-4DA4-AEC5-4CDE1AD119AD} - \Start PC Reviver Update -> Geen bestand <==== AANDACHT Task: {E14D6414-DEA9-4EC4-8478-64683670436D} - \Driver Detective-RTMScan -> Geen bestand <==== AANDACHT Task: {E4971C94-938D-4652-B7DD-39C6E6973C8F} - \Microsoft\Windows\WindowsBackup\AutomaticBackup -> Geen bestand <==== AANDACHT Task: {EA58A00C-4FD4-4449-8DA4-4173ECD1C84D} - \RealPlayer Cloud (32-bit) -> Geen bestand <==== AANDACHT Task: {EC064343-75E3-4D4A-8227-99133953E4DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {F04FA802-0031-48FC-9DC6-10BBABA85DB1} - \Microsoft\Windows\Media Center\ConfigureInternetTimeService -> Geen bestand <==== AANDACHT Task: {F88D42F1-5A73-4837-A1BF-7F8AB4D8F306} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files (x86)\Norton 360\Norton 360\Engine\22.9.1.12\SymErr.exe [2017-02-20] (Symantec Corporation) Task: {FF00AF39-C42E-44DB-8FC7-53F4BD015B66} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> Geen bestand <==== AANDACHT Task: {FFE4DE5E-D211-498C-A1C5-C4168267B8B0} - \RealUpgradeScheduledTaskS-1-5-21-3851786543-2020633302-193524334-1000 -> Geen bestand <==== AANDACHT (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\Norton Security Scan for Eigenaar.job => C:\PROGRA~2\NORTON~3\Engine\372~1.5\Nss.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\Eigenaar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKGGjMhx0cXWEzogU5UVesGcmHTnJsMH4ApBp5rloO6ZG3OvBWyYLDamwcKOCRt9U%3D ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKGGjMhx0cXWEzogU5UVesGcmHTnJsMH4ApBp5rloO6ZG3OvBWyYLDamwcKOCRt9U%3D ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKGGjMhx0cXWEzogU5UVesGcmHTnJsMH4ApBp5rloO6ZG3OvBWyYLDamwcKOCRt9U%3D ==================== Geladen Modules (gefilterd) ============== 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-03-23 13:22 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-03-16 17:08 - 2017-03-16 17:08 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2013-07-06 09:10 - 2009-04-17 12:01 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2016-08-15 17:01 - 2016-08-15 17:01 - 00492288 _____ () C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoftSmartMonitorService.exe 2017-03-14 20:44 - 2017-03-14 20:44 - 00035104 _____ () C:\program files (x86)\real\realplayer\UpdateService\RealPlayerUpdateSvc.exe 2014-11-03 21:28 - 2010-01-21 02:53 - 00496232 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe 2014-11-03 21:27 - 2010-01-21 02:52 - 00076392 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll 2014-11-03 21:27 - 2010-01-21 02:53 - 00731752 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll 2014-11-03 21:27 - 2010-01-21 02:53 - 00209000 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe 2010-07-28 19:05 - 2010-07-28 19:05 - 01357400 _____ () C:\Program Files (x86)\TwonkyMedia\TwonkyMediaServer.exe 2015-09-15 21:04 - 2015-09-15 21:04 - 00810272 _____ () C:\Program Files (x86)\Driver Detective\ThemePack.Default.dll 2015-09-15 21:03 - 2015-09-15 21:03 - 00354592 _____ () C:\Program Files (x86)\Driver Detective\Agent.Common.XmlSerializers.dll 2015-09-15 21:03 - 2015-09-15 21:03 - 00485664 _____ () C:\Program Files (x86)\Driver Detective\Agent.Communication.XmlSerializers.dll 2015-09-15 21:04 - 2015-09-15 21:04 - 00071968 _____ () C:\Program Files (x86)\Driver Detective\RuleEngine.XmlSerializers.dll 2017-03-23 13:22 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-29 15:45 - 2016-10-29 15:45 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-23 13:20 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-23 13:21 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-23 13:21 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-23 13:21 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-03-23 13:21 - 2017-03-04 08:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-03-23 13:22 - 2017-03-04 08:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-03-14 19:56 - 2017-03-14 19:56 - 00738032 _____ () C:\program files (x86)\real\realplayer\RealDownloader\downloader2.exe 2017-03-14 20:44 - 2017-03-14 20:44 - 00040248 _____ () C:\program files (x86)\real\realplayer\UpdateService\DL2UpdatePlugin.dll 2017-03-14 20:44 - 2017-03-14 20:44 - 00042296 _____ () C:\program files (x86)\real\realplayer\UpdateService\RealDownloaderUpdatePlugin.dll 2017-03-14 20:43 - 2017-03-14 20:43 - 00039752 _____ () C:\program files (x86)\real\realplayer\UpdateService\VideoDLUpdatePlugin.dll 2010-07-28 19:00 - 2010-07-28 19:00 - 00143360 _____ () C:\Program Files (x86)\TwonkyMedia\wmdrmdll.dll 2017-03-16 17:09 - 2017-03-16 17:09 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2017-03-16 17:08 - 2017-03-16 17:08 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2016-09-01 18:13 - 2016-09-01 18:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-17 02:34 - 2015-03-17 02:34 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\nl_nl\acrotray.nld 2015-06-02 15:51 - 2015-06-02 15:51 - 00545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll 2017-02-08 21:21 - 2017-02-01 11:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll 2017-02-08 21:21 - 2017-02-01 11:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll 2009-02-26 14:46 - 2009-02-26 14:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll 2015-03-17 02:34 - 2015-03-17 02:34 - 00141312 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\nl_nl\PDFMaker\PDFMOutlookAddin.NLD 2016-12-23 20:11 - 2016-12-23 20:11 - 05929040 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Common\AdobePDFMakerX.dll 2016-12-23 20:11 - 2016-12-23 20:11 - 03375616 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\nl_NL\PDFMaker\AdobePDFMakerX.NLD 2011-06-22 12:46 - 2011-06-22 12:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll 2015-11-11 04:41 - 2015-11-11 04:41 - 00756376 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL 2016-12-23 20:11 - 2016-12-23 20:11 - 02100816 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\PDFMaker\Common\SendAsLinkX.dll 2016-10-01 01:36 - 2016-10-01 01:36 - 00230400 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Locale\nl_NL\Adobe Send\SendAsLinkX.NLD 2017-03-14 19:50 - 2017-03-14 19:50 - 06459292 _____ () C:\program files (x86)\real\realplayer\RealDownloader\videodl.exe ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\WINDOWS\system32\msln.exe:1adb409820f4e7a44e69dc5713f2db65 [7594] AlternateDataStreams: C:\Users\Eigenaar\Downloads:Shareaza.GUID [16] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\driversupport.com -> hxxp://apps.driversupport.com IE trusted site: HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\driversupport.com -> hxxps://apps.driversupport.com IE trusted site: HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\garmin.com -> hxxps://my.garmin.com ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2017-01-15 15:13 - 00000830 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3851786543-2020633302-193524334-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Eigenaar\AppData\Roaming\Mozilla\Firefox\Bureaubladachtergrond.bmp DNS Servers: 89.101.251.228 - 89.101.251.229 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\StartupFolder: => "RealTimes.lnk" HKLM\...\StartupApproved\StartupFolder: => "TwonkyMedia Tray Control.lnk" HKLM\...\StartupApproved\Run: => "RtHDVCpl" HKLM\...\StartupApproved\Run32: => "GrooveMonitor" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "TkBellExe" HKLM\...\StartupApproved\Run32: => "RealDownloader" HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\StartupApproved\StartupFolder: => "OneNote 2007 Screen Clipper and Launcher.lnk" HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\StartupApproved\StartupFolder: => "Inktwaarschuwingen controleren - HP Officejet 6500 E710a-f.lnk" HKU\S-1-5-21-3851786543-2020633302-193524334-1000\...\StartupApproved\Run: => "OneDrive" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{8998B2FC-F125-4064-BD3F-24441F45DEBD}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7DAE\HPDiagnosticCoreUI.exe FirewallRules: [{48F182C0-C8E2-462E-B6EB-5983CCC48AAB}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\7zS7DAE\HPDiagnosticCoreUI.exe FirewallRules: [{10519A76-08C2-4B8D-878F-757215BE9DD8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{68DC2AC4-CAC5-44C1-A072-9B615E6C1086}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9E7C8C23-A7C0-4737-9E73-321ABB1F5A01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FD5ACDC7-1675-4307-A3AF-2DF4AD5E47BD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{43DA5BFA-3B5F-4CB4-B05A-11C4D9D3732B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{A2A49447-5D6B-44F1-A9E6-948425D28F02}] => (Allow) LPort=2869 FirewallRules: [{F21D0A6E-3E7E-4723-8F8B-C78F84FB6A5C}] => (Allow) LPort=1900 FirewallRules: [{43923155-72BB-45FE-9D11-2767AEA61F7F}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{33A28F9A-9350-43A8-B99D-59C26DC09453}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{FBBCF892-6C40-440D-8499-7A22D2FE26DD}] => (Allow) C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe FirewallRules: [{8A9720F5-7827-4FB9-B1FF-EF96C0FD0E68}] => (Allow) C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe FirewallRules: [{6608F861-4F1A-486E-9923-E3C9E7195CDF}] => (Allow) C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe FirewallRules: [{1DE081B2-4A9E-4903-9993-9AFBC59CBA83}] => (Allow) C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe FirewallRules: [{CC3D6FF7-4C2A-4BED-BFF2-7391C16BD426}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{B49080D3-79F8-4A7D-AC48-57A7BFB34553}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{22429382-F430-42B4-9F5B-74505A376DEC}] => (Allow) C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe FirewallRules: [TCP Query User{27FF89CB-C71A-43F7-AD4F-B9428772885F}C:\program files (x86)\twonkymedia\twonkymediaserver.exe] => (Allow) C:\program files (x86)\twonkymedia\twonkymediaserver.exe FirewallRules: [UDP Query User{1EFD0E54-987B-4152-9FC4-B78EB6E8A19B}C:\program files (x86)\twonkymedia\twonkymediaserver.exe] => (Allow) C:\program files (x86)\twonkymedia\twonkymediaserver.exe FirewallRules: [{13658C48-9FB9-4767-B246-057D67E0D2AC}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{47B88A89-2CA9-4128-BB58-1B5BA7834924}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{A24A1960-3B36-422A-A8A3-74BD086F4E34}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\FaxApplications.exe FirewallRules: [{85E88E9D-E2D3-4FC9-8C20-521684538427}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\DigitalWizards.exe FirewallRules: [{64B6DF6B-9376-426B-B812-82DFBA1DD16E}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\SendAFax.exe FirewallRules: [{0A90CD31-B4D6-4413-9DA7-08C7454A69F8}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\DeviceSetup.exe FirewallRules: [{53DA757C-FCD0-4DB3-A4BF-EC1171C4A091}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicator.exe FirewallRules: [{059F03EC-2F49-4191-9523-CB63D7A47FEA}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{92F9FF02-A69C-4D8B-B5CA-09E352573517}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\nsp512F.tmp\CnetInstaller-10297789.exe FirewallRules: [{F5EFA70D-16C9-4483-AA3C-CA77260D5115}] => (Allow) C:\Users\Eigenaar\AppData\Local\Temp\nsp512F.tmp\CnetInstaller-10297789.exe FirewallRules: [{DA5605F7-3F07-45A3-B30A-C966B6FD46D1}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{2B89ADA5-9D38-4036-AFD9-C70DAD157F1A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{C08A20F8-2E44-4C58-94A3-55AC936F12EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{420E886D-BC63-4065-99DE-6362714EDBD3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2F2531A3-49A8-4632-A011-A1F726CC08B2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E1EE285F-1D21-4AF5-B22E-02AFA780D7AD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{052B7E4B-0383-440F-B95D-15A2DF7F452D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{7714981B-29EC-4974-AB96-7572927D3323}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{E64F811A-BD8B-4BBF-A17E-9A32757C8FF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{772784C7-E78E-4491-A259-FE764E8FA874}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{088314D6-6BCA-47E9-9DC6-8A32617CA680}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{3C9CD1E4-2DDB-4705-9B91-84870918E1A3}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe FirewallRules: [{317C607C-AA7D-42BE-9AB3-D34BF5C61383}] => (Allow) C:\Program Files\iTunes\iTunes.exe ==================== Herstelpunten ========================= 23-03-2017 13:37:34 Windows Update 25-03-2017 02:17:10 PC Reviver Restore point 25/03/2017 - 01-17-08 25-03-2017 02:30:17 PC Reviver Restore point 25/03/2017 - 01-30-15 29-03-2017 17:59:25 PC Reviver Restore point 29/03/2017 - 17-59-20 ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (04/03/2017 05:23:54 PM) (Source: Microsoft Office 12) (EventID: 2001) (User: ) Description: Rejected Safe Mode action : Microsoft Office Outlook. Error: (04/03/2017 05:03:18 PM) (Source: Driver Detective) (EventID: 1000) (User: ) Description: Error: (04/03/2017 04:56:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: RuntimeBroker.exe, versie: 10.0.14393.0, tijdstempel: 0x57899b96 Naam van module met fout: CompPkgSup.DLL, versie: 10.0.14393.953, tijdstempel: 0x58ba5c12 Uitzonderingscode: 0xc0000005 Foutmarge: 0x000000000000349d Id van proces met fout: 0x4d8 Starttijd van toepassing met fout: 0x01d2ac8263f71e89 Pad naar toepassing met fout: C:\Windows\System32\RuntimeBroker.exe Pad naar module met fout: C:\Windows\System32\CompPkgSup.DLL Rapport-id: 469ebce7-19a1-43ae-bafc-b50f5ccd9225 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (04/03/2017 04:19:19 PM) (Source: Microsoft Office 12) (EventID: 2001) (User: ) Description: Rejected Safe Mode action : Microsoft Office Outlook. Error: (04/03/2017 04:06:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Eigenaar-PC) Description: Het pakket Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge is beëindigd omdat het onderbreken te lang duurde. Error: (04/03/2017 03:57:37 PM) (Source: TabletServicePen) (EventID: 0) (User: ) Description: Could not init tablet driver Error: (04/03/2017 03:57:14 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (04/03/2017 03:57:14 PM) (Source: Windows Search Service) (EventID: 3104) (User: ) Description: Inventarisatie van gebruikerssessies om filtergroepen te maken is mislukt. Details: (HRESULT : 0x80040210) (0x80040210) Error: (04/03/2017 03:56:23 PM) (Source: TabletServicePen) (EventID: 0) (User: ) Description: Could not init tablet driver Error: (04/03/2017 03:56:21 PM) (Source: McLogEvent) (EventID: 5022) (User: NT AUTHORITY) Description: MCSCAN32 Engine Initialisation failed. Engine returned error : 1 Systeemfouten: ============= Error: (04/03/2017 04:44:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {3185A766-B338-11E4-A71E-12E3F512A338} en APPID {7006698D-2974-4091-A424-85DD0B909E23} aan de gebruiker NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (04/03/2017 04:00:57 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: De Delivery Optimization-service is bij het starten vastgelopen. Error: (04/03/2017 03:57:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} en APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (04/03/2017 03:56:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Garmin Device Interaction Service-service kan vanwege de volgende fout niet worden gestart: De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord. Error: (04/03/2017 03:56:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Garmin Device Interaction Service. Error: (04/03/2017 03:56:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De EraserSvc11621-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (04/03/2017 03:56:12 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 15:44:12 op ‎3-‎4-‎2017 is onverwacht gebeurd. Error: (04/03/2017 03:17:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} en APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (04/02/2017 10:56:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: Definitie-update voor Windows Defender - KB2267602 (definitie 1.239.603.0). Error: (04/02/2017 10:38:48 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: De Security Center-service is bij het starten vastgelopen. CodeIntegrity: =================================== Date: 2017-03-24 21:50:40.124 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WindowsActionDialog.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:40.120 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WindowsActionDialog.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:40.114 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WindowsActionDialog.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:40.073 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WindowsActionDialog.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:38.871 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\fodhelper.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:38.867 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\fodhelper.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:38.861 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\fodhelper.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:38.802 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\fodhelper.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:27.663 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\edpauditapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-24 21:50:27.659 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\edpauditapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Geheugen info =========================== Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5600+ Percentage geheugen in gebruik: 77% Totaal fysiek RAM-geheugen: 2046.49 MB Beschikbaar fysiek RAM-geheugen: 452.03 MB Totaal Virtueel geheugen: 4094.49 MB Beschikbaar Virtual geheugen: 1599.13 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:455.26 GB) (Free:222.84 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)] Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:9.35 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 78000000) Partition 1: (Not Active) - (Size=63 MB) - (Type=DE) Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=455.3 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=450 MB) - (Type=27) ==================== Eind van Addition.txt ============================