Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 18-07-2017 Gestart door Familie Phillips Vra (23-07-2017 12:52:14) Gestart vanaf C:\Users\Familie Phillips Vra\Downloads Windows 10 Home Versie 1607 (X64) (2016-10-16 17:04:55) Boot Modus: Safe Mode (minimal) ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2212958904-674450509-3633931156-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2212958904-674450509-3633931156-503 - Limited - Disabled) Familie Phillips Vra (S-1-5-21-2212958904-674450509-3633931156-1001 - Administrator - Enabled) => C:\Users\Familie Phillips Vra Gast (S-1-5-21-2212958904-674450509-3633931156-501 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Belgium e-ID middleware 4.1.13 (build 1717) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71717}) (Version: 4.1.1717 - Belgian Government) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Bonjour-afdrukservices (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.) CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6602 - CyberLink Corp.) Hidden CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4118.0 - CyberLink Corp.) Hidden CyberLink PowerRecover (HKLM\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.4510 - CyberLink Corp.) Hidden CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.4510 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dolby Audio X2 Windows API SDK (HKLM\...\{6A478BF2-F67F-4ABC-A7F1-B6B5BA862371}) (Version: 0.6.3.44 - Dolby Laboratories, Inc.) Dolby Audio X2 Windows APP (HKLM\...\{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}) (Version: 0.4.0.22 - Dolby Laboratories, Inc.) ELAN Touchpad 15.19.7.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.19.7.1 - ELAN Microelectronic Corp.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden HP ENVY 4500 series Basissoftware van het apparaat (HKLM\...\{1CB893EC-DF84-4B70-9A2D-C5F60907805B}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP ENVY 4500 series Help (HKLM-x32\...\{8E0DEA5E-822C-4993-8D47-9305D61E6188}) (Version: 30.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{e6f0207e-ac43-48a9-bfff-3d879b45694d}) (Version: 18.12.1 - Intel Corporation) iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.) Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2212958904-674450509-3633931156-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden NVIDIA 3D Vision stuurprogramma 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation) NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenOffice 4.1.2 (HKLM-x32\...\{41E7B095-1618-49CF-972F-72B5D5235423}) (Version: 4.12.9782 - Apache Software Foundation) OpenOffice 4.1.2 Language Pack (Dutch) (HKLM-x32\...\{FFA61601-8898-45E3-BA09-864DD29DAFF3}) (Version: 4.12.9782 - Apache Software Foundation) PHotkey (HKLM-x32\...\{E50C224A-BBF2-428D-9DCF-DBF9DF85C40E}) (Version: 1.00.0117 - Pegatron Corporation) Productverbeteringsonderzoek voor HP ENVY 4500 series (HKLM\...\{1F0F7255-BFB6-4EDE-87C1-99B1BDAD2318}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7738 - Realtek Semiconductor Corp.) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.500 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.5.15.54 - NVIDIA Corporation) Hidden SoundTouch (HKLM-x32\...\{73D7F5DC-51B1-4A93-A5E0-DA36A0ACDB5F}) (Version: 14.0.15.339 - BOSE) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) TomTom MyDrive Connect 4.1.0.2658 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.0.2658 - TomTom) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ContextMenuHandlers01: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (Cyberlink) ContextMenuHandlers02: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (Cyberlink) ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxDTCM.dll [2016-11-02] (Intel Corporation) ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation) ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {5F6719FD-3456-4C5D-AB90-8526AF59654C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {6B37A61C-2C96-4001-9EDA-4336B0B9E452} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {6F277F02-979A-43AB-BEEB-7927D8E09F5A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-11] (Google Inc.) Task: {7B99C25A-4641-48CA-B243-77112BAF65A6} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2015-08-27] (CyberLink Corp.) Task: {C8491619-8A94-44E6-A01A-1F24BE4C03FF} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Familie Phillips Vra\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {D2ACA3A9-88E8-4529-918A-284A1BEB9952} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-11] (Google Inc.) Task: {DA3E03EB-34A4-4FC0-8DF5-77F7D6DFE8C5} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [2015-09-09] (CyberLink Corp.) Task: {EB5DE737-8E0C-4853-BBEC-350F3EA06ABD} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-05-23 08:26 - 2017-04-28 02:49 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-10-16 19:30 - 2016-10-16 19:30 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-14 22:23 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-14 22:24 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-14 22:24 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-14 22:24 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-05-23 08:26 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-05-23 08:26 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1" iver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2015-10-30 09:24 - 2017-06-28 10:54 - 00000840 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2212958904-674450509-3633931156-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg DNS Servers: Het Systeem is niet verbonden met internet HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [TCP Query User{3E1D8D27-C2D2-431C-A028-A8CF4F819555}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [UDP Query User{77CF453C-D036-459D-9E00-214D64B82AA7}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [TCP Query User{158D5781-E567-4919-A199-5D6CC62E70A5}C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe FirewallRules: [UDP Query User{262525DC-6998-4068-96E0-D4208DDCC222}C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe FirewallRules: [TCP Query User{CF1900D2-C7D1-4E3E-965F-E6A14674C6EC}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{F88949CE-37A3-4D3A-8C98-DA6D15787A85}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [TCP Query User{9B9F6D8B-A30E-44C8-85C3-05D81A463B56}C:\program files (x86)\soundtouch\soundtouch.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouch.exe FirewallRules: [UDP Query User{E00DF0CA-C25B-4A4C-9EEE-2FDEC836ED8B}C:\program files (x86)\soundtouch\soundtouch.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouch.exe FirewallRules: [TCP Query User{516BDBEC-F355-46C5-822E-7F89EBC8901C}C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe FirewallRules: [UDP Query User{E60D686A-9D18-4F9E-8486-7080E0987F6C}C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe] => (Allow) C:\program files (x86)\soundtouch\soundtouchmusicserver\soundtouch music server.exe FirewallRules: [TCP Query User{B0F9C836-FC6F-4EA4-97F0-4773755F7BB4}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [UDP Query User{2F9694A3-D658-4BAC-BFBE-B925C4D4338A}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [TCP Query User{81F9700B-A939-4076-8C30-F2B5C47E20EF}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{3BC9DE11-99D1-48ED-A62D-1425828D92C0}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [TCP Query User{77EEC4C5-1049-45B3-8BAB-0D919FF52953}C:\program files\itunes\itunes.exe] => (Allow) C:\program files\itunes\itunes.exe FirewallRules: [UDP Query User{F74412FE-FED7-4CB8-AEC3-3198D0248D76}C:\program files\itunes\itunes.exe] => (Allow) C:\program files\itunes\itunes.exe ==================== Herstelpunten ========================= 22-07-2017 13:45:04 VoorAlsWeHetErgerMaken ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (07/23/2017 12:50:30 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-T6SHBH1) Description: Het activeren van de app Microsoft.Getstarted_5.10.1441.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca is mislukt door de fout -2144927149. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (07/23/2017 11:45:52 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector5\kernel\ces\CES_CacheAgent.exe.Manifest' niet maken. Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (07/23/2017 11:45:51 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'c:\program files\cyberlink\photodirector5\kernel\ces\CES_AudioCacheAgent.exe.Manifest' niet maken. Kan afhankelijke assembly PDR.X,type="win32",version="1.0.0.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 5.3.0.2.5.5.E.1.3.C.1.B.B.D.9.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-T6SHBH1-3.local. Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.186:5353 25 5.3.0.2.5.5.E.1.3.C.1.B.B.D.9.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-T6SHBH1-2.local. Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 186.0.168.192.in-addr.arpa. PTR DESKTOP-T6SHBH1-3.local. Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.186:5353 25 186.0.168.192.in-addr.arpa. PTR DESKTOP-T6SHBH1-2.local. Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname DESKTOP-T6SHBH1-2.local already in use; will try DESKTOP-T6SHBH1-3.local instead Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 1; will deregister 4 DESKTOP-T6SHBH1-2.local. Addr 192.168.0.186 Error: (07/23/2017 11:43:50 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.186:5353 16 DESKTOP-T6SHBH1-2.local. AAAA 2A02:1810:1E1F:DA00:49DB:B1C3:1E55:2035 Systeemfouten: ============= Error: (07/23/2017 12:52:27 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de EventSystem-service met de argumenten Niet beschikbaar om de server {1BE1F766-5536-11D1-B726-00C04FB926AF} te starten Error: (07/23/2017 12:52:23 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de ShellHWDetection-service met de argumenten Niet beschikbaar om de server {DD522ACC-F821-461A-A407-50B198B896DC} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (07/23/2017 12:52:16 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-T6SHBH1) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten CodeIntegrity: =================================== Date: 2017-07-22 18:32:33.892 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-16 11:36:45.418 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-13 20:26:31.565 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-11 19:21:23.618 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-08 14:27:25.029 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-08 14:27:25.027 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-08 12:01:15.283 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-28 08:38:07.112 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_3141c1306e24b8d6\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-27 10:16:46.244 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-27 10:16:46.239 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i3-6100U CPU @ 2.30GHz Percentage geheugen in gebruik: 48% Totaal fysiek RAM-geheugen: 3977.7 MB Beschikbaar fysiek RAM-geheugen: 2031.66 MB Totaal Virtueel geheugen: 4873.7 MB Beschikbaar Virtual geheugen: 3043.93 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:869.91 GB) (Free:790.59 GB) NTFS Drive d: (Recover) (Fixed) (Total:60 GB) (Free:34.05 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 9AB89D49) Partition: GPT. ==================== Eind van Addition.txt ============================