Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 23-07-2017 Gestart door Have0 (26-07-2017 13:11:52) Gestart vanaf C:\Users\Have0\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2010-02-24 19:12:57) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2578091034-2730396283-2997144666-500 - Administrator - Disabled) Gast (S-1-5-21-2578091034-2730396283-2997144666-501 - Limited - Disabled) Have0 (S-1-5-21-2578091034-2730396283-2997144666-1001 - Administrator - Enabled) => C:\Users\Have0 HomeGroupUser$ (S-1-5-21-2578091034-2730396283-2997144666-1002 - Limited - Enabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\{F9000000-0018-0000-0000-074957833700}) (Version: 9.01.513.58212 - ABBYY) Hidden ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY) Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}) (Version: 1.0 - Microsoft Corporation) Hidden Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated) Alcor Micro USB Card Reader (HKLM-x32\...\{5A22D889-FBDD-4AE8-86EC-089D45FC133E}) (Version: 1.2.17.25001 - Alcor Micro Corp.) Hidden Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}) (Version: 1.2.17.25001 - Alcor Micro Corp.) Alice Greenfingers (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version: - Oberon Media) AMD USB Filter Driver (HKLM-x32\...\{82809116-D1EE-443C-AE31-F19E709DDF7A}) (Version: 1.0.11.86 - Advanced Micro Devices, Inc.) Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.6 - ASUS) ASUS AP Bank (HKLM-x32\...\ASUS AP Bank_is1) (Version: 1.0.0.0 - ASUSTEK) ASUS FancyStart (HKLM-x32\...\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}) (Version: 1.0.6 - ASUSTeK Computer Inc.) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS) ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS) ASUS MultiFrame (HKLM-x32\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0019 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.24 - ASUS) ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0007 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.18 - asus) Asus WebStorage (HKLM\...\Asus WebStorage) (Version: 2.0.31.477 - eCareme Technologies, Inc.) Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.16 - Atheros Communications Inc.) ATI Catalyst Install Manager (HKLM\...\{138CD2BA-D40F-B371-83A2-6412684CEFDD}) (Version: 3.0.732.0 - ATI Technologies, Inc.) ATK Generic Function Service (HKLM-x32\...\{D3D54F3E-C5C3-443D-978F-87A72E5616E8}) (Version: 1.00.0008 - ATK) ATK Hotkey (HKLM-x32\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0052 - ASUS) ATK Media (HKLM-x32\...\{D1E5870E-E3E5-4475-98A6-ADD614524ADF}) (Version: 2.0.0006 - ASUS) ATKOSD2 (HKLM-x32\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0006 - ASUS) AVG (HKLM\...\{51E31F6F-B8C7-46D9-AFC8-C36F9DE38031}) (Version: 16.151.8013 - AVG Technologies) Hidden AVG 2014 (HKLM\...\{15E4B9CE-C5FB-40B3-A88B-6F210BF46DB7}) (Version: 14.0.3681 - AVG Technologies) Hidden AVG 2016 (HKLM\...\{967C1A08-E50D-4559-A133-530897C5654B}) (Version: 16.0.4779 - AVG Technologies) Hidden AVG 2016 (HKLM\...\{F2B1673B-11B9-4C69-871C-D303070ACFCB}) (Version: 16.0.4649 - AVG Technologies) Hidden AVG Driver Updater (HKLM-x32\...\{95294F1F-3F2F-48E6-A33B-B89632F8F1B7}) (Version: 2.2.2 - AVG Netherlands B.V) Hidden AVG Driver Updater (HKLM-x32\...\AVG Driver Updater) (Version: 2.2.2 - AVG Netherlands B.V) AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies) Basishandleiding EPSON SX440 Series (HKLM-x32\...\EPSON SX440 Series Bog) (Version: - ) ccc-core-static (HKLM-x32\...\{B940CCF6-86B3-170C-48E6-DAADBE8926A6}) (Version: 2009.0729.2227.38498 - ATI) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) Chicken Invaders 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}) (Version: - Oberon Media) Choice Guard (HKLM-x32\...\{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}) (Version: 1.2.87.0 - Microsoft Corporation) Hidden ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.4 - ASUS) CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1720 - CyberLink Corp.) CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.2713 - CyberLink Corp.) Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION) EasyVideoMaker (HKLM-x32\...\{03EC818F-96E5-497F-AF28-EC6BC4CF32D3}) (Version: 5.15 - Easy Video Maker) Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION) Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2) Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON SX440 Series Printer Uninstall (HKLM\...\EPSON SX440 Series) (Version: - SEIKO EPSON Corporation) EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION) ETDWare PS/2-x64 7.0.5.7_WHQL (HKLM\...\Elantech) (Version: - ) ExtractNow (HKLM-x32\...\ExtractNow) (Version: 4.8.2.0 - Nathan Moinvaziri) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.4 - ASUS) FMW 1 (HKLM\...\{8DF0D8D9-0C24-47EB-9738-376DD2705133}) (Version: 1.214.2 - AVG Technologies) Hidden Free Audio Converter version 5.0.59.525 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.59.525 - DVDVideoSoft Ltd.) Gebruikershandleiding EPSON SX440 Series (HKLM-x32\...\EPSON SX440 Series Useg) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden inSSIDer (HKLM-x32\...\{65A5E87D-7A3F-4819-807D-B86990D5F369}) (Version: 2.1.6 - MetaGeek) Intel WiDi Media Share (HKLM-x32\...\{275CD120-A23B-47C7-944A-9B6D9CDA583F}) (Version: 1.1.0.0 - Intel Corporation) Hidden Intel® WiDi Media Share (HKLM-x32\...\{32d14b1d-18fa-48e7-867d-93b7a72c816a}) (Version: 1.1.0.0 - Intel Corporation) Island Wars 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110304260}) (Version: - Oberon Media) Java 8 Update 141 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}) (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden Logitech Flow Scroll 4.0 (HKLM\...\Sn1) (Version: 4.00.33 - Logitech) Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Live Add-in 1.3 (HKLM-x32\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation) Microsoft Office Outlook Connector (HKLM-x32\...\{95120000-0120-0413-0000-0000000FF1CE}) (Version: 12.0.6414.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Minecraft1.7.4 (HKLM-x32\...\Minecraft1.7.4) (Version: - ) Movavi Video Editor 10 (HKLM-x32\...\Movavi Video Editor 10) (Version: 10.3.0 - Movavi) Mozilla Firefox 53.0.3 (x86 nl) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 nl)) (Version: 53.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla) Netwerkhandleiding EPSON SX440 Series (HKLM-x32\...\EPSON SX440 Series Netg) (Version: - ) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) SABnzbd 0.7.16 (HKLM-x32\...\SABnzbd) (Version: 0.7.16 - The SABnzbd Team) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.) Smileyville (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110413757}) (Version: - Oberon Media) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) TVersity Codec Pack 1.7 (HKLM-x32\...\TVersity Codec Pack) (Version: 1.7 - TVersity Inc.) USB 2.0 1.3M UVC WebCam (HKLM\...\USB 2.0 1.3M UVC WebCam) (Version: - ) USB Audio/Vide Driver (HKLM-x32\...\{03CD367D-3959-4529-81B6-B7C80F146781}) (Version: 1.00.0000 - ) Hidden USB Audio/Vide Driver (HKLM-x32\...\InstallShield_{03CD367D-3959-4529-81B6-B7C80F146781}) (Version: 1.00.0000 - ) VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.) Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN) VMware Horizon Client (HKLM\...\{783A7221-AF59-4F7D-8D88-FBE4266BC8F6}) (Version: 3.5.0.29526 - VMware, Inc.) WinAVI Video Converter (HKLM-x32\...\WinAVI Video Converter 10.5_is1) (Version: - ZJ Computing,Inc.) Windows Live - Hulpprogramma voor uploaden (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Live aanmeldhulp (HKLM-x32\...\{7E1FBCB0-500C-4A0D-AC9C-B1B76E75666B}) (Version: 5.000.818.6 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation) Windows Live Sync (HKLM-x32\...\{A5F3E8C0-E949-40D0-B529-D34A4BCDA43C}) (Version: 14.0.8050.1202 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.29.0 - ASUS) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinZip 20.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24105}) (Version: 20.5.12118 - WinZip Computing, S.L. ) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.11 - ASUS) Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.1) (Version: 1.3.1 - Xvid Team) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll () ShellIconOverlayIdentifiers: [OverlayIconExtension1] -> {fe25455d-b4c2-4e32-97d2-92632ec1c224} => C:\Windows\system32\mscoree.dll [2014-06-22] (Microsoft Corporation) ShellIconOverlayIdentifiers: [OverlayIconExtension2] -> {1fae2d88-a78e-4f03-909f-be818a3c1ce6} => C:\Windows\system32\mscoree.dll [2014-06-22] (Microsoft Corporation) ContextMenuHandlers01: [AVG Shell Extension] -> {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} => C:\Program Files (x86)\AVG\Av\avgsea.dll [2017-04-11] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers01: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\system32\mscoree.dll [2014-06-22] (Microsoft Corporation) ContextMenuHandlers01: [FileAssociationHelper] -> {D5CF14A2-B3CA-49DC-8E3E-0BB233B26D09} => C:\Program Files\File Association Helper\FAHDll.dll [2014-01-28] (Nico Mak Computing) ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-05] (Alexander Roshal) ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Geen bestand ContextMenuHandlers01: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-05-01] (WinZip Computing, S.L.) ContextMenuHandlers03: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\system32\mscoree.dll [2014-06-22] (Microsoft Corporation) ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers04: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-05-01] (WinZip Computing, S.L.) ContextMenuHandlers05: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2009-07-30] (Advanced Micro Devices, Inc.) ContextMenuHandlers06: [AVG Shell Extension] -> {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} => C:\Program Files (x86)\AVG\Av\avgsea.dll [2017-04-11] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-05] (Alexander Roshal) ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Geen bestand ContextMenuHandlers06: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-05-01] (WinZip Computing, S.L.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {3BF87D6F-3241-4CCB-A284-20706C34C1DA} - \WinZipBackGroundToolsTask -> Geen bestand <==== AANDACHT Task: {4928B02E-BF35-4DBF-A521-74E0EB8443BF} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {4D03DA6C-90B6-4BC3-9610-17B2F0714065} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe Task: {55271D53-419F-468D-ACB2-7D4A76F1A975} - System32\Tasks\{A43D4B78-0311-4C53-983B-3317133FAC60} => C:\Program Files (x86)\LG Software Innovations\1Click DVD Copy Pro\1ClickDvdCopyPro.exe Task: {59AC491C-CCDD-4208-A759-8ED534D33B92} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14] (Google Inc.) Task: {5E4A1B18-7A46-4008-8307-9ECF546B8838} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {5FB2FC62-791A-46E9-95B1-1F36EB423DDE} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2014-06-19] () Task: {6A21E193-7A92-4E68-979C-676F0F4365D0} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] () Task: {6AF683E2-5CF5-4AEC-BBF4-DE0BD3C1BE9C} - System32\Tasks\AVG Driver Updater Startup => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [2016-08-10] (AVG Netherlands B.V) Task: {75FF1BE4-3834-41CA-825E-BEDE6EE63F6D} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlCtrl.exe [2009-08-12] (TODO: ) Task: {7CC95640-FBCF-47B6-B317-0FB0710FDD3D} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK) Task: {932D40F5-8499-4724-AB9D-4785B14FA9EF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {AFCE63F4-53EC-4858-928F-734010A3F4C3} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2009-09-08] (ATK) Task: {B03C47E9-107A-44C2-AD69-5A7F83FBAF81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {B4B1F1F8-243C-4900-893F-5B72948B53D3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-13] (Adobe Systems Incorporated) Task: {B8C3EC42-7818-4D91-A1B7-AACA6C0302AE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-05-19] (ASUS) Task: {C496B371-F6F2-4025-B3E3-5E183E8A200E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {CEE2FC1F-A3E3-4EA7-B8F0-9A1F1D909BAA} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2009-09-05] () Task: {D7B3BDA8-C457-4E3C-B43B-78EDB0696CBD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-14] (Google Inc.) Task: {DB339C1A-15AF-41D6-B38B-26B0915B5EC3} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-09-24] () Task: {E0CEF672-C020-4B8C-8CCA-3C32307BD88A} - System32\Tasks\AVG Driver Updater Scan => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe [2016-08-10] (AVG Netherlands B.V) Task: {F9175C10-4AB6-43E2-AC34-3492F0EAF781} - System32\Tasks\{6F034AA8-8BDD-4443-BDC7-9F8C6D7A8AB4} => C:\Windows\system32\pcalua.exe -a C:\Users\Have0\Downloads\Setup.exe -d C:\Users\Have0\Downloads Task: {FEDC8796-AADC-452C-BE07-7E81320D10BF} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\Windows\Tasks\AVG Driver Updater Scan.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe Task: C:\Windows\Tasks\AVG Driver Updater Startup.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\Have0\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Mijn websites bij MSN\target.lnk -> hxxp://www.msnusers.co ==================== Geladen Modules (gefilterd) ============== 2009-12-19 04:43 - 2007-08-08 10:08 - 00094208 _____ () C:\Program Files\ATKGFNEX\GFNEXSrv.exe 2008-08-14 06:59 - 2008-08-14 06:59 - 00301624 _____ () C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe 2009-12-19 04:45 - 2007-11-30 21:20 - 00051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe 2008-10-01 09:02 - 2008-10-01 09:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2009-09-11 02:42 - 2009-09-11 02:42 - 00041984 _____ () C:\Program Files\P4G\DevMng.dll 2009-09-11 22:27 - 2009-09-11 22:27 - 00029184 _____ () C:\Program Files\P4G\OvrClk.dll 2009-12-19 04:43 - 2007-03-10 04:58 - 00124416 _____ () C:\Program Files\ATKGFNEX\AGFNEX64.dll 2009-09-05 01:24 - 2009-09-05 01:24 - 01600128 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe 2009-09-24 23:50 - 2009-09-24 23:50 - 00053888 _____ () C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe 2015-06-16 11:10 - 2015-06-16 11:10 - 00226240 ____C () C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe 2015-07-31 15:42 - 2015-07-31 15:42 - 06363792 ____C () C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 ____C () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2009-08-25 09:47 - 2009-08-25 09:47 - 00140560 _____ () C:\Program Files (x86)\ASUS\Asus WebStorage\EcaremeDLL.dll 2009-12-19 04:17 - 2009-12-19 04:17 - 00029968 _____ () C:\Windows\assembly\GAC_MSIL\SqliteShared\1.0.3524.15966__0d0f4b69e50e559b\SqliteShared.dll 2009-12-19 04:17 - 2009-12-19 04:17 - 00931840 _____ () C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll 2009-12-19 04:29 - 2009-12-19 04:29 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2017-07-12 18:10 - 2017-06-23 05:21 - 03807064 ____C () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll 2017-07-12 18:10 - 2017-06-23 05:21 - 00100184 ____C () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll 2015-06-16 11:04 - 2015-06-16 11:04 - 00239552 ____C () C:\Program Files (x86)\Common Files\VMware\DeviceRedirectionCommon\ftnlapi.dll 2016-12-04 13:22 - 2016-12-04 13:20 - 48920064 ____C () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 ____C () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2015-11-11 03:42 - 2015-11-11 03:42 - 01045672 ____C () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\amazon.com -> hxxps://amazon.com IE trusted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\localhost -> localhost IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\...\100sexlinks.com -> 100sexlinks.com Er zijn 4788 Meer websites. ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 04:34 - 2012-07-28 19:30 - 00000027 ____C C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2578091034-2730396283-2997144666-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Have0\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.192.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FAH.lnk => C:\Windows\pss\FAH.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NewShortcut1.lnk => C:\Windows\pss\NewShortcut1.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Update-melder.lnk => C:\Windows\pss\Update-melder.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Preloader.lnk => C:\Windows\pss\WinZip Preloader.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Have0^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk => C:\Windows\pss\In Voor En Tegenspoed - Seizoen 1 _ Aflevering 1.mov.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: EeeStorageBackup => C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r MSCONFIG\startupreg: Malwarebytes TrayApp => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" MSCONFIG\startupreg: Xvid => C:\Program Files (x86)\Xvid\CheckUpdate.exe ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{95D3EED8-4DC9-4A2E-9D0A-DDFFC0084AD5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{EB0DF1F4-6803-4B8D-8F69-3F584C548809}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{0FDB93C9-DBC2-4694-B822-A3B4D20418B9}] => (Allow) svchost.exe FirewallRules: [{5D5D7C8A-77DB-46D0-B242-0DC2E5F4DAF6}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe FirewallRules: [TCP Query User{CAB61662-1C97-4DA8-9125-D2F907F0CF0C}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{8C253058-D4CE-4A67-BA19-84F24AA52E8D}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{B2EEAFF8-FBDE-4C80-A4D4-338FD9646D51}] => (Allow) C:\Users\Have0\Downloads\AudioConverter_Setup.exe FirewallRules: [{4CB999F9-80AE-499C-A5A1-E781B9FAE433}] => (Allow) C:\Users\Have0\Downloads\AudioConverter_Setup.exe FirewallRules: [TCP Query User{CD581EB8-53F3-4935-A6D0-2E7812A51893}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{06023446-5686-40F8-828E-6E8A3F50F91A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{320B1F01-A4DC-457B-87F1-898A70D7D81B}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{AB2EF3B4-8C4B-432F-A81C-68162CCCD655}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [{49ADCAE4-CE4F-4A58-A864-7AC547B54D91}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{909F0EE1-2AC6-4B9F-86C8-3E8DC69345A2}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{EBCACC12-2791-41EE-A9FC-B4A3D9EE6B36}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [TCP Query User{80FC0B9F-6444-4F5E-8690-2A514566314E}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{2289EAA5-DEDC-4AAD-87C9-323E7A37D335}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{1452AFC6-3680-4E76-AB89-8A7955B99276}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{D2D4A55A-A79B-4C9E-999E-6183FFDFAB03}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{551BEABD-E88F-4CA2-9465-30FD33E89D38}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{2166D924-B493-4379-B6F2-EA3C2A57C91B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{B6681F01-BE31-466E-AF57-CF9EEC0853E3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DE741EF4-02F8-48AC-A2BA-08ABDED61057}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3CA60519-1587-41F1-88CD-35691EFE6CE3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{C725B6D0-AC6B-4AF2-A4E8-9FF451447B16}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{8D536DA5-1234-4B16-91DB-8A64B76913B9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{B717A87A-64E6-4DFE-BA52-1285BCF1B504}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe FirewallRules: [{90F2134E-1D74-4C4F-9784-29D93541B99A}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe FirewallRules: [{334DB732-9388-4F3D-8AE1-88EB86FC236E}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe FirewallRules: [{1FB866DB-F5AF-4CE6-AE7E-1C38404BDAFE}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe FirewallRules: [{96336EBA-62D1-43E7-959B-A95E7B842E0A}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe FirewallRules: [{659700F9-63AE-4E22-B342-9446F4D479C1}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe FirewallRules: [{CFA73E55-1BE6-4F67-9F43-961F6AE24B9E}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe FirewallRules: [{66E7EEBD-56D2-472D-900B-7F0BD5A04B47}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe FirewallRules: [{11A0109E-7776-4943-A7F3-DB15B0E42FB4}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{75AF02A1-99DB-4825-BD44-AC55132643DF}] => (Allow) F:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{96EC06D6-D4B9-40D9-9624-A17AC6123E27}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5882AD78-7C88-485D-8A51-595D8F330B69}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{E73B1009-4F98-48E0-B843-34E40E826806}C:\program files (x86)\vmware\vmware horizon view client\vmware-remotemks.exe] => (Allow) C:\program files (x86)\vmware\vmware horizon view client\vmware-remotemks.exe FirewallRules: [UDP Query User{237D45EE-BD43-469E-95E5-8881A490AE6D}C:\program files (x86)\vmware\vmware horizon view client\vmware-remotemks.exe] => (Allow) C:\program files (x86)\vmware\vmware horizon view client\vmware-remotemks.exe FirewallRules: [{29D4DBFC-0323-452F-A3B1-02480C01DABD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{D0D0BCC2-5EC8-4A30-AE27-340A026A0F39}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{DF29DF52-68BC-4FA9-AAB8-0CE55AC6951A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{394A9DC7-CB50-4BCE-BEB1-CF9949A1AA8A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{296DAC89-D7DF-4E6E-BA35-4EF1C329ECD8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 24-07-2017 18:25:43 Windows Back-up ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (07/26/2017 11:28:39 AM) (Source: Microsoft Office 14) (EventID: 2001) (User: ) Description: Microsoft Outlook: Rejected Safe Mode action : Outlook is de vorige keer niet goed gestart. Als u Outlook in de veilige modus start, kunt u het opstartprobleem mogelijk opsporen en corrigeren, zodat het programma juist kan worden gestart. Mogelijk wordt bepaalde functionaliteit in deze modus uitgeschakeld. Wilt u Outlook starten in de veilige modus?. Rejected Safe Mode action : Microsoft Outlook. Error: (07/25/2017 11:39:18 AM) (Source: MsiInstaller) (EventID: 11307) (User: Have0-PC) Description: Product: Java 8 Update 141 -- Error 1307. There is not enough disk space to install this file: C:\Windows\Installer\21cdfd.msi. Free some disk space and click Retry, or click Cancel to exit. Error: (07/17/2017 06:25:57 PM) (Source: Windows Backup) (EventID: 4100) (User: ) Description: De back-up is niet met succes voltooid omdat er geen schaduwkopie kan worden gemaakt. Maak schijfruimte vrij op de schijf waarvan u een back-up maakt door onnodige bestanden te verwijderen en probeer het opnieuw. Error: (07/17/2017 06:24:24 PM) (Source: MsiInstaller) (EventID: 11303) (User: NT AUTHORITY) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG -- Error 1303. SA_Error1303: StandardAction(0xC0070517): The installer has insufficient privileges to access this directory: C:\Program Files (x86)\AVG\Zen. The installation cannot continue. Log on as administrator or contact your system administrator. Error: (07/15/2017 08:11:18 PM) (Source: MsiInstaller) (EventID: 11303) (User: NT AUTHORITY) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG -- Error 1303. SA_Error1303: StandardAction(0xC0070517): The installer has insufficient privileges to access this directory: C:\Program Files (x86)\AVG\Zen. The installation cannot continue. Log on as administrator or contact your system administrator. Error: (07/15/2017 11:39:08 AM) (Source: Microsoft Office 14) (EventID: 2000) (User: ) Description: Microsoft Outlook: Accepted Safe Mode action : Outlook is de vorige keer niet goed gestart. Als u Outlook in de veilige modus start, kunt u het opstartprobleem mogelijk opsporen en corrigeren, zodat het programma juist kan worden gestart. Mogelijk wordt bepaalde functionaliteit in deze modus uitgeschakeld. Wilt u Outlook starten in de veilige modus?. Accepted Safe Mode action : Microsoft Outlook. Error: (07/15/2017 11:38:45 AM) (Source: Microsoft Office 14) (EventID: 2001) (User: ) Description: Microsoft Outlook: Rejected Safe Mode action : Outlook is de vorige keer niet goed gestart. Als u Outlook in de veilige modus start, kunt u het opstartprobleem mogelijk opsporen en corrigeren, zodat het programma juist kan worden gestart. Mogelijk wordt bepaalde functionaliteit in deze modus uitgeschakeld. Wilt u Outlook starten in de veilige modus?. Rejected Safe Mode action : Microsoft Outlook. Error: (07/14/2017 08:09:20 PM) (Source: MsiInstaller) (EventID: 11303) (User: NT AUTHORITY) Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG -- Error 1303. SA_Error1303: StandardAction(0xC0070517): The installer has insufficient privileges to access this directory: C:\Program Files (x86)\AVG\Zen. The installation cannot continue. Log on as administrator or contact your system administrator. Error: (07/12/2017 07:15:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: mbamtray.exe, versie: 3.0.0.1068, tijdstempel: 0x59125d35 Naam van module met fout: MSVCR120.dll, versie: 12.0.21005.1, tijdstempel: 0x524f7ce6 Uitzonderingscode: 0xc0000005 Foutoffset: 0x0000f189 Id van proces met fout: 0x1340 Starttijd van toepassing met fout: 0x01d2fb320560ae80 Pad naar toepassing met fout: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Pad naar module met fout: C:\Program Files\Malwarebytes\Anti-Malware\MSVCR120.dll Rapport-id: ac3fd0c4-6725-11e7-af98-e0cb4e415243 Error: (07/12/2017 07:00:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: mbamtray.exe, versie: 3.0.0.1068, tijdstempel: 0x59125d35 Naam van module met fout: Qt5Core.dll, versie: 5.6.2.0, tijdstempel: 0x58ed4d4f Uitzonderingscode: 0xc0000005 Foutoffset: 0x00001868 Id van proces met fout: 0x1be4 Starttijd van toepassing met fout: 0x01d2fb304f45bfd8 Pad naar toepassing met fout: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Pad naar module met fout: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll Rapport-id: 954dc1f5-6723-11e7-81fd-e0cb4e415243 Systeemfouten: ============= Error: (07/26/2017 12:54:43 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (07/26/2017 11:12:31 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: De volgende opstartstuurprogramma's zijn niet geladen: aswSnx fsxugn Error: (07/26/2017 11:11:21 AM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout: Toegang geweigerd. . Error: (07/26/2017 11:11:03 AM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout: Toegang geweigerd. . Error: (07/26/2017 11:10:30 AM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (07/26/2017 11:10:30 AM) (Source: atikmdag) (EventID: 19468) (User: ) Description: CPLIB :: General - Invalid Parameter Error: (07/26/2017 11:10:40 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 11:06:09 op ‎26-‎7-‎2017 is onverwacht gebeurd. Error: (07/26/2017 11:00:33 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: De volgende opstartstuurprogramma's zijn niet geladen: aswSnx fsxugn Error: (07/26/2017 11:00:08 AM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout: Toegang geweigerd. . Error: (07/26/2017 10:59:41 AM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: ScRegSetValueExW-oproep voor FailureActions is niet geslaagd vanwege deze fout: Toegang geweigerd. . CodeIntegrity: =================================== Date: 2015-09-09 16:14:26.255 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:25.693 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:25.147 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:24.601 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:24.055 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:23.556 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:23.041 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-09 16:14:22.542 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-08 20:00:27.124 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. Date: 2015-09-08 20:00:26.656 Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem. ==================== Geheugen info =========================== Processor: AMD Athlon(tm) II Dual-Core M300 Percentage geheugen in gebruik: 61% Totaal fysiek RAM-geheugen: 4095.21 MB Beschikbaar fysiek RAM-geheugen: 1567.2 MB Totaal Virtueel geheugen: 8188.61 MB Beschikbaar Virtual geheugen: 5787.82 MB ==================== Schijven ================================ Drive c: (OS) (Fixed) (Total:74.52 GB) (Free:4.11 GB) NTFS ==>[schijf met boot componenten (verkregen van BCD)] Drive d: (DATA) (Fixed) (Total:208.92 GB) (Free:190.31 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 76692CA8) Partition 1: (Not Active) - (Size=14.6 GB) - (Type=1C) Partition 2: (Active) - (Size=74.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=208.9 GB) - (Type=OF Extended) ==================== Eind van Addition.txt ============================