Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 21-10-2017 Gestart door rita (22-10-2017 17:31:39) Gestart vanaf C:\Users\rita\Downloads Windows 10 Home Versie 1703 15063.674 (X64) (2017-07-21 11:00:26) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-455634102-3971962441-1493714179-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-455634102-3971962441-1493714179-503 - Limited - Disabled) Gast (S-1-5-21-455634102-3971962441-1493714179-501 - Limited - Disabled) => C:\Users\Gast rita (S-1-5-21-455634102-3971962441-1493714179-1001 - Administrator - Enabled) => C:\Users\rita ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) A360 Desktop (HKLM\...\{7758802D-9486-4883-9927-CCAC366A3BA4}) (Version: 7.2.3.1800 - Autodesk) ACA & MEP 2017 Object Enabler (HKLM\...\{28B89EEF-0004-0000-5102-CF3F3A09B77D}) (Version: 7.9.45.0 - Autodesk) Hidden ACAD Private (HKLM\...\{28B89EEF-0001-0000-3102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden Adblock Plus voor IE (32-bit en 64-bit) (HKLM\...\{EAB6B77C-0E46-48EF-8660-7ABA400F7FB4}) (Version: 1.5 - Eyeo GmbH) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.170 - Adobe Systems Incorporated) Agatha Christie - Death on the Nile (HKLM-x32\...\WTA-1199499e-254b-40ae-aec4-613e6191aed5) (Version: 2.2.0.98 - WildTangent) Hidden Akamai NetSession Interface (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Aloha TriPeaks (HKLM-x32\...\WTA-98c0d246-452b-48d4-95ce-0e46790d0d89) (Version: 2.2.0.98 - WildTangent) Hidden ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.212 - Alps Electric) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AMD Catalyst Install Manager (HKLM\...\{13351E83-6DCD-4E97-2A8C-5D496259A47F}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Apple Application Support (32-bit) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.) Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.) Ask Toolbar (HKLM-x32\...\{4F524A2D-5637-006A-76A7-A758B70C1101}) (Version: 12.17.1.75 - APN, LLC) <==== AANDACHT AutoCAD 2017 - English (HKLM\...\{28B89EEF-0001-0409-2102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 (HKLM\...\{28B89EEF-0001-0000-0102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 Language Pack - English (HKLM\...\{28B89EEF-0001-0409-1102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk) Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk) Autodesk AutoCAD 2017 - English (HKLM\...\AutoCAD 2017 - English) (Version: 21.0.52.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2017 Add-in 64 bit (HKLM\...\{276A67E0-71EB-4827-B5F7-2ACF02BC1A5B}) (Version: 4.37.6853 - Autodesk) Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 6.2.0.174 - Autodesk) Autodesk Download Manager (HKLM-x32\...\{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}) (Version: 4.0.14.0 - Autodesk, Inc.) Autodesk Featured Apps 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk) Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk) Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk) Autodesk ReCap 360 (HKLM\...\{5F0F7049-0000-1033-0102-73A6DA3D7FA6}) (Version: 3.0.0.52 - Autodesk) Hidden Autodesk ReCap 360 (HKLM\...\Autodesk ReCap 360) (Version: 3.0.0.52 - Autodesk) Avira (HKLM-x32\...\{bd538030-07d4-4999-a525-7fafa2483f56}) (Version: 1.1.30.21727 - Avira Operations & Co. KG) Bejeweled 3 (HKLM-x32\...\WTA-ea49f273-2931-462e-b875-90fb16f307de) (Version: 2.2.0.98 - WildTangent) Hidden Belgium e-ID middleware 4.1.10 (build 1698) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A71698}) (Version: 4.1.1698 - Belgian Government) Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.48.0 - Conexant) CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - Acro Software Inc.) CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4427.52 - CyberLink Corp.) Delicious: Emily's True Love Premium Edition (HKLM-x32\...\WTA-d96c894b-28b4-48e5-9fca-eec94965d3f9) (Version: 2.2.0.98 - WildTangent) Hidden Dropbox (HKLM-x32\...\Dropbox) (Version: 37.4.29 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden eaZyLink (HKLM-x32\...\{CF756771-3653-45E5-809E-D056F4BAACC0}) (Version: 1.2.5 - ZETES) E-Peek (HKLM-x32\...\E-Peek) (Version: - ) EPLAN Education 2.5 (x64) (HKLM\...\{E3195ED3-04DE-4ADD-BDEF-AC8528B2949E}) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) Hidden EPLAN Education 2.5 (x64) (HKLM\...\{E3195ED3-04DE-4ADD-BDEF-AC8528B2949E}-9380) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) EPLAN License Client (HKLM-x32\...\{0100BD88-3990-431F-9175-AB60E31AFFDE}) (Version: 9.1.13.64100 - EPLAN Software & Service GmbH & Co. KG) EPLAN License Client (x64) (HKLM\...\{06400E16-27C0-412B-AB67-6A677D35C85D}) (Version: 9.1.13.64100 - EPLAN Software & Service GmbH & Co. KG) EPLAN Platform 2.5 (x64) (HKLM\...\{E32F275E-0EAE-4E51-B857-837FEFAF4297}) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) Hidden EPLAN Platform 2.5 (x64) (HKLM\...\{E32F275E-0EAE-4E51-B857-837FEFAF4297}-9380) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) EPLAN Trial Education Data 2.5 (x64) (HKLM\...\{E3304F86-2F40-4C49-A57A-004BCA0F6EAC}) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) Hidden EPLAN Trial Education Data 2.5 (x64) (HKLM\...\{E3304F86-2F40-4C49-A57A-004BCA0F6EAC}-9380) (Version: 2.5.4.9380 - EPLAN Software & Service GmbH & Co. KG) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) FARO LS 1.1.505.0 (64bit) (HKLM-x32\...\{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 - FARO Scanner Production) Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 0.6.0 - Hotger) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Chrome Bèta (HKLM-x32\...\Google Chrome Beta) (Version: 62.0.3202.62 - Google Inc.) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-693aeaf0-4716-4e3a-87c2-e340390cf539) (Version: 2.2.0.110 - WildTangent) Hidden HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Officejet 4620 series Basissoftware van het apparaat (HKLM\...\{E75C591A-0E5F-4365-9B79-0E4FCCF1B34F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Officejet 4620 series Haelp (HKLM-x32\...\{225F0E4C-A89A-4AC7-A56A-95B2A12DDC26}) (Version: 6.0.0 - Hewlett Packard) HP Officejet 4620 series Productverbeteringsonderzoek (HKLM\...\{487EE170-5858-4400-8975-085145D91C83}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\HP Photo Creations) (Version: 1.0.0.17422 - HP) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard) I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) iCloud (HKLM\...\{7464D896-C63C-412E-8ED3-3261C9F14E21}) (Version: 7.0.1.210 - Apple Inc.) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Packard Bell) Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security) Island Tribe (HKLM-x32\...\WTA-76750326-df14-4ecd-9da1-e8dc530a4537) (Version: 2.2.0.98 - WildTangent) Hidden iTunes (HKLM\...\{4C27D135-9BF4-4C4E-8380-420FFAA116AA}) (Version: 12.7.0.166 - Apple Inc.) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Jewel Legends Atlantis (HKLM-x32\...\WTA-4a5fd9cf-d72d-45b2-ad3c-af0d04675c59) (Version: 3.0.2.51 - WildTangent) Hidden Jewel Match 3 (HKLM-x32\...\WTA-9966b442-4d90-4833-acff-c03bd8422bab) (Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (HKLM-x32\...\WTA-7d7b1629-7914-47c0-827d-e0b4995f4fba) (Version: 2.2.0.95 - WildTangent) Hidden Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Packard Bell) Magic Academy (HKLM-x32\...\WTA-fd1518fe-1cb2-410e-a6e0-4565da444c38) (Version: 2.2.0.98 - WildTangent) Hidden Malwarebytes Secure Backup (HKLM-x32\...\{E8FF0AA9-9733-49D5-86B9-3FB75F9E4D60}) (Version: 5.12.2.745 - Malwarebytes Corporation) Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.8528.2139 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\OneDriveSetup.exe) (Version: 17.3.7073.1013 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 56.0 (x64 nl) (HKLM\...\Mozilla Firefox 56.0 (x64 nl)) (Version: 56.0 - Mozilla) Mozilla Firefox 56.0.1 (x64 nl) (HKLM\...\Mozilla Firefox 56.0.1 (x64 nl)) (Version: 56.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG) Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{B2B0EC73-AD4A-4716-A3DE-CEA8440B309B}) (Version: 12.5.00000 - Nero AG) Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG) Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\{88B6F9DE-C80F-4A70-ACF6-BEE933679170}) (Version: 3.8.54.0 - Nokia) Hidden Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia) Norton Online Backup ARA (HKLM-x32\...\NARA) (Version: 4.1.0.14 - Symantec Corporation) Hidden Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8528.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden Packard Bell Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Packard Bell) Packard Bell Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Packard Bell) Packard Bell Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3012 - Packard Bell) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) Penguins! (HKLM-x32\...\WTA-5000cdd2-6bd9-488a-964c-1a6ab347219f) (Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-6f7645df-852f-41ab-b2a2-ad77506a4c81) (Version: 2.2.0.98 - WildTangent) Hidden Polar Bowler (HKLM-x32\...\WTA-933093f7-9c4e-4d8c-9f1f-f693272007dc) (Version: 2.2.0.97 - WildTangent) Hidden Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0002 - Nero AG) Hidden Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28124 - Realtek Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) SketchUp Import 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype Web Plugin (HKLM-x32\...\{0F7D4832-16AE-4857-A6FA-2B141D75A59B}) (Version: 7.7.0.219 - Skype Technologies S.A.) Skype™ 7.35 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.35.103 - Skype Technologies S.A.) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) Tales of Lagoona (HKLM-x32\...\WTA-491c8ba8-71b1-4f8f-a3f9-8236469c5cca) (Version: 2.2.0.110 - WildTangent) Hidden Unchecky v1.1 (HKLM-x32\...\Unchecky) (Version: 1.1 - Reason Software Company Inc.) Unity Web Player (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell) (Version: 4.0.10.25 - WildTangent) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows-stuurprogrammapakket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) WinZip 21.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2410B}) (Version: 21.0.12288 - WinZip Computing, S.L. ) Zuma's Revenge (HKLM-x32\...\WTA-8f5abc1c-23e2-4b7a-a509-93bcbb7d6726) (Version: 2.2.0.98 - WildTangent) Hidden ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{0D327DA6-B4DF-4842-B833-2CFF84F0948F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\rita\AppData\Local\Microsoft\OneDrive\17.3.7073.1013\amd64\FileCoAuthLib64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{81CD4B70-A8AB-48FC-826C-8F76A1A06829}\InprocServer32 -> C:\Users\rita\AppData\Local\SkypePlugin\7.7.0.219\GatewayActiveX-x64.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.dll () CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\rita\AppData\Local\SkypePlugin\7.7.0.219\EdgeCalling.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{D779CCB8-300C-4160-B101-D6A5FD73294E}\localserver32 -> C:\Users\rita\AppData\Local\SkypePlugin\7.7.0.219\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2017\en-US\acadficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{FE186CB0-BEDC-11D5-9B1D-0050DA438716}\localserver32 -> C:\Program Files\EPLAN\Platform\2.5.4\Bin\EPLAN.exe (EPLAN Software & Service GmbH & Co. KG) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2016-02-07] (Autodesk) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers1-x32: [OnlineProtectMenu] -> {5717060c-0509-11e0-b88e-001d60af2322} => C:\Program Files (x86)\Malwarebytes Secure Backup\CtxMenu.dll [2014-03-19] (Malwarebytes Secure Backup) ContextMenuHandlers1-x32: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-09-18] (Apple Inc.) ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-10-27] (WinZip Computing, S.L.) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-10-27] (WinZip Computing, S.L.) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-02-28] (Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers6-x32: [OnlineProtectMenu] -> {5717060c-0509-11e0-b88e-001d60af2322} => C:\Program Files (x86)\Malwarebytes Secure Backup\CtxMenu.dll [2014-03-19] (Malwarebytes Secure Backup) ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2016-10-27] (WinZip Computing, S.L.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {033815EC-ECB3-48DD-A53D-02F3A542E848} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-12] (Microsoft Corporation) Task: {05C020B1-46CA-4BA7-80E2-89A72020DA66} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001Core => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-19] (Facebook Inc.) Task: {090A85D0-19D7-4403-8DD8-9CA729673BF9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Geen bestand <==== AANDACHT Task: {1B407A2D-AB73-46DF-B1E5-742A00622E5B} - System32\Tasks\{7E363E3F-BDFC-43DD-B474-8063D18A6AF8} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\rita\SkyDrive\Documenten\Education 2.5.4.9380\setup.exe" -d "C:\Users\rita\SkyDrive\Documenten\Education 2.5.4.9380" Task: {29536BBD-55E7-4A53-828A-1B28E894E9DA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Geen bestand <==== AANDACHT Task: {2A3C7B87-C0D0-475D-96CC-C98CD3DEF0D3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-29] () Task: {32D44C84-DF6B-4020-B9F2-9064336AC7B4} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [2012-06-21] () Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {35793A0A-D82F-4132-8FAC-E675AC542D80} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-29] () Task: {35BDD7EF-A298-4347-A34A-522862C9250E} - \WPD\SqmUpload_S-1-5-21-455634102-3971962441-1493714179-1001 -> Geen bestand <==== AANDACHT Task: {47238C0A-AE41-47E9-9C04-D88C26D800F6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_170_pepper.exe [2017-10-16] (Adobe Systems Incorporated) Task: {4899E1EF-FD36-487D-AE75-4A6A9812B979} - \SecureHost -> Geen bestand <==== AANDACHT Task: {4937F43A-61A4-404D-AF39-410B58685384} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated) Task: {494BA159-6DDE-4B42-B5F7-754AC16BAE11} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-09-05] (Oracle Corporation) Task: {4D067C90-AF71-455A-A17B-64278BE632A2} - System32\Tasks\Online Backup Update Notifier => C:\Program Files (x86)\Malwarebytes Secure Backup\SUpdateNotifier.exe [2014-03-19] (Malwarebytes Secure Backup) Task: {512F59B0-41BD-4CE5-8532-30EFF73484B7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-12] (Microsoft Corporation) Task: {57E90C96-0A89-4884-8744-217115EE0557} - \HostSecure2 -> Geen bestand <==== AANDACHT Task: {58A062FA-7849-48B1-BD34-475185AF96F6} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Geen bestand <==== AANDACHT Task: {58AB787C-0DB6-4223-82C0-6A66B062187A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Geen bestand <==== AANDACHT Task: {5B881B55-9289-4553-892B-1DFFCED40768} - System32\Tasks\{2522551F-65FB-4163-969D-21A79F1EE7AC} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.7.64.103/nl/go/help.faq.installer?LastError=1618 Task: {5E2C0485-BA38-40E3-8712-F0BC744CF49D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001UA => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-19] (Facebook Inc.) Task: {6B5857A5-7B54-4E4B-B8CC-43EF97A3AFF8} - System32\Tasks\HP AR Program Upload - 5e38dde98352466ea013aa9342be81b3dcd70564e02d46149edde24b9c2a6d66 => C:\Program Files\HP\HP Officejet 4620 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {6D035618-48B2-4954-999D-61189FFB86C5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {6E9537DD-DA7D-4F43-8ED9-63472587A6B2} - System32\Tasks\WinZipBackGroundToolsTask => C:\Program Files\WinZip\WzBGTools.exe [2016-10-27] (WinZip Computing, S.L.) Task: {75D9C616-4257-42BC-BA55-E96FD1DA1809} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-10-11] (Microsoft Corporation) Task: {7F8CC220-EA29-42CA-A450-E5C1DFD40C95} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-16] (Adobe Systems Incorporated) Task: {8872D3F4-1EA3-429E-8C43-5FB585E54653} - System32\Tasks\{1E01C950-A9E4-4FED-9CB1-364B33473B1A} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Easy Speed Check\uninstall.exe" Task: {8A6ECC23-19AD-46DA-AB07-C0954B3512CA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {8FBD9F28-45C4-411D-A324-2D755D9E3075} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-10-11] (Dropbox, Inc.) Task: {979E233F-8401-4BDE-80A2-1AD0686EB2A2} - System32\Tasks\HPCustParticipation HP Officejet 4620 series => C:\Program Files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {98769F9F-D926-49CF-A04F-3EB9BD43AAF4} - System32\Tasks\{863A6AB2-1D06-475D-8DA5-F6CFF2A87ADA} => C:\Windows\system32\pcalua.exe -a D:\Setup.EXE -d D:\ Task: {9925C05F-39EA-412D-BB9C-80B949836062} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {B27054F4-4670-4BBA-97E9-EF8099ED414E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.) Task: {B93B73E9-DC65-4876-8251-136E31D69A6C} - System32\Tasks\HP AR Program Upload - e3d50a65199b440ab997415d1e5e739e4065d4b0cb2e428ba1d966407de3867d => C:\Program Files\HP\HP Officejet 4620 series\bin\HPRewards.exe [2012-10-17] (TODO: ) Task: {BD5B7706-67C5-4293-BFFD-E27F020F0A18} - System32\Tasks\HP-Online updateprogramma => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30] (Hewlett-Packard) Task: {C24A1950-FA38-4291-9C59-1641FAD05817} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {C37A1C3B-9D31-4006-B681-1EEDD5E7257B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Geen bestand <==== AANDACHT Task: {CF88FBAA-C426-4B87-8625-467F8BF0639E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Geen bestand <==== AANDACHT Task: {D3AD9394-74D3-4384-9809-3F36935EEFB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {D976D0A1-D641-4999-ACC8-80842506A540} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-10-11] (Dropbox, Inc.) Task: {DABE3FE6-3412-4BBF-97F2-B44CB7353508} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-10-21] (Microsoft Corporation) Task: {DC84A0B3-87B1-4993-80EE-A67FD8771B5D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {E5A9D877-453F-413D-9EBD-424E47EBA36E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {E96B4819-8368-412B-A674-0196DCF86FE1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {F1737B3A-3D1C-4585-B5F7-1FA0F46D6670} - \HostSecure3 -> Geen bestand <==== AANDACHT Task: {F4340BCB-9E1F-4F93-B8AA-992EB58278FA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd) Task: {FD638549-3607-4BE4-A238-AF119D08E00E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Geen bestand <==== AANDACHT Task: {FEEC37B2-F9A1-4503-B0ED-EF7B62C78A5F} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [2012-11-06] () (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001Core.job => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-455634102-3971962441-1493714179-1001UA.job => C:\Users\rita\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\Online Backup Update Notifier.job => C:\Program Files (x86)\Malwarebytes Secure Backup\SUpdateNotifier.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\rita\Favorites\Packard Bell\Packard Bell.lnk -> hxxp://www.packardbell.com Shortcut: C:\Users\rita\AppData\Local\Microsoft\Windows\FileHistory\Data\1563\C\Users\rita\Favorites\Packard Bell\Packard Bell.lnk -> hxxp://www.packardbell.com ==================== Geladen Modules (gefilterd) ============== 2014-12-12 16:43 - 2013-10-23 16:24 - 000087600 _____ () C:\WINDOWS\System32\cpwmon64.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-09-01 02:49 - 2017-09-01 02:49 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000068096 _____ () C:\Program Files (x86)\BrytonBridge2\BBService.exe 2015-02-28 03:38 - 2015-02-28 03:38 - 000127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2017-04-27 19:23 - 2017-04-27 19:23 - 000518656 _____ () C:\ProgramData\eaZyLink\eaZySvr.exe 2014-01-17 18:00 - 2014-03-03 15:04 - 001298432 _____ () C:\Program Files (x86)\BrytonBridge2\BBDaemon.exe 2017-04-28 12:12 - 2017-04-28 12:12 - 001890040 _____ () C:\ProgramData\eaZyLink\eazylink.exe 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-09-11 14:45 - 2017-09-11 14:45 - 000092472 _____ () C:\Program Files\iTunes\zlib1.dll 2017-09-11 14:45 - 2017-09-11 14:45 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 001704960 _____ () C:\Program Files (x86)\BrytonBridge2\BrytonBridge2.exe 2017-09-07 18:12 - 2017-09-07 18:12 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2017-03-18 22:59 - 2017-03-20 05:56 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-10-21 16:11 - 2017-10-21 16:17 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-10-21 16:11 - 2017-10-21 16:17 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-10-21 17:18 - 2017-10-17 10:08 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome Beta\Application\62.0.3202.62\libglesv2.dll 2017-10-21 17:18 - 2017-10-17 10:08 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome Beta\Application\62.0.3202.62\libegl.dll 2016-10-14 10:54 - 2016-07-01 08:39 - 000061968 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll 2016-10-14 10:54 - 2016-07-01 08:39 - 000110608 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 001061888 _____ () C:\Program Files (x86)\BrytonBridge2\PythonQt.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000041472 _____ () C:\Program Files (x86)\BrytonBridge2\HeraLib.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000087040 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_ctypes.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000044032 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_socket.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000865792 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_ssl.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000010240 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\select.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000356352 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\_hashlib.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000686080 _____ () C:\Program Files (x86)\BrytonBridge2\Resources\unicodedata.pyd 2014-11-19 13:48 - 2014-11-19 13:48 - 008507232 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 002354016 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 001014624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000364384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 002480992 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 001346912 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000206176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 002653024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000033120 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000035680 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000207200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 011166560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000276832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll 2014-11-11 11:21 - 2014-11-11 11:21 - 000392552 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll 2014-11-11 11:21 - 2014-11-11 11:21 - 000059752 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll 2014-11-19 13:47 - 2014-11-19 13:47 - 000438624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000446304 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000520544 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000720736 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll 2014-11-19 13:46 - 2014-11-19 13:46 - 000606560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll 2014-11-19 13:48 - 2014-11-19 13:48 - 000093024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll 2017-09-01 02:49 - 2017-09-01 02:49 - 001042232 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2017-09-01 02:49 - 2017-09-01 02:49 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2016-09-01 18:13 - 2016-09-01 18:13 - 000080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-01-17 18:00 - 2012-06-21 19:31 - 000019968 _____ () C:\Users\rita\AppData\Roaming\Python-Eggs\greenlet-0.4.0-py2.7-win32.egg-tmp\greenlet.pyd 2014-01-17 18:00 - 2012-12-25 11:21 - 000049152 _____ () C:\Users\rita\AppData\Roaming\Python-Eggs\gevent-1.0rc2-py2.7-win32.egg-tmp\gevent\_semaphore.pyd 2014-01-17 18:00 - 2012-12-25 11:21 - 000195584 _____ () C:\Users\rita\AppData\Roaming\Python-Eggs\gevent-1.0rc2-py2.7-win32.egg-tmp\gevent\core.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000026624 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qgif4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000028672 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qico4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000196608 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qjpeg4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000220672 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qmng4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000022016 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qsvg4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000284672 _____ () C:\Program Files (x86)\BrytonBridge2\imageformats\qtiff4.dll 2016-10-14 10:55 - 2013-09-23 19:52 - 000043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll 2016-10-14 10:55 - 2015-11-05 14:07 - 000195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll 2016-10-14 10:55 - 2015-11-05 14:07 - 000052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll 2016-10-14 10:55 - 2015-11-05 14:07 - 000742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll 2016-10-14 10:56 - 2016-07-01 08:05 - 000285120 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\en-US\AdWingManRes.dll 2016-10-14 10:55 - 2015-09-08 08:31 - 040640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll 2016-10-14 10:56 - 2014-09-03 02:29 - 000912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll 2016-10-14 10:56 - 2014-09-03 02:29 - 000134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [119] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1001movie.com -> 1001movie.com Er zijn 6091 Meer websites. ==================== Hosts inhoud: ========================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2017-10-21 15:01 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rita\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\achtergrond van windows photo viewer.jpg DNS Servers: 195.130.130.5 - 195.130.131.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\Run32: => "LManager" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "beid" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "iTunesHelper" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [UDP Query User{77E63274-A743-4F37-8294-78E7A1DF9966}C:\program files\eplan\platform\2.5.4\bin\eplan.exe] => (Allow) C:\program files\eplan\platform\2.5.4\bin\eplan.exe FirewallRules: [TCP Query User{D320541C-9A32-417D-A2AB-8EC419DE29A7}C:\program files\eplan\platform\2.5.4\bin\eplan.exe] => (Allow) C:\program files\eplan\platform\2.5.4\bin\eplan.exe FirewallRules: [{E4AE05CC-8FC3-4BC8-9C2E-A7F279BD4BF3}] => (Allow) LPort=5000 FirewallRules: [{239BFDD2-94FA-4BB7-AEAF-CF1C7D65EC8E}] => (Allow) LPort=51108 FirewallRules: [UDP Query User{44348F72-5C88-4FA2-A5BD-5F824617EF65}C:\users\rita\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\rita\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{E24679C2-DDF1-4A9C-9506-7717D3ECA902}C:\users\rita\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\rita\appdata\local\akamai\netsession_win.exe FirewallRules: [{CB1D4D26-189B-4C52-AB21-54F7ECAB79BA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B7457976-AFEE-4F9E-8A7C-5DAF4C741391}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{6B630CB4-E9A0-47FA-A585-945A99B71693}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{DC015881-F4DD-4EB7-A6A6-C5C1E559B557}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4AB08741-E3B6-4D5B-BCC4-7227593778AC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{90B60673-53D1-4D0F-BCE1-A73291C1B800}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{64ABBFAA-5CD1-47D8-8F85-113960032B41}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{A5F09918-7100-4FBB-B968-778BFE8FC1C0}] => (Allow) C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe FirewallRules: [TCP Query User{084EEFCD-06FF-4268-B8FC-8C1B70750E8A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{5A692A9E-0494-425A-ABA3-048473E63C0A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{54FDB830-E58B-4468-8EA9-F9BEA891457F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{59B966C1-0C25-465D-A137-5986124C4D30}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{BD4653DD-503B-4004-81FC-A6F3600B7DB6}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe FirewallRules: [{545D429B-A029-49BC-8009-ECF2C2D93526}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\bin\FaxApplications.exe FirewallRules: [{58A202D4-C627-48F8-9453-701F874EC04F}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\bin\DigitalWizards.exe FirewallRules: [{BA5C3737-54D1-4F42-BA24-3DCFD47D659E}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\bin\SendAFax.exe FirewallRules: [{B0DFA316-290F-4902-9A1E-15BBD84FD41D}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\Bin\DeviceSetup.exe FirewallRules: [{9509B025-AA5C-4192-BE96-E2C20CC9CD6E}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{D378E821-9FE2-47F7-A6A5-33868E3D532A}] => (Allow) C:\Program Files\HP\HP Officejet 4620 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{9820F7B7-E4F9-43E0-BA22-B6A41DA5560D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{95E3290B-FC29-41A8-99C5-267C8D8CF1F0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{0854F210-2D01-4A4B-A157-8F4397598DC8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{71C9709F-AA21-428D-A166-E456E8EA3CF2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{2180ABEC-29AF-4CFD-A020-EC024FF4073D}] => (Allow) C:\Users\rita\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{6890DC04-9668-46E4-867A-B926B636446D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{578E9A9F-37DD-475F-B4E9-6537B85C08A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8FAC4EC6-C9AB-4368-BAB3-281E8C1D9FF8}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe FirewallRules: [TCP Query User{0F8B89EC-5B3A-4D21-B655-53974C18EC24}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{755003A3-A781-4502-8F99-77D872B816C7}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{770E1A23-8115-42E0-99EE-EE62F8ACEEB7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{A0A1A164-F662-46D3-B21B-344098D6FA26}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{4CD5631A-84CA-44AF-8807-98FE60616432}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{42D1D3DE-E58B-4A45-B6E7-275A258336D2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{6913A33B-6232-454D-8C6C-53D71800116B}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{59BFD3EC-064B-411B-84A5-64BB25FD69B7}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{CABC596D-4B5D-42C1-BA42-24B5C0C8AACD}] => (Allow) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe ==================== Herstelpunten ========================= 02-10-2017 23:24:52 Installed iTunes 11-10-2017 20:46:41 Windows Update 11-10-2017 20:51:50 Windows Update 18-10-2017 19:28:57 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (10/22/2017 05:24:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERWIN) Description: Het activeren van de app 62632UNETA.492836F161CC8_rmspfwnbz040j!App is mislukt door de fout -2144927148. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 1.0.0.127.in-addr.arpa. PTR erwin-2.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 127.0.0.1:5353 13 1.0.0.127.in-addr.arpa. PTR erwin.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 2.7.5.5.3.0.F.8.5.5.0.D.7.C.D.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR erwin-2.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 2A02:1811:E518:0700:ADC7:D055:8F03:5572:5353 13 2.7.5.5.3.0.F.8.5.5.0.D.7.C.D.A.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR erwin.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 3.5.0.5.8.1.4.3.7.4.E.8.6.D.0.1.0.0.7.0.8.1.5.E.1.1.8.1.2.0.A.2.ip6.arpa. PTR erwin-2.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 2A02:1811:E518:0700:ADC7:D055:8F03:5572:5353 13 3.5.0.5.8.1.4.3.7.4.E.8.6.D.0.1.0.0.7.0.8.1.5.E.1.1.8.1.2.0.A.2.ip6.arpa. PTR erwin.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 2.7.5.5.3.0.F.8.5.5.0.D.7.C.D.A.0.0.7.0.8.1.5.E.1.1.8.1.2.0.A.2.ip6.arpa. PTR erwin-2.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 2A02:1811:E518:0700:ADC7:D055:8F03:5572:5353 13 2.7.5.5.3.0.F.8.5.5.0.D.7.C.D.A.0.0.7.0.8.1.5.E.1.1.8.1.2.0.A.2.ip6.arpa. PTR erwin.local. Error: (10/22/2017 05:15:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname erwin.local already in use; will try erwin-2.local instead Systeemfouten: ============= Error: (10/22/2017 05:16:44 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/22/2017 05:15:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 01:34:47 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/22/2017 01:33:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 11:09:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 11:09:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 11:09:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 11:09:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (10/22/2017 11:01:31 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {784E29F4-5EBE-4279-9948-1E8FE941646D} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (10/22/2017 10:57:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen standaard voor deze computer wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} en APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. CodeIntegrity: =================================== Date: 2017-10-22 17:35:47.371 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:35:47.324 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:34:38.495 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:34:38.477 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:32:04.384 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:32:04.367 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:23:08.911 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:23:08.895 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:18:42.071 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-22 17:18:42.056 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: AMD E1-1200 APU with Radeon(tm) HD Graphics Percentage geheugen in gebruik: 59% Totaal fysiek RAM-geheugen: 3658.26 MB Beschikbaar fysiek RAM-geheugen: 1496.28 MB Totaal Virtueel geheugen: 6218.26 MB Beschikbaar Virtual geheugen: 3116.95 MB ==================== Schijven ================================ Drive c: (Packard Bell) (Fixed) (Total:443.17 GB) (Free:283.29 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: BB98C7E9) Partition: GPT. ==================== Eind van Addition.txt ============================