Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 09-12-2017 Gestart door jonas (09-12-2017 15:29:43) Gestart vanaf C:\Users\jonas\Desktop Windows 10 Home Versie 1709 16299.64 (X64) (2017-12-01 21:44:14) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1444661948-3188908094-294470660-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1444661948-3188908094-294470660-503 - Limited - Disabled) Gast (S-1-5-21-1444661948-3188908094-294470660-501 - Limited - Disabled) jonas (S-1-5-21-1444661948-3188908094-294470660-1001 - Administrator - Enabled) => C:\Users\jonas jonas_h98bp02 (S-1-5-21-1444661948-3188908094-294470660-1017 - Administrator - Disabled) => C:\Users\jonas_h98bp02 WDAGUtilityAccount (S-1-5-21-1444661948-3188908094-294470660-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) AVG (HKLM\...\{E61E6143-4937-43FC-8C12-06B8A987484D}) (Version: 1.211.3 - AVG Technologies) Hidden AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.8.3036 - AVG Technologies) AVG PC TuneUp (HKLM-x32\...\{82B9AF2D-4254-428A-9D1E-7714BA91A4B0}) (Version: 16.76.2 - AVG Technologies) Hidden AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.76.3.18604 - AVG Technologies) Backup and Sync from Google (HKLM-x32\...\{604582EB-8259-4ED6-9B1B-6F2494D4B640}) (Version: 3.37.7411.4599 - Google, Inc.) Blend for Visual Studio 2012 (HKLM-x32\...\{57F20F04-014D-453F-B6A3-AE9485C4DFAB}) (Version: 5.0.30709.0 - Microsoft Corporation) Hidden Blend for Visual Studio 2012 ENU resources (HKLM-x32\...\{532DBCC8-9468-435C-AEF6-30B7F50735A2}) (Version: 5.0.30709.0 - Microsoft Corporation) Hidden Blend for Visual Studio Add-in for Adobe FXG Import (HKLM-x32\...\{834B6E00-F509-40F2-A677-E86261184576}) (Version: 1.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Silverlight 5 (HKLM-x32\...\{0C03A66F-1FF0-45F9-8D67-0D806EBFFBA1}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blender (HKLM\...\{DEA73CCA-7EC9-41EA-8509-1041C1CABFD0}) (Version: 2.78.3 - Blender Foundation) Brackets (HKLM-x32\...\{9E1DE4E6-DA6C-46E9-9EF2-15189E534511}) (Version: 1.11 - brackets.io) Chrome Remote Desktop Host (HKLM-x32\...\{D61C8E6E-A4F3-4CD8-8568-51CEB5660C89}) (Version: 63.0.3239.32 - Google Inc.) CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6602 - CyberLink Corp.) Hidden CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4118.0 - CyberLink Corp.) Hidden CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.2313.0 - CyberLink Corp.) CyberLink PowerRecover (HKLM\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.4510 - CyberLink Corp.) Hidden CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.4510 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Discord (HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\Discord) (Version: 0.0.298 - Discord Inc.) Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc) Dotfuscator and Analytics Community Edition (HKLM-x32\...\{372D17F6-A54E-4A01-B264-1314890FFE61}) (Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden ELAN Touchpad 15.19.7.1_X64_WHQL (HKLM\...\Elantech) (Version: 15.19.7.1 - ELAN Microelectronic Corp.) Entity Framework Designer for Visual Studio 2012 - enu (HKLM-x32\...\{3F29268A-F53A-4387-9F2B-E9368A823178}) (Version: 11.1.30729.00 - Microsoft Corporation) EV3Basic 1.2 (HKLM-x32\...\{3A95553D-B104-4714-B572-87E3D602A499}) (Version: 1.2 - Reinhard Grafl) FaceRig virtual audio driver version 1.0 (HKLM-x32\...\{D605CD1D-D626-4740-B657-86DC30723FCF}_is1) (Version: 1.0 - Adoriasoft LLC) FaceRig Virtual Video driver version 1.0.1.1000 (HKLM-x32\...\{7D6A1A0F-F57E-4C6B-9331-86CBC7D5C787}_is1) (Version: 1.0.1.1000 - Adoriasoft LLC) FMW 1 (HKLM\...\{36133E9F-B129-4206-9FB4-13F707787542}) (Version: 1.226.3 - AVG Technologies) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Gyazo 3.3.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) Hama Racing Wheel Thunder V5 (HKLM-x32\...\{AEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - Ihr Firmenname) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) HitFilm Express 2017 (HKLM\...\{752C4EC4-8031-476E-A3A5-A7023C06AC2C}) (Version: 5.0.7012.39363 - FXHOME) IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - ) Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4352 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{fefa9370-e735-4821-9cbc-48bd843e7ac3}) (Version: 19.80.0 - Intel Corporation) Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation) JavaScript Tooling (HKLM\...\{73468C65-BC53-4D88-9246-75A5BB014DA2}) (Version: 11.0.60315 - Microsoft Corporation) Hidden LEGO MINDSTORMS EV3 Home Content (HKLM-x32\...\{142D9B8C-E72A-4970-A703-B8AF9904E6F1}) (Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Home Edition (HKLM-x32\...\{ACC62EC7-E615-473F-83A5-F95DF9A20E49}) (Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Home Nederlandse ondersteuning (HKLM-x32\...\{34B91E79-03D1-417D-A05A-2B2FF3127DF3}) (Version: 1.2.30 - The LEGO Group) Hidden LEGO MINDSTORMS EV3 Uninstaller (HKLM-x32\...\{5F3092B9-4240-4037-A287-BF6F9A2996BC}) (Version: 1.0.11 - The LEGO Group) Hidden LEGO MINDSTORMS NXT x64 Driver (HKLM\...\{A0831C28-A6FA-49A3-86AE-B5AE3C9EE19C}) (Version: 1.20.115.0 - LEGO) LMSOFT Web Creator Pro 6 (HKLM-x32\...\Web Creator Pro 6) (Version: - LMSOFT Inc.) LocalESPC (HKLM-x32\...\{BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}) (Version: 8.59.25584 - Microsoft Corporation) Hidden LocalESPCui for en-us (HKLM-x32\...\{B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944}) (Version: 8.59.25584 - Microsoft) Hidden LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.) McAfee Safe Connect (HKLM-x32\...\{F210DAEC-9E43-467E-87E8-B02DA469CFFC}) (Version: 1.4.1.150 - McAfee, Inc) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.599.11 - McAfee, Inc.) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation) Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation) Microsoft ASP.NET MVC 3 (HKLM-x32\...\{D32EF103-4016-4C15-BCB0-700C0A7A2309}) (Version: 3.0.50813.0 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft ASP.NET Web Pages (HKLM-x32\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation) Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.8625.2139 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1444661948-3188908094-294470660-1017\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Silverlight 4 SDK (HKLM-x32\...\{189AEA94-DAFB-487A-8CEE-F9D3DDE0A748}) (Version: 4.0.60310.0 - Microsoft Corporation) Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft Small Basic v1.2 (HKLM-x32\...\{7AAA27E4-CDB3-49C0-AA2D-41827C001BA3}) (Version: 1.2.0.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Data-Tier App Framework (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation) Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation) Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{13D558FE-A863-402C-B115-160007277033}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL Compiler Service (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{6D6D43E5-218C-4B05-92D3-2240810F4760}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - enu (11.1.20627.00) (HKLM-x32\...\{FA804794-2CCB-4301-954F-2C2894698876}) (Version: 11.1.20627.00 - Microsoft Corporation) Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00) (HKLM-x32\...\{790E9425-8570-493F-9AE7-81AFC9E46930}) (Version: 11.1.20627.00 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Professional 2012 (HKLM-x32\...\{c93c1c16-fd12-4b07-8926-2a4af46b6597}) (Version: 11.0.50727.26 - Microsoft Corporation) Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation) Microsoft Web Deploy dbSqlPackage Provider - enu (HKLM-x32\...\{E4C33F5B-1B2F-466E-957E-B274F08151A0}) (Version: 10.3.20225.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mine-imator version 1.0.6 (HKLM-x32\...\{EF61A1AA-5F85-4E94-ACC6-D5650A312AE6}}_is1) (Version: 1.0.6 - David Norgren) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 57.0 (x64 en-US) (HKLM\...\Mozilla Firefox 57.0 (x64 en-US)) (Version: 57.0 - Mozilla) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue) NI .NET Framework 4.0 (HKLM-x32\...\{0C43BB65-C604-4D94-A83A-54DCB42780B8}) (Version: 4.01.49154 - National Instruments) Hidden NI EulaDepot (HKLM-x32\...\{87F60C46-07E2-46B4-B872-680DE4184C0A}) (Version: 3.20.363 - National Instruments) Hidden NI MDF Support (HKLM-x32\...\{FA35D849-889D-4454-9532-6BE2008D2CDF}) (Version: 3.20.363 - National Instruments) Hidden NI Security Update (KB 67L8LCQW) (64-bit) (HKLM\...\{4A78D9E6-D349-4CCA-9295-45B12BE5BC6C}) (Version: 1.0.29.0 - National Instruments) Hidden NI Security Update (KB 67L8LCQW) (HKLM-x32\...\{20124E21-206B-485F-838F-14BB88161045}) (Version: 1.0.29.0 - National Instruments) Hidden NI Uninstaller (HKLM-x32\...\{C7743231-5899-418D-8CA5-22B0F654D894}) (Version: 3.20.363 - National Instruments) Hidden NI VC2008MSMs x64 (HKLM\...\{07E00E94-7A78-40FA-9BEF-71C190E98041}) (Version: 9.0.401 - National Instruments) Hidden NI VC2008MSMs x86 (HKLM-x32\...\{E84997A1-4D6F-4C0B-B60D-F85B360D2666}) (Version: 9.0.401 - National Instruments) Hidden Nightbot (HKLM-x32\...\{c59fdb2c-3f60-4455-b0a8-c45b5aee5447}_is1) (Version: 0.0.4 - NightDev, LLC) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8625.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2139 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) paint.net (HKLM\...\{F10AAD91-58DF-44EC-A647-810197141667}) (Version: 4.0.19 - dotPDN LLC) PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{2C76E3DA-BA76-4FAD-B1B1-72B46D639028}) (Version: 1.0.2180.1 - PreEmptive Solutions) Hidden Prerequisites for SSDT (HKLM-x32\...\{9169C939-ED01-446A-BD0C-29873BAF4E48}) (Version: 11.0.2100.60 - Microsoft Corporation) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10163.31215 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7622 - Realtek Semiconductor Corp.) Roblox Player for jonas (HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) Roblox Studio for jonas (HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - Roblox Corporation) Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) Teach2000 versie 8.53 (HKLM-x32\...\Teach2000.7 XP - The Troolean Edition_is1) (Version: 8.53 - basement.nl) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.89970 - TeamViewer) TreeSize Free V3.4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 5.01 - NCH Software) Visual Studio 2012 Update 5 (KB2707250) (HKLM-x32\...\{6d052d71-b953-48cd-8a75-3462b00efeb7}) (Version: 11.0.61219 - Microsoft Corporation) VSDC Free Video Editor version 5.8.1.790 (HKLM\...\VSDC Free Video Editor_is1) (Version: 5.8.1.790 - Flash-Integro LLC) WCF Data Services 5.0 (for OData v3) Primary Components (HKLM-x32\...\{0BCC836F-0B28-4090-B58A-64883BAA3B2F}) (Version: 5.0.50628.0 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2012 (HKLM-x32\...\{148878BD-A2A5-4CF1-A103-2BA632F41953}) (Version: 5.0.50710.0 - Microsoft Corporation) Hidden Windows 10-upgradeassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17384 - Microsoft Corporation) Windows 7 Upgrade Advisor (HKLM-x32\...\{0DC66F25-C58F-40d3-86BC-CA29C6D99BF8}) (Version: 2.0.5000.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.40 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.1 - win.rar GmbH) Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) XAMPP (HKLM-x32\...\xampp) (Version: 7.1.9-0 - Bitnami) Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-11-30] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (Cyberlink) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-05-12] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-05-12] (Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (Cyberlink) ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\igfxDTCM.dll [2017-07-31] (Intel Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-11-30] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-05-12] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-05-12] (Alexander Roshal) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {005EDEAE-38AF-4068-8FE5-B923C5CFCFB4} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-16] (Adobe Systems Incorporated) Task: {02711844-E041-4EEE-80EE-BFE5CF707DDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-13] (Google Inc.) Task: {16455EDF-6E97-4229-9E68-2EB3578FCD2D} - System32\Tasks\HPCeeScheduleForjonas => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-01-22] (Hewlett-Packard) Task: {202CB282-B5DA-4356-8681-0D9770A31FA1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-22] (Microsoft Corporation) Task: {24C900D2-5AFE-4B5E-ABF1-2292E1398BDB} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-11-30] (AVG Technologies CZ, s.r.o.) Task: {27294166-FF4C-4B0E-91F9-0FF612DA94B7} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-10-03] () Task: {2D22463C-029A-4E34-861D-FB486D03CE4A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-26] () Task: {2FAE092F-3E3A-4F78-BE46-D74711761BDE} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-21] (Oracle Corporation) Task: {4054EE79-C415-4F31-9A72-8B5160E13682} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-10-03] () Task: {602F29B5-3DDE-4F66-99F3-0D7C4ED07E4D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-26] () Task: {7A57A8D8-7214-46A3-9804-FE1F433C76AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-13] (Google Inc.) Task: {8A13BC3A-F99E-4533-9C0E-B1928D94528A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-22] (Microsoft Corporation) Task: {AFA8987D-51A8-44E0-9745-0376C08E78AF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-12-01] (Microsoft Corporation) Task: {CDFB1AE0-4713-4749-8717-4D3CA5608C78} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {E14EDB4D-9E1B-4AF7-8BDD-14D7CC269589} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-16] (Adobe Systems Incorporated) Task: {F27BC63D-AE52-4344-B323-61B0A79AAE31} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2017-11-15] (AVG Technologies CZ, s.r.o.) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForjonas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\jonas\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm ==================== Geladen Modules (gefilterd) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000419840 _____ () c:\windows\system32\SSDM.dll 2016-01-21 05:37 - 2014-04-14 19:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2017-12-01 22:18 - 2017-12-01 22:18 - 000975872 _____ () C:\WINDOWS\system32\FaceProcessor.dll 2017-12-01 22:18 - 2017-12-01 22:18 - 000269696 _____ () C:\WINDOWS\system32\FaceProcessorCore.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 001357464 _____ () C:\WINDOWS\system32\FaceTrackerInternal.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-09-29 14:42 - 2017-09-30 15:34 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-09-29 14:42 - 2017-09-30 15:34 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-12-06 14:02 - 2017-12-06 14:02 - 004698848 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 000022016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-11-11 14:18 - 2017-11-11 14:19 - 055109120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-10-04 13:45 - 2017-10-04 13:45 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 000164864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\VideoPlugin.dll 2017-10-04 13:45 - 2017-10-04 13:45 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 003740160 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 002051584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 020759040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 003607040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2017-11-11 14:18 - 2017-11-11 14:18 - 003150848 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2017-08-29 08:40 - 2017-08-29 08:40 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 002493440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.AutoSuggest.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 000919040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.PeoplePicker.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 001363968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2017-11-11 14:18 - 2017-11-11 14:19 - 000084480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngineVideoDataProvider.UWP.dll 2017-12-02 12:44 - 2017-12-02 12:44 - 004270592 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1711.3041.0_x64__8wekyb3d8bbwe\Time.exe 2017-12-02 12:44 - 2017-12-02 12:44 - 000924672 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1711.3041.0_x64__8wekyb3d8bbwe\TimeControls.dll 2017-12-02 12:44 - 2017-12-02 12:44 - 000824320 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1711.3041.0_x64__8wekyb3d8bbwe\TimeBackground.dll 2017-11-01 05:49 - 2017-11-01 05:49 - 040417680 _____ () C:\Program Files (x86)\Google\Drive\googledrivesync.exe 2017-11-30 19:56 - 2017-11-30 19:56 - 000068528 _____ () C:\Program Files (x86)\AVG\Antivirus\x64\module_lifetime.dll 2017-11-14 15:37 - 2017-11-10 10:57 - 002871640 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\swiftshader\libglesv2.dll 2017-11-14 15:37 - 2017-11-10 10:57 - 000138072 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\swiftshader\libegl.dll 2017-09-15 17:29 - 2017-09-15 17:28 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2017-11-30 19:56 - 2017-11-30 19:56 - 000168216 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll 2017-11-30 19:56 - 2017-11-30 19:56 - 000060160 _____ () C:\Program Files (x86)\AVG\Antivirus\module_lifetime.dll 2017-11-30 19:56 - 2017-11-30 19:56 - 067109376 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll 2017-11-30 19:56 - 2017-11-30 19:56 - 000238928 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll 2017-11-30 19:56 - 2017-11-30 19:56 - 000245704 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll 2017-12-09 11:44 - 2017-12-09 11:44 - 000088064 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_ctypes.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000918528 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_hashlib.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000098816 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32api.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000110080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\pywintypes27.dll 2017-12-09 11:44 - 2017-12-09 11:44 - 000364544 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\pythoncom27.dll 2017-12-09 11:44 - 2017-12-09 11:44 - 000686080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\unicodedata.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000320512 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32com.shell.shell.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001177088 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._core_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000806912 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._gdi_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000816640 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._windows_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001067520 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._controls_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000733696 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._misc_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000736256 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\pysqlite2._sqlite.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000119808 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32file.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000108544 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32security.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000007168 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\hashobjs_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017920 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\thumbnails_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000082432 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\usb_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000013824 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\common.time34.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000018432 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32event.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000027648 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\windows.conditional.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017408 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\windows.winwrap.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000089088 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\windows.volumes.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000167936 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32gui.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000046080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_socket.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001309696 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_ssl.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000129536 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_elementtree.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000127488 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\pyexpat.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000038912 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32inet.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000077824 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\wx._html2.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000036864 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_psutil_windows.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000524248 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\windows._lib_cacheinvalidation.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000011264 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32crypt.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000218624 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\PIL._imaging.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000027648 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_multiprocessing.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000020480 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\_yappi.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000035840 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32process.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000024064 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32pipe.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000010240 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\select.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000025600 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32pdh.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000059392 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\windows.device_monitor.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017408 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32profile.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000022528 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI71202\win32ts.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000088064 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_ctypes.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000918528 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_hashlib.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000098816 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32api.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000110080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\pywintypes27.dll 2017-12-09 11:44 - 2017-12-09 11:44 - 000364544 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\pythoncom27.dll 2017-12-09 11:44 - 2017-12-09 11:44 - 000686080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\unicodedata.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000320512 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32com.shell.shell.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001177088 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._core_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000806912 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._gdi_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000816640 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._windows_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001067520 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._controls_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000733696 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._misc_.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000736256 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\pysqlite2._sqlite.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000119808 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32file.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000108544 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32security.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000007168 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\hashobjs_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017920 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\thumbnails_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000082432 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\usb_ext.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000013824 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\common.time34.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000018432 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32event.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000027648 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\windows.conditional.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017408 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\windows.winwrap.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000089088 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\windows.volumes.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000167936 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32gui.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000046080 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_socket.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 001309696 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_ssl.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000129536 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_elementtree.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000127488 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\pyexpat.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000038912 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32inet.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000077824 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\wx._html2.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000036864 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_psutil_windows.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000524248 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\windows._lib_cacheinvalidation.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000011264 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32crypt.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000218624 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\PIL._imaging.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000027648 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_multiprocessing.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000020480 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\_yappi.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000035840 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32process.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000024064 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32pipe.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000010240 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\select.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000025600 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32pdh.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000059392 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\windows.device_monitor.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000017408 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32profile.pyd 2017-12-09 11:44 - 2017-12-09 11:44 - 000022528 _____ () C:\Users\jonas\AppData\Local\Temp\_MEI133402\win32ts.pyd 2016-06-11 20:53 - 2017-09-09 20:25 - 000688416 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-06-11 20:53 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-06-11 20:53 - 2017-10-31 04:22 - 002546976 _____ () C:\Program Files (x86)\Steam\video.dll 2016-06-11 20:53 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-06-11 20:53 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-06-11 20:53 - 2016-01-27 08:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-06-11 20:53 - 2016-01-27 08:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-06-11 20:53 - 2016-01-27 08:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-06-11 20:53 - 2016-01-27 08:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-06-11 20:53 - 2016-01-27 08:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-06-11 20:53 - 2017-10-31 04:22 - 000901408 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-06-11 20:53 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2017-06-10 15:52 - 2017-09-07 03:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2016-12-15 12:28 - 2017-08-16 23:28 - 073130272 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2016-06-11 20:53 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2017-08-02 19:34 - 2017-08-16 23:29 - 001936672 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll 2017-08-02 19:34 - 2017-08-16 23:29 - 000113952 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\amazon.com -> hxxps://amazon.com ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2017-10-14 14:15 - 2017-11-30 19:28 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-1444661948-3188908094-294470660-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jonas\Desktop\large_Scrat_1.jpg HKU\S-1-5-21-1444661948-3188908094-294470660-1017\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 195.130.130.4 - 195.130.131.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk" HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "RtHDVCpl" HKLM\...\StartupApproved\Run: => "GoPro Tray App" HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run: => "EvtMgr6" HKLM\...\StartupApproved\Run: => "XboxStat" HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8" HKLM\...\StartupApproved\Run32: => "CLVirtualDrive" HKLM\...\StartupApproved\Run32: => "PowerDVD12Agent" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\StartupFolder: => "Adobe Gamma.lnk" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "Speech Recognition" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "f.lux" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "257976BCD6ABB66B0873DE70C111740A0043EF2D._service_run" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "BuildNotification" HKU\S-1-5-21-1444661948-3188908094-294470660-1001\...\StartupApproved\Run: => "McAfeeSafeConnect" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{C77CD1C0-5854-4F4D-9E01-7F597D5BFA49}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [UDP Query User{0E9A78E4-FC9F-4377-BD86-87035213470F}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [TCP Query User{9960C2E7-92B2-4B53-AE2F-9057355A92E7}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{9F006C24-7AB7-4BA3-B025-A5535290DB77}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{A8869FEA-0273-475B-A9B5-F0206C6A773E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{8C9B4229-D51C-406E-AF93-FE2179C87E18}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{118453C4-F94A-49AB-BFF8-3D0DD601F6EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5D38F232-C376-4CD8-A331-E4528A3ADFC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe FirewallRules: [{AB1A13D7-D99D-4757-94CF-D500D34B9364}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe FirewallRules: [{C4F3D3C8-D29E-40B0-9535-8E9C51176A7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Busbetrieb-Simulator\launcher.exe FirewallRules: [{D1C3F0F3-169D-4918-9A9B-01CD997C0FBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Busbetrieb-Simulator\launcher.exe FirewallRules: [TCP Query User{821AC758-41C4-475C-9777-9F6AAD016AA4}C:\users\jonas\appdata\local\roblox\versions\version-350fe4f1ff6a47dd\robloxstudiobeta.exe] => (Allow) C:\users\jonas\appdata\local\roblox\versions\version-350fe4f1ff6a47dd\robloxstudiobeta.exe FirewallRules: [UDP Query User{7D9B4D04-50FF-470D-9849-B2E36AA8CFF0}C:\users\jonas\appdata\local\roblox\versions\version-350fe4f1ff6a47dd\robloxstudiobeta.exe] => (Allow) C:\users\jonas\appdata\local\roblox\versions\version-350fe4f1ff6a47dd\robloxstudiobeta.exe FirewallRules: [{31C3B2E6-1A29-43EB-8769-591BE3D1FED6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E8F2EB0D-FFEF-40C1-8EB5-0CD3C8C61862}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{6B1F0F5F-60E6-475D-9324-5F7A3C1F0A56}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{9C47E496-DD5B-4F41-B39D-2A0E40CEF6FB}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{B3FDD423-433A-4F10-95C6-B5775931B0A0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{55E63C9D-A4C1-41DD-B068-6A2F784105FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{76653457-4695-4FA7-88C4-DD3D8AB9A556}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{51044610-9A88-47DF-AD76-8F06F7AE6A95}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{3057EB64-9C00-4ADE-966F-DA4AB9A50134}C:\users\jonas\appdata\local\roblox\versions\version-155dffb79ed24454\robloxstudiobeta.exe] => (Allow) C:\users\jonas\appdata\local\roblox\versions\version-155dffb79ed24454\robloxstudiobeta.exe FirewallRules: [UDP Query User{75DA5F6E-1E3A-40B7-9FCB-1F47B2E7CA6F}C:\users\jonas\appdata\local\roblox\versions\version-155dffb79ed24454\robloxstudiobeta.exe] => (Allow) C:\users\jonas\appdata\local\roblox\versions\version-155dffb79ed24454\robloxstudiobeta.exe FirewallRules: [TCP Query User{A551F2CE-F777-4112-BB6C-C89A2F6805AC}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe FirewallRules: [UDP Query User{D8D66437-4E65-4414-B234-318C0B2C4527}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe FirewallRules: [TCP Query User{76EDBFCA-FA92-4C42-A1D9-9E8480410711}C:\program files (x86)\steam\steamapps\common\omsi 2\busbetrieb-simulator\omsischnittstelle.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\omsi 2\busbetrieb-simulator\omsischnittstelle.exe FirewallRules: [UDP Query User{5C5E1811-0966-4266-9C50-967181952B52}C:\program files (x86)\steam\steamapps\common\omsi 2\busbetrieb-simulator\omsischnittstelle.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\omsi 2\busbetrieb-simulator\omsischnittstelle.exe ==================== Herstelpunten ========================= AANDACHT: Systeemherstel is uitgeschakeld ==================== Defecte Apparaatbeheer Apparaten ============= Name: Microsoft Wi-Fi Direct Virtual Adapter #2 Description: Microsoft Wi-Fi Direct Virtual Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Microsoft Wi-Fi Direct Virtual Adapter #4 Description: Microsoft Wi-Fi Direct Virtual Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (12/05/2017 07:38:10 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Kan DLL voor uitbreidbare items rdyboost niet laden. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de Windows-foutcode. Error: (12/05/2017 07:38:10 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (12/05/2017 07:09:17 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma PhotoDirector5.exe, versie 5.0.5.6602 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 22a8 Starttijd: 01d36df402a6764d Eindtijd: 26 Toepassingspad: C:\Program Files\CyberLink\PhotoDirector5\PhotoDirector5.exe Rapport-id: ecda5c8f-679d-46bc-868b-fb4df1173de6 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (12/05/2017 04:14:07 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma PDR12.exe, versie 12.0.0.4118 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm. Proces-id: 3084 Starttijd: 01d36ddae29af38d Eindtijd: 177 Toepassingspad: C:\Program Files\CyberLink\PowerDirector12\PDR12.exe Rapport-id: 3b71b90c-1aec-4b4f-8695-b991ef79fefb Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (12/01/2017 10:44:04 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80004005, "file:///G:\[8478b902-66ab-413e-9c9c-93368fc667bc]\">. Error: (12/01/2017 10:41:54 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY) Description: De initialisatie van de SCEP-certificaatinschrijving voor WORKGROUP\DEESISDEFLAPTOP$ via https://INTC-KeyId-5e73c89aa3e902b272b9f0741f7d8730e3ec724a.microsoftaik.azure.net/templates/Aik/scep is mislukt: GetCACaps Methode: GET(0ms) Fase: GetCACaps De naam of het adres van de server kan niet worden omgezet 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (12/01/2017 10:41:49 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider IntelWLANEventProvider heeft geprobeerd query select * from CIntelQosEvent te registreren, waarvan doelklasse CIntelQosEvent in naamruimte //./root/DEFAULT niet bestaat. De query wordt genegeerd. Error: (12/01/2017 10:41:49 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider IntelWLANEventProvider heeft geprobeerd query select * from CIntelDot1xEvent te registreren, waarvan doelklasse CIntelDot1xEvent in naamruimte //./root/DEFAULT niet bestaat. De query wordt genegeerd. Error: (12/01/2017 10:41:49 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider IntelWLANEventProvider heeft geprobeerd query select * from CIntelWLANEvent te registreren, waarvan doelklasse CIntelWLANEvent in naamruimte //./root/DEFAULT niet bestaat. De query wordt genegeerd. Error: (12/01/2017 10:41:49 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider heeft geprobeerd query select * from CIntelQosEvent te registreren, waarvan doelklasse CIntelQosEvent in naamruimte //./root/DEFAULT niet bestaat. De query wordt genegeerd. Systeemfouten: ============= Error: (12/09/2017 03:10:59 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 03:08:57 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 03:01:08 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 03:00:14 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 02:50:28 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 02:47:04 PM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 11:49:31 AM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 11:16:21 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 11:04:07 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (12/09/2017 11:01:37 AM) (Source: DCOM) (EventID: 10016) (User: DEESISDEFLAPTOP) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DEESISDEFLAPTOP\jonas SID (S-1-5-21-1444661948-3188908094-294470660-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-6267U CPU @ 2.90GHz Percentage geheugen in gebruik: 61% Totaal fysiek RAM-geheugen: 6025.35 MB Beschikbaar fysiek RAM-geheugen: 2325.75 MB Totaal Virtueel geheugen: 7689.35 MB Beschikbaar Virtual geheugen: 2853.61 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:117.15 GB) (Free:21.6 GB) NTFS Drive d: (Data) (Fixed) (Total:871.51 GB) (Free:592.21 GB) NTFS Drive e: (Recover) (Fixed) (Total:60 GB) (Free:36.92 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 411D467F) Partition: GPT. ======================================================== Disk: 1 (Size: 119.2 GB) (Disk ID: 411D4644) Partition: GPT. ==================== Eind van Addition.txt ============================