Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 02.01.2018 Gestart door Beast (09-01-2018 17:57:12) Gestart vanaf C:\Users\Beast\Downloads Windows 7 Professional Service Pack 1 (X64) (2013-11-09 19:11:17) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3473739808-715647190-2127078386-500 - Administrator - Disabled) Beast (S-1-5-21-3473739808-715647190-2127078386-1000 - Administrator - Enabled) => C:\Users\Beast Gast (S-1-5-21-3473739808-715647190-2127078386-501 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) µTorrent (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated) Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft) ANT Drivers Installer x64 (HKLM\...\{15E1B393-3CCA-4C5B-A187-ACBC36019E73}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden ANT Drivers Installer x64 (HKLM\...\{4CBCD610-92A0-4B1E-893F-FC1E889F8B90}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden ANT Drivers Installer x64 (HKLM\...\{7664AF65-7B0D-4171-9F0F-50455278B428}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.9.2322 - AVAST Software) Belgium e-ID middleware 4.2.8 (build 3252) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73252}) (Version: 4.2.3252 - Belgian Government) Brave (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Brave) (Version: 0.19.123 - Brave Software) Brother MFL-Pro Suite DCP-L2500D series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.2.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Daedalus (HKLM-x32\...\Daedalus) (Version: 1.0.3769.0 - Eureka Solutions LLC) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Discord (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Discord) (Version: 0.0.298 - Discord Inc.) Elevated Installer (HKLM-x32\...\{1052502B-4C91-43F9-B160-AE39ED57C9F0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden f.lux (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Flux) (Version: - f.lux Software LLC) foobar2000 v1.3.14 (HKLM-x32\...\foobar2000) (Version: 1.3.14 - Peter Pawlowski) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.) Garmin Express (HKLM-x32\...\{BCC7CA85-E57F-452D-BB44-15A1CE018BD0}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express (HKLM-x32\...\{bd8bd200-9a60-4969-b267-6b565f36e3da}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Garmin Express Tray (HKLM-x32\...\{DA9C865D-6762-4931-8588-0B13B7A0796B}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) HWiNFO64 Version 4.26 (HKLM\...\HWiNFO64_is1) (Version: 4.26 - Martin Malík - REALiX) Intel(R) Driver Update Utility 2.6 (HKLM-x32\...\{2B710CA5-99F0-4D29-962C-29A7CFF7A989}) (Version: 2.6.0.32 - Intel) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation) Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4414 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation) IOTA Wallet 2.5.5 (only current user) (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\85125e2a-0211-5c49-9018-9358da1074b1) (Version: 2.5.5 - IOTA Foundation) IrfanView 4.50 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.50 - Irfan Skiljan) Kodi (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\Kodi) (Version: - XBMC-Foundation) Ledger Wallet Ripple version 1.0.2 (HKLM-x32\...\{2A226916-F20B-403D-B564-F2CF5CF8CEF8}_is1) (Version: 1.0.2 - Ledger) Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech) Logitech Gaming Software 8.78 (HKLM\...\Logitech Gaming Software) (Version: 8.78.129 - Logitech Inc.) Malwarebytes versie 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) Media Preview (HKLM\...\{52AFC3E1-0FAA-4C05-88FF-373911EA68F5}) (Version: 1.4.3.429 - BabelSoft) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.7.02053 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0413-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) MiniLyrics (HKLM-x32\...\MiniLyrics) (Version: 7.7.49 - Crintsoft) MOUSE Editor (HKLM-x32\...\{3A4218DE-B9DB-4AD5-9DB2-5853D3AA0335}) (Version: 12.08.0006 - Uw bedrijfsnaam) Hidden Mouse Editor (HKLM-x32\...\InstallShield_{3A4218DE-B9DB-4AD5-9DB2-5853D3AA0335}) (Version: 12.08.0006 - Uw bedrijfsnaam) Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 57.0.4 (x64 nl) (HKLM\...\Mozilla Firefox 57.0.4 (x64 nl)) (Version: 57.0.4 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla) MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MusicBee 2.3 (HKLM-x32\...\MusicBee) (Version: 2.3 - Steven Mayall) MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.302 - Logitech) Neon 0.0.7 (only current user) (HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\211a501f-25dd-501b-8c98-509ac17aedfa) (Version: 0.0.7 - Ethan Fast) NetLimiter 4 (HKLM\...\{031BF857-9D3C-4DEE-97F2-69698EE82B06}) (Version: 4.0.25.0 - Locktime Software) Hidden NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.25.0) (Version: 4.0.25.0 - Locktime Software) NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles) Nuance PaperPort 12 (HKLM-x32\...\{2A770862-7142-4C77-8117-F933E4110A3F}) (Version: 12.1.0006 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Recorder Devices for ShareX 0.12.8 (HKLM\...\Recorder Devices for ShareX_is1) (Version: 0.12.8 - ) Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Scansoft PDF Professional (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version: - ) Hidden SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association) Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.6.0 - ShareX Team) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) SoulseekQt (HKLM-x32\...\SoulseekQt) (Version: - ) Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform) SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC) SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1194 - SUPERAntiSpyware.com) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.71503 - TeamViewer) TreeSize Free V3.4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) WhoCrashed 5.03 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3473739808-715647190-2127078386-1000_Classes\CLSID\{5b55a44a-d008-49aa-9234-86fb7709bc0a}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software) ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-09-03] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-09-03] (Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] () ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-06-17] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software) ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] () ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-09-03] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-09-03] (Alexander Roshal) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {0B04E106-61E2-4756-8248-6986052C5385} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {0E0CB40E-E985-4A52-B39A-F576A0EBBB0A} - System32\Tasks\Driver Booster SkipUAC (Beast) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {13944290-3DEF-4189-9854-A9C27A6CBBF3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-16] (NVIDIA Corporation) Task: {1C62286E-350C-4005-8CD1-73A5C357CEA4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-16] (NVIDIA Corporation) Task: {2B637BED-E0A0-46D7-95C5-77B7E74DD120} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-29] (Google Inc.) Task: {52AE7ABB-666C-40B6-B46A-F12B06217B4A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {54F4163D-99D3-44A8-81A8-A9EE87160A26} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-03-28] () Task: {6939304C-AADB-4A48-BFAC-02D6E28951F6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {7497E6E5-D7DF-4BCD-99CF-B0C52B94ACED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-16] (NVIDIA Corporation) Task: {7EF4ACF3-59BC-4AFA-A9AA-41B689A929D6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-12-21] (AVAST Software) Task: {98AE9305-F4D8-42B0-A5A0-CA42B3DFB6ED} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-01-06] (AVAST Software) Task: {A7C6A1D2-C7C3-425D-9BEF-D4BCD5966EE6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-29] (Google Inc.) Task: {AF5F0F0B-E161-4314-A58D-82A2606C705D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe Task: {BD334D7D-A575-4D05-B2AB-016AC80B32C7} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {CA1A8D77-FC98-453F-8483-936A401E32A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-09] (Adobe Systems Incorporated) Task: {D35778AD-8CB5-4A27-AE51-BB54AF61907E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {E3312364-C09B-4334-A0EE-258457B9257E} - System32\Tasks\{3B1542A5-AEC6-4E21-8E86-5FB365C2C6F7} => C:\Windows\system32\pcalua.exe -a C:\Users\Beast\Downloads\UtilityOnlineMarch09\64-bit\setup.exe -d C:\Users\Beast\Downloads\UtilityOnlineMarch09\64-bit Task: {F1DCCBDF-8AE4-4322-A3A4-407A31301930} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd) Task: {FB85E71A-977E-466E-BF79-8ABD5F088A37} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-16] (NVIDIA Corporation) (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\Beast\Desktop\Daedalus.lnk -> C:\Program Files\Daedalus\daedalus.bat () Shortcut: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Daedalus\Daedalus.lnk -> C:\Program Files\Daedalus\daedalus.bat () ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=beimhnaefocolcplfimocfiaiefpkgbf ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Wallet Bitcoin.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kkdpmhnladdopljabkgpacgpliggeeaf ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Ledger Wallet Ethereum.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmlhkialjkaldndjnlcdfdphcgeadkkm ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> -incognito ShortcutWithArgument: C:\Users\Beast\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\aeea6001c9fdcab9\Click&Clean.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ghgabhipcejejjmhhchfonmamedcbeod ==================== Geladen Modules (gefilterd) ============== 2017-12-12 14:36 - 2017-11-16 02:38 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2013-11-19 22:59 - 2013-11-19 22:59 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2017-12-21 15:20 - 2017-12-21 15:20 - 000067920 _____ () c:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000067984 _____ () C:\Program Files\AVAST Software\Avast\x64\dll_loader.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000236840 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000902824 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000349568 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-01-06 20:43 - 2016-01-06 20:43 - 001095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-01-06 20:43 - 2016-01-06 20:43 - 000240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2014-10-18 11:10 - 2014-10-18 11:10 - 000012520 _____ () C:\Users\Beast\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll 2014-10-18 11:10 - 2014-10-18 11:10 - 000015080 _____ () C:\Users\Beast\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\GetCoreTempInfoNET.dll 2014-10-18 11:10 - 2014-10-18 11:10 - 000014056 _____ () C:\Users\Beast\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\SystemInfo.dll 2018-01-04 19:23 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-04 19:23 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000058016 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000057504 _____ () C:\Program Files\AVAST Software\Avast\dll_loader.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000206152 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000289272 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000196248 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll 2018-01-09 11:23 - 2018-01-09 11:23 - 005768336 _____ () C:\Program Files\AVAST Software\Avast\defs\18010900\algo.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000745408 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000148936 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll 2018-01-09 17:48 - 2018-01-09 17:48 - 005768336 _____ () C:\Program Files\AVAST Software\Avast\defs\18010902\algo.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000293944 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2017-06-27 11:19 - 2017-06-27 11:19 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-12-21 15:20 - 2017-12-21 15:20 - 000282560 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-12-12 14:36 - 2017-11-16 02:38 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-10-12 12:39 - 2009-02-27 15:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2017-10-15 10:17 - 2016-10-08 16:03 - 001506304 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll 2017-10-15 10:17 - 2016-07-21 09:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll 2013-06-02 10:27 - 2013-06-02 10:27 - 000435200 _____ () C:\Program Files (x86)\MusicBee\libFLAC.dll 2013-11-11 20:13 - 2013-11-11 20:13 - 000084480 _____ () C:\Program Files (x86)\MusicBee\MusicBeeBass.dll 2015-02-20 08:19 - 2015-02-20 08:19 - 000120328 _____ () C:\Program Files (x86)\MiniLyrics\Plugins\mlp_G15.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [252] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-3473739808-715647190-2127078386-1000\...\1001movie.com -> 1001movie.com Er zijn 6091 Meer websites. ==================== Hosts inhoud: =============================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2009-07-14 03:34 - 2015-11-25 17:50 - 000000938 ____R C:\Windows\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-3473739808-715647190-2127078386-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Beast\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 195.130.131.4 - 195.130.130.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" MSCONFIG\startupreg: OscarEditor => "C:\Program Files (x86)\MOUSE Editor\MouseEditor.exe" Minimum ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{61309DD7-5909-443A-9515-0A596866726D}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4C940DE9-3044-440D-BDA8-25A3C674720E}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{94C142DF-4682-4E68-BDB7-C4C342E02C6F}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [UDP Query User{42C80B00-5E82-4924-8C0D-55461D21D58C}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [{ECCA5B09-762D-41C7-BA31-FBE6344DAB2E}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{014371CB-252D-48B0-B3A3-11218E35A4AC}] => (Allow) C:\Users\Beast\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7C79F78E-50CA-48CB-8976-4B2F989EDC99}] => (Allow) C:\Program Files (x86)\GAMES\steam\Steam.exe FirewallRules: [{887562D4-AC8E-42B0-B40E-9F0FAA61A2AB}] => (Allow) C:\Program Files (x86)\GAMES\steam\Steam.exe FirewallRules: [{2143DC52-04A3-4BD6-9429-179C649C5592}] => (Allow) C:\Program Files (x86)\GAMES\steam\bin\steamwebhelper.exe FirewallRules: [{9A85356C-BC42-4DD3-94CB-3A524CAD3023}] => (Allow) C:\Program Files (x86)\GAMES\steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{2125A8E2-B64E-40A2-AACA-45BE07C4CD01}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [UDP Query User{8DB924C2-67D7-4A0C-8B51-2E9B0216EF01}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [TCP Query User{D7B9ECBD-B6A4-4F3B-B66F-F457426FE0F9}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{D5CA4FF9-D731-49A4-8327-126DA176E5DE}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [{D0DBA362-48AA-4D8B-88FF-DBAEFB0F7522}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{1061D8B7-B6CD-4AC4-B1E9-91ADF10F60B9}] => (Allow) LPort=2869 FirewallRules: [{C8BAD22C-58E1-4261-8A5B-5B166114E9B5}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{02FD1A25-91F5-4B34-AA68-906F2ADE819B}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{D9B0652F-7FF3-487C-8AFD-F012427B47EB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{1292D386-8294-4F25-BF9E-7241D64242C3}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{00F7C63C-B5CC-43BB-83F4-DD76EF80EDAD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{1A1AD925-41BC-4F06-B3B0-93BBF014CA3A}] => (Allow) LPort=3935 FirewallRules: [{0A6DE12D-7F8C-4B6A-B0B4-1E45685724F0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{593AAE82-CE0B-4489-9A15-CD41244BFFCD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{746A3C2F-9598-4C11-BC99-F75BEEFE568D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F2C8D42E-3FF8-42F5-9468-82D11F45C701}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{2CC607BF-A9CC-44FD-9E3A-C856853B9730}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{91916B52-4B93-4DBB-9661-1FEDE87A03DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{470D28D8-1C69-42A1-96D6-3639D1208C5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{24DDFF58-7A7E-41C7-855F-54D558ED9242}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{963B74CE-4F0B-4B1A-A8B7-80902C4B828F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{26C71D2E-C613-45F4-9C46-35B1F468D15C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{63C40672-DBDC-42C3-9A24-D6354E8D4CC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{21AECB05-AF1F-4894-9231-4D511C02CF53}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{0F830673-16E5-48CA-BD2C-CB2C9140BBBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{26179ECE-5152-463C-8153-72C2C4A51BEC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{00F23FEE-F6EB-4DEA-8AB6-0518D60FEE20}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{1A6C713E-19B0-4215-9649-A8905BE59CD7}C:\program files\sdi\sdi_x64_r1793.exe] => (Allow) C:\program files\sdi\sdi_x64_r1793.exe FirewallRules: [UDP Query User{3BAE3260-36CC-47AE-976B-4CF79A7D74FF}C:\program files\sdi\sdi_x64_r1793.exe] => (Allow) C:\program files\sdi\sdi_x64_r1793.exe FirewallRules: [{13CE98E8-7B96-4BC5-9761-53E9EDF097B8}] => (Allow) C:\Program Files\Daedalus\cardano-node.exe FirewallRules: [{F593BFA0-03C3-4F38-A210-9EDA2095EA33}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 09-01-2018 12:13:27 Windows Update 09-01-2018 13:00:19 Windows Update 09-01-2018 13:28:00 Windows Update 09-01-2018 13:43:25 Windows Update 09-01-2018 13:44:34 Windows Update 09-01-2018 13:58:22 Windows Update 09-01-2018 14:01:30 Revo Uninstaller's restore point - Skype™ 7.3 09-01-2018 14:01:41 Removed Skype™ 7.3 09-01-2018 14:03:29 Windows Update 09-01-2018 14:07:34 pre windows update fix kb3177467 09-01-2018 14:12:17 Windows Update 09-01-2018 14:29:22 Windows Update 09-01-2018 14:29:41 Windows Update 09-01-2018 14:31:58 Windows Update 09-01-2018 14:34:05 Windows Update 09-01-2018 14:40:46 Windows Update 09-01-2018 14:41:06 Windows Update 09-01-2018 14:43:32 Windows Update 09-01-2018 14:49:27 Windows Update 09-01-2018 15:19:55 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (01/09/2018 05:49:52 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 05:47:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: flux.exe, versie: 4.55.0.0, tijdstempel: 0x59dd23af Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutoffset: 0x0034e59c Id van proces met fout: 0x12f0 Starttijd van toepassing met fout: 0x01d389699904e42e Pad naar toepassing met fout: C:\Users\Beast\AppData\Local\FluxSoftware\Flux\flux.exe Pad naar module met fout: unknown Rapport-id: d7346a64-f55c-11e7-8aa0-94de806fe429 Error: (01/09/2018 04:32:01 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 04:30:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: flux.exe, versie: 4.55.0.0, tijdstempel: 0x59dd23af Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0xc0000005 Foutoffset: 0x0024e79c Id van proces met fout: 0x1184 Starttijd van toepassing met fout: 0x01d3895eb86cc02b Pad naar toepassing met fout: C:\Users\Beast\AppData\Local\FluxSoftware\Flux\flux.exe Pad naar module met fout: unknown Rapport-id: f83b8f3f-f551-11e7-ba38-94de806fe429 Error: (01/09/2018 03:49:53 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 03:20:20 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 03:06:19 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Het programma NOTEPAD.EXE, versie 6.1.7601.18917 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 280 Starttijd: 01d38952fc718106 Eindtijd: 1 Toepassingspad: C:\Windows\system32\NOTEPAD.EXE Rapport-id: 40b11884-f546-11e7-b222-94de806fe429 Error: (01/09/2018 02:12:28 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 02:08:46 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Error: (01/09/2018 02:03:05 PM) (Source: IntelDalJhi) (EventID: 7) (User: ) Description: Intel(R) Dynamic Application Loader Host Interface Service has failed to write to registry. Systeemfouten: ============= Error: (01/09/2018 05:53:20 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Error: (01/09/2018 05:53:20 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: De volgende melding van een onherstelbare fout is ontvangen: 70. Error: (01/09/2018 03:21:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073701: 2018-01 Beveiliging - Maandelijkse kwaliteitsrollup voor Windows 7 voor op x64 gebaseerde systemen (KB4056894). Error: (01/09/2018 02:53:41 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: KB3006137: Update voor Windows 7 voor x64-systemen. Error: (01/09/2018 02:52:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073701: 2018-01 Beveiliging - Maandelijkse kwaliteitsrollup voor Windows 7 voor op x64 gebaseerde systemen (KB4056894). Error: (01/09/2018 02:49:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070103: NVIDIA - Display - 10/27/2017 12:00:00 AM - 23.21.13.8813. Error: (01/09/2018 02:43:46 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: KB3006137: Hotfix voor Windows. Error: (01/09/2018 02:42:32 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80073701: KB4056894: Beveiligingsupdate voor Windows. Error: (01/09/2018 02:41:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: KB3006137: Hotfix voor Windows. Error: (01/09/2018 02:34:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: KB3006137: Hotfix voor Windows. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Percentage geheugen in gebruik: 46% Totaal fysiek RAM-geheugen: 8081.99 MB Beschikbaar fysiek RAM-geheugen: 4319.02 MB Totaal Virtueel geheugen: 16162.17 MB Beschikbaar Virtual geheugen: 12266 MB ==================== Schijven ================================ Drive c: (SSD) (Fixed) (Total:223.47 GB) (Free:46.19 GB) NTFS Drive e: (HD-1 (main disk)) (Fixed) (Total:1863.01 GB) (Free:14.85 GB) NTFS Drive f: (HD-2 (backup disk)) (Fixed) (Total:1863.01 GB) (Free:12.33 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: D8BC332F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D8BC3357) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 1CCF65C9) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================