Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 21.07.2018 Gestart door Gebruiker (27-07-2018 23:52:21) Gestart vanaf C:\Users\Gebruiker\Desktop Windows 10 Home Versie 1709 16299.547 (X64) (2017-10-27 15:43:47) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-61398639-3510963538-1143681263-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-61398639-3510963538-1143681263-503 - Limited - Disabled) Gast (S-1-5-21-61398639-3510963538-1143681263-501 - Limited - Disabled) Gebruiker (S-1-5-21-61398639-3510963538-1143681263-1001 - Administrator - Enabled) => C:\Users\Gebruiker WDAGUtilityAccount (S-1-5-21-61398639-3510963538-1143681263-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Telenet Security Pack by F-Secure (Enabled - Up to date) {35BE5FA4-2DEA-00F8-DC55-FD8AF743F44F} AS: Telenet Security Pack by F-Secure (Enabled - Up to date) {8EDFBE40-0BD0-0F76-E6E5-C6F88CC4BEF2} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) . . (HKLM\...\{7ED1F198-3D52-420C-9F32-9F1B86720990}) (Version: 7.1 - Intel) Hidden . . . (HKLM-x32\...\{323CCD81-1A62-4163-955A-2E617D7211C9}) (Version: 3.4.1.7 - Intel) Hidden ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.031 - ASUSTek Computer Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Computer Security 17.193.128.0 (release) (HKLM-x32\...\{658FDBCA-B7A1-43E4-A849-9F0812473331}) (Version: 17.193.128.0 - F-Secure Corporation) Hidden CPUID CPU-Z 1.82 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.82 - ) <==== AANDACHT Discord (HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{F7118EF5-320C-4340-99F4-25F970B428A3}) (Version: 1.1.125.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) F-Secure CCF Reputation (HKLM-x32\...\{D864A15F-64B4-49B1-832C-21EDB46843B7}) (Version: 100.0.0.0 - F-Secure) Hidden F-Secure CCF Scanning Dummy 3.0.12 (release) (HKLM-x32\...\{99924D6C-E069-4C91-AB86-1722282FC858}) (Version: 3.0.12 - F-Secure Corporation) Hidden F-Secure Network CCF 1.04.266 (HKLM-x32\...\{A61B6381-E40A-4C8C-BB38-FD9E95F70E02}) (Version: 1.04.266 - F-Secure Corporation) Hidden F-Secure SafeSearch 10.0.0.0 (release) (HKLM-x32\...\{1C02D59F-EAF4-404C-95D9-2E7EF186FE44}) (Version: 10.0.0.0 - F-Secure Corporation) Hidden F-Secure Ultralight 1.0.5438.0 (release) (cc0c4f981bd2f23d1e5e325af11ed0a0ecf2a348) (HKLM-x32\...\{C75644E8-5FB5-4B8F-8FD2-08CC5D7ECD87}) (Version: 1.0.5438.0 - F-Secure Corporation) Hidden Futuremark SystemInfo (HKLM-x32\...\{3EEDF905-7C41-4C78-A5B9-45FB2A3E79DA}) (Version: 5.11.681.0 - Futuremark) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Gyazo 3.3.5 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.4.6 - Hi-Rez Studios) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HP Dropbox Plugin (HKLM-x32\...\{714EA650-B1EC-4731-A7BF-50BB65C7C1A4}) (Version: 36.0.31.53050 - Hewlett-Packard Co.) HP ENVY 4520 series Basissoftware van het apparaat (HKLM\...\{2FE26F6F-9DFF-4700-BE09-D7BEDC190F3C}) (Version: 36.0.72.54013 - Hewlett-Packard Co.) HP ENVY 4520 series Help (HKLM-x32\...\{13BB4F7C-E718-43F9-9BF8-4F824436C7D0}) (Version: 36.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM-x32\...\{30FEB472-BC59-4966-8B0C-F8C2045D413E}) (Version: 36.0.31.53050 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Intel(R) Computing Improvement Program (HKLM\...\{F6B5BD59-21F0-47F8-A6C6-63BAEB1A6569}) (Version: 2.1.03720 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{65f026f0-ca1d-4c8d-84bb-67ced39a5087}) (Version: 3.4.1.7 - Intel) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Killer Bandwidth Control Filter Driver (HKLM\...\{394D174A-095B-47E2-9787-2EA1488052BE}) (Version: 1.1.55.1335 - Rivet Networks) Hidden Killer E220x Drivers (HKLM\...\{8F2FC9D0-8EF4-4180-B230-166CAE6C2A5B}) (Version: 1.1.55.1335 - Rivet Networks) Hidden Killer Network Manager (HKLM\...\{8FABCCA6-6B84-4A2A-B69A-EB664BC6F0EC}) (Version: 1.1.55.1335 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{C9CD76FB-57C2-4B2C-80D2-20F92C5D8204}) (Version: 1.1.55.1335 - Qualcomm Atheros) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - nl-nl (HKLM\...\ProplusRetail - nl-nl) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0004 - Microsoft Corporation) Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Project Professional 2016 - nl-nl (HKLM\...\ProjectProRetail - nl-nl) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Visio Professional 2016 - nl-nl (HKLM\...\VisioProRetail - nl-nl) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team) NVIDIA 3D Vision controllerstuurprogramma 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.36 - NVIDIA Corporation) NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Online Safety 2.193.6279.13 (HKLM-x32\...\{978DBB21-6BBE-4F5F-B399-6BD9C3A04B9F}) (Version: 2.193.6279.13 - F-Secure Corporation) Hidden Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC) Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.27 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.20.606 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) Software voor Intel® Chipset-apparaten (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Sound Blaster X-Fi MB3 (HKLM-x32\...\{3689CE39-3173-4952-B7AF-F1A9D6F9A288}) (Version: 1.00.06 - Creative Technology Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.11.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.11.5 - SteelSeries ApS) Streamlabs OBS 0.9.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.9.3 - General Workings, Inc.) Telenet Security Pack (HKLM-x32\...\{ABA4F20E-E0C1-40E9-9B98-3D369F6E27BD}) (Version: 2.93.175.0 - F-Secure Corporation) Hidden Telenet Security Pack (HKLM-x32\...\F-Secure ServiceEnabler 44163) (Version: 2.93.175.0 - F-Secure Corporation) Twitch (HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{479E8CC7-CD68-4EB4-BB04-34A5C2C74102}) (Version: 2.46.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 43.1 - Ubisoft) Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony) VEGAS Pro 15.0 (HKLM\...\{E0F91FB0-7FC4-11E7-B8E9-95BE57594EAC}) (Version: 15.0.177 - VEGAS) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) Windows-stuurprogrammapakket - Intel (MEIx64) System (10/03/2017 11.7.0.1045) (HKLM\...\623E6BEBFE0E32D8AD88825BDC5B643D996BCA93) (Version: 10/03/2017 11.7.0.1045 - Intel) Windows-stuurprogrammapakket - Intel Corporation (iaStorA) HDC (04/10/2017 14.8.16.1063) (HKLM\...\1956B72D229BA5E262A8828A81DB9133B5F111B2) (Version: 04/10/2017 14.8.16.1063 - Intel Corporation) Windows-stuurprogrammapakket - Intel Corporation (iaStorA) SCSIAdapter (04/10/2017 14.8.16.1063) (HKLM\...\7B099E88B288543F1ED20B3C3332D4B1B2E6A621) (Version: 04/10/2017 14.8.16.1063 - Intel Corporation) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-61398639-3510963538-1143681263-1001_Classes\CLSID\{23066764-9BDD-4FBD-8B1F-F4547CF2684F}\InprocServer32 -> C:\Users\Gebruiker\AppData\Local\Microsoft\OneDrive\18.070.0405.0002\amd64\FileSyncShell64.dll => Geen bestand ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] () ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Geen bestand ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Geen bestand ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => -> Geen bestand ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {023469F6-F20E-402F-AB05-1498A95001AD} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-ruben.hermans@telenet.be => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated) Task: {0BECD912-7317-43A7-8811-F4806C2F9DF5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-24] (Microsoft Corporation) Task: {0C94D5D2-F12B-43A7-BCA7-9453D91F1D03} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation) Task: {0D9DA17C-0E71-4A1E-B392-794E37F0F488} - System32\Tasks\Driver Booster SkipUAC (Gebruiker) => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe Task: {1BB1D204-EA24-49F7-B627-E4664BB398BC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation) Task: {2AABC407-E9EB-40EC-BA17-9D1017AC3987} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-19] (NVIDIA Corporation) Task: {300685A1-216B-459D-B803-AC5DD1BCF834} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation) Task: {32FF1CF4-B56A-449D-9B7E-5A4F210B693D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-21] (Google Inc.) Task: {36D4CC50-18CC-45A9-8872-0B84E445244D} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe [2018-07-16] (Microsoft Corporation) Task: {3EBC841B-8D39-44F8-A35C-B6BB5A4C52EE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-19] (NVIDIA Corporation) Task: {42820EAB-E420-4EF1-9813-AE50A1008944} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation) Task: {4B5BC39D-04AA-455C-8A60-2EE897CA3AB6} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-12-21] (Nota Inc.) Task: {55AD9ADD-1AB8-498E-BFE1-690B22BFA1BD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {5704F69A-A7C3-4456-8E86-634E5ADC1D2A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-24] (Microsoft Corporation) Task: {6A253071-FC3B-4351-8802-7460C768C97B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation) Task: {84A64C6D-85B6-4156-BDDE-2D8B15B7C3BC} - \Microsoft\Windows\UNP\RunCampaignManager -> Geen bestand <==== AANDACHT Task: {883BE748-8AE5-48BC-99C2-342A0F7D415C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-04-21] (Google Inc.) Task: {9437CFA9-B246-419E-BDF6-EBF178408099} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-07-24] (Microsoft Corporation) Task: {9E7D98A1-1347-4B05-BD04-E93ACF2F7B92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-24] (Microsoft Corporation) Task: {A08273DB-1268-4944-BE57-B8B020595074} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Spybot Anti-Beacon\SDAntiBeacon.exe Task: {A6BCADB8-EBF4-47B4-B3FC-2964E12CA4F5} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-18] () Task: {AABE9A1D-B422-4183-8968-AF0E46AA3AF4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation) Task: {AD6531F7-05A1-4237-985A-04986E695DF3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation) Task: {B8E38D31-4B83-42DB-B192-AEFA950FE9B0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {C0C18B2D-70FA-4D02-848F-3944FFB1D626} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation) Task: {C7D084C5-7155-4AA9-BB16-2DF5924ADF19} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation) Task: {CD44FACF-F12E-4846-9E12-ED294B372023} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {D2EDBD82-5E1C-4897-B7F0-4A8EA1AAB74D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation) Task: {DFADF201-B8F8-4C3F-9515-680D4CF52C54} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {E011815E-17F8-4D66-81D8-8AA121612822} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-19] (NVIDIA Corporation) Task: {ED139D9A-E4DA-4502-91E2-CA7AC803EC80} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-12-21] (Nota Inc.) Task: {F4AEE727-988F-4FDB-8C5C-681446FF1EB0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-24] (Microsoft Corporation) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yamb 2.1.0.0 beta 2\Yamb - Website.lnk -> hxxp://yamb.unite-video.com ShortcutWithArgument: C:\Users\Gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3" ==================== Geladen Modules (gefilterd) ============== 2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-06-26 14:26 - 2018-06-26 14:26 - 000418784 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\Ultralight\ulcore\1530012511\daas2_x64.dll 2018-07-24 17:30 - 2018-07-19 22:20 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-03-14 21:13 - 2018-03-14 21:13 - 000189776 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2018-04-06 20:54 - 2018-04-06 20:54 - 000185064 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe 2018-06-26 14:26 - 2018-06-26 14:26 - 000319968 _____ () C:\Program Files (x86)\Telenet Security Pack\apps\Ultralight\ulcore\1530012511\senddump_fshoster_plugin64.dll 2017-08-29 02:43 - 2017-08-29 02:43 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2018-07-11 13:41 - 2018-06-29 10:00 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-07-11 13:41 - 2018-06-29 09:57 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-06-27 13:18 - 2018-07-19 22:19 - 095437352 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2016-04-16 18:18 - 2015-05-29 17:57 - 000089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL 2016-04-16 18:18 - 2015-05-29 17:56 - 000366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL 2018-06-27 13:18 - 2018-07-19 22:19 - 003029032 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll 2018-06-27 13:18 - 2018-07-19 22:19 - 000149544 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000885992 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe 2018-04-06 20:54 - 2018-04-06 20:54 - 002309864 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_modeler.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000270056 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\pl_agent_lib.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000260328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_acpi_battery_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000306920 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_wifi_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000231144 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\devices_use_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000277736 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_system_power_state_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000638696 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_os_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000212200 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_winstat_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000453352 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_upnp_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000375528 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_process_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000609512 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_hw_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000248040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_sgx_input.dll 2018-04-06 20:55 - 2018-04-06 20:55 - 000708328 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\sql_logger.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000818408 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe 2018-04-06 20:54 - 2018-04-06 20:54 - 000214760 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\foreground_window_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000279272 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_user_waiting_input.dll 2018-04-06 20:54 - 2018-04-06 20:54 - 000207080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\x64\intel_events_input.dll 2018-06-26 21:18 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll 2018-06-26 21:18 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll 2018-06-27 13:18 - 2018-07-19 22:19 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-05-01 22:57 - 2018-04-30 23:01 - 001891672 _____ () C:\Users\Gebruiker\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-05-01 22:57 - 2018-04-30 23:01 - 001937752 _____ () C:\Users\Gebruiker\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-05-01 22:57 - 2018-04-30 23:01 - 000095576 _____ () C:\Users\Gebruiker\AppData\Local\Discord\app-0.0.301\libegl.dll 2018-05-02 14:50 - 2018-05-02 14:50 - 001910104 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-05-02 14:51 - 2018-05-02 14:51 - 000422744 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-05-02 14:51 - 2018-05-02 14:51 - 000145240 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-05-02 14:51 - 2018-07-24 16:44 - 011270488 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-05-02 14:51 - 2018-07-24 16:44 - 001635160 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-05-02 14:50 - 2018-05-02 14:50 - 000512856 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-05-02 14:50 - 2018-06-30 10:34 - 001648984 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-05-02 14:50 - 2018-07-25 10:59 - 001817432 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node 2018-05-02 14:50 - 2018-05-02 14:50 - 002722648 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-05-02 14:51 - 2018-05-02 14:51 - 002760536 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-05-02 14:51 - 2018-05-02 14:51 - 001249112 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node 2018-05-02 14:50 - 2018-07-25 10:59 - 001681752 _____ () \\?\C:\Users\Gebruiker\AppData\Roaming\discord\0.0.301\modules\discord_hook\discord_hook.node 2018-05-08 13:53 - 2018-05-08 13:53 - 000143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2016-04-30 21:17 - 2014-05-19 17:19 - 000137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2016-04-30 21:17 - 2014-09-11 18:09 - 001498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\Gebruiker:Heroes & Generals [38] AlternateDataStreams: C:\Users\Public\AppData:CSM [472] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2015-10-30 09:24 - 2018-01-13 22:06 - 000000002 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-61398639-3510963538-1143681263-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gebruiker\Desktop\Rest\818978.png DNS Servers: 195.130.131.3 - 195.130.130.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == MSCONFIG\Services: OverwolfUpdater => 3 MSCONFIG\Services: SkypeUpdate => 2 HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "RazerCortex" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "cmsc" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\StartupFolder: => "Verzenden naar OneNote.lnk" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "Source Voice InGame" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "HP ENVY 4520 series (NET)" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-61398639-3510963538-1143681263-1001\...\StartupApproved\Run: => "Gyazo" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [TCP Query User{8B042BC3-C62F-454E-9C07-7884E66F6560}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{487B8E3C-AB51-4616-8E14-84E5CA86A851}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{823AA4C3-AAE7-48DF-BBF1-B799202E6D31}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{A8600581-111A-4209-9295-F004732E3CE9}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{B88F9E7A-4066-40CB-9A4E-37AFD759FF02}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{15A47FCF-A5F2-4EC4-B9B4-4F06C4DB127A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{93CC975A-5D6E-4075-A9FF-6066E9F84EB3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DDD7AB5D-F2CF-439B-987D-C7336D354214}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7022CA29-451F-428B-91EE-694DA57A716B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{27FE3A96-D094-4A65-9EED-15800B8FF30D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{E127BDA1-3706-4DE7-9D43-2F644C51D7DF}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{9A0C0686-74E0-4D3E-A77E-0B7F81D94C6E}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe FirewallRules: [{B5E0614D-EB8E-48C0-9D99-1B7D92C4DA1E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{8692F95D-AA91-4EE9-81EE-620BFCE5CD3D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [TCP Query User{3ADC53FF-A243-45AA-BA87-13C413CF0BBF}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{77787C86-7DF6-4DDF-B60F-49B5994CD1F4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{68EB7F4B-5E85-416D-8B85-448BD7812DC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{B9700BAE-762C-4517-A975-DFA716D884AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{685F4A41-90C5-4704-8426-56F9CC30B1CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{C6695C86-2A00-47AF-9768-073D772143B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [TCP Query User{700FBBBD-176C-4B54-88FA-A7E0969C6E7F}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{4DB9851D-73AF-4D12-8941-CAF699D65EFC}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{8F130004-E519-4B54-B3E8-E29BD0E154D1}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{35A587CA-5A5B-40F0-89EF-0B8061079B89}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{E9F45504-8927-4E2C-9FEE-6A70CDFEAB93}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{5A55EEAC-61B1-4A64-94A6-C84925B416E7}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [TCP Query User{D05990A5-1417-45A1-B987-8CFCA831A01F}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame_be.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame_be.exe FirewallRules: [UDP Query User{21D5B8A9-E267-4EF9-AC7B-B77DC3DB113C}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame_be.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame_be.exe FirewallRules: [TCP Query User{7EB68A40-A0E0-4CF9-972B-0189B88D1E02}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe FirewallRules: [UDP Query User{E43B8427-9F56-410C-AE30-0A5E9409DA84}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe FirewallRules: [{BEE31EA9-CD1D-4EF8-8991-E01DED649E1C}] => (Allow) C:\Program Files (x86)\AnvSoft\Syncios Data Transfer\SynciosTransfer.exe FirewallRules: [{111E6B64-659B-47B9-8945-42C9D81B5E3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{A904FADB-BC22-4CE9-B032-77C571D5C0A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [TCP Query User{F89D9348-4F53-47B2-BA97-B20FF485230E}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{F3A3EBC2-74BD-4794-A970-3F98C04761E1}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{2640E443-975B-40A1-B0A7-5F96E09A2E4E}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{D4AB20A1-707C-47B7-8A5A-8BC3A90DC609}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{58507E43-214E-4931-A377-E49247C95472}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [UDP Query User{C96EEC2C-8AB9-4098-9349-D27F14722418}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [TCP Query User{CCD57F98-A193-460B-8729-83C33CDB5DA1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{E3B0D689-51D5-4952-8E1A-F18C3F344452}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{924F22B4-0BC6-4937-93EB-D739EB2A8CBD}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{68680210-27AD-4C7B-B60A-F019AE2E5CC0}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{A605245D-E592-47CE-ACB6-1B1D6859B165}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{00E818C3-F1D4-4DE5-8147-865F4E175209}C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win32\smite.exe FirewallRules: [TCP Query User{D9445A3C-D1E2-4BCF-B3F4-E9EE0F150D2E}C:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{4DEDBD0A-71F6-45C6-84C3-A8E938747D3D}C:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{345560B6-36EE-4E1F-86F5-451F62209ECC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [UDP Query User{B4093C0F-D735-4BF2-A6FF-47B21595D5D4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [TCP Query User{0EDFA2AA-EF8C-4E76-BB50-2C1681EB9E3D}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{D89C1CEC-8748-4AC3-80C5-EB344F66A1BB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{0E01B152-1B56-4902-BAD4-1FA3B075CE92}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe FirewallRules: [UDP Query User{A845D81E-B801-4072-BA1E-6A69C8D29CA7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe FirewallRules: [TCP Query User{B11A3209-85A8-4FAB-9019-22F5F18AE5BB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe FirewallRules: [UDP Query User{6BCA55E7-E027-4F83-AB0C-D4034DB38F23}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe FirewallRules: [{4F1276C1-4E8B-4D56-A9F1-7337A63AB81C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{65A15379-BB12-4ED8-A744-4A388471F546}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{D4ACDFEE-704A-4CBE-BB2B-7BF7E7E2BD74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{F6E168AE-0F1D-47AC-8F27-8A2061B2E598}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{AAFC89EB-46FD-40DE-9B98-10EB18AA02C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{429089E4-BB22-45EE-ACE2-00A6FE45E332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{3BEA1096-DE02-484A-AEAE-778BFA09A4CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{21B4261E-001F-44E9-8DA9-4B64FC4BD564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{920325C6-F9DB-4BEE-9E90-21211F5E3181}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{772C9B1B-7EC8-4F0F-8E50-61F64F549955}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{6E719538-7FB8-4F2A-9BDE-A46D1A708272}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{69D1944F-A2BF-41B2-9C43-5F42FFB0C061}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{EA42A79E-03BE-4568-9B0E-DD21207074BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{00E6AE9B-237B-41FA-B942-3F4A2D0D1865}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [TCP Query User{921455CC-E1BC-4FD3-BD61-A0DC2100B185}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe FirewallRules: [UDP Query User{B397DF88-898C-49E7-AC38-6BBBD29C81B6}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe FirewallRules: [TCP Query User{5E3A6CB8-409A-4790-8900-311471344ABF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe FirewallRules: [UDP Query User{4FF57032-1E4B-4E4D-80EA-29DE53AE5FE0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe FirewallRules: [TCP Query User{727CB035-7395-42E0-AB2F-EDA2850EE203}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe FirewallRules: [UDP Query User{719DA637-E23A-4544-9128-CE35265B81D8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe FirewallRules: [{3C582114-9A17-41D0-AC70-13CF2C88B6CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{78F25393-D059-4CB6-AB97-4FDEB66F4822}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{9832285D-FD62-4905-A3D8-0F429E96093B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{E326DCEF-05A3-4C23-BD6F-23BE8A7A3AF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe FirewallRules: [{5AE00A4C-F53B-44BD-8CF0-083D627E5B99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe FirewallRules: [TCP Query User{668CCE92-BDB0-46CA-8F54-7F824255C5EA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe FirewallRules: [UDP Query User{DD5A1829-10C4-4A94-9A1F-08637A926443}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe FirewallRules: [TCP Query User{A4BC8F8B-952A-42A6-A293-ADFEBFA2EA18}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe FirewallRules: [UDP Query User{FF960203-ACF5-4857-B366-334C244D09E0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe FirewallRules: [TCP Query User{3881384D-1E76-462C-9EDE-521A25FF8CAF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe FirewallRules: [UDP Query User{499BAEE2-B259-454F-84AD-5130C2801E7C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe FirewallRules: [TCP Query User{A711B3B5-CE5C-4097-9413-F83D6C5DD655}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [UDP Query User{7A4F7665-7346-4D63-8F91-1D6B1F3B3CEC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [TCP Query User{8912DA75-04E5-4F3F-92C8-CEA322AE7756}C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe FirewallRules: [UDP Query User{CADB6CFC-CF24-48B7-ADDB-2CCBAF7FD773}C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe FirewallRules: [TCP Query User{5498574A-693C-468B-B66D-03DCD489BCE2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [UDP Query User{A4FECC22-B52F-4D16-BE78-4F91BF3030FC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [{7A3B887F-7149-406A-8DA3-4643E4E8D7F8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{2FC65404-2212-431F-AB9C-F4B4BAA3BBA6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{47E98209-6922-4DF9-8095-7C7597D1B5AF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{041985FC-8383-445F-8BC7-9B430D903A77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{CBC9090C-497F-4596-93A9-4F9FD5F2373E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{A900A2FB-E654-4580-8E81-3043EEB4822A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe FirewallRules: [{1C9A2744-32A4-49F9-8F8E-4403325A0DA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe FirewallRules: [TCP Query User{30ACD24D-E5ED-4607-91D5-0814E00C00E1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [UDP Query User{D6AE1A80-86B8-48BE-A704-93BDA7212AE0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [{C9E06DA0-7B5D-484F-A63B-43EC5A96D924}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{54B7E284-A616-493D-A17C-6789AA9F1829}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{2149ECEF-73D4-4436-82AF-1A4743AF6DA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe FirewallRules: [{38CF1A7C-FE18-456B-A98A-38ABF400C67B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe FirewallRules: [TCP Query User{D093A7EB-0F4C-4912-9579-16F73F38180D}C:\program files (x86)\steam\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe FirewallRules: [UDP Query User{5FF3B501-5D82-4FAB-9FC0-320F47DA71DC}C:\program files (x86)\steam\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe FirewallRules: [{D59FCC7B-9FCF-4F4C-A53C-7EF70A156A8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{E23B9ADD-DDA9-4C02-B92C-76DE6193327E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{FF5C4663-8F5C-49FC-BCC1-919BAFE14BDB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{60ADF0E5-440F-43FE-851F-EB98D7A9D769}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{BAE190DD-7A3C-4383-A6D3-CEE614C88A5F}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{65434D3D-D2FE-4735-A36B-0F3A3AE24BF6}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{F3E6805A-CCBC-4F4F-ADC5-62D17A97BF7E}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{A4EC823C-E58E-4AB5-8CB0-1E1A5342B972}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{C7B7537D-99A2-4CFC-9883-12442FDD708A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{8D452A1F-86F1-4161-8805-8B12DC510B25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{74755F35-753F-4F9A-8043-0D3DF65C363F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{AFD5F7AE-E84F-49BA-BEF5-9E0CD89F1926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{E1280BE2-C1C5-4FDB-9451-ACA8C0524488}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{E065B2D5-7AD6-481D-9DFB-9B0893E00732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{3E539262-04BC-417D-AF16-5B219C06E278}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{ECD1C9AC-4EB3-4D13-9E58-74971B190DB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe ==================== Herstelpunten ========================= 24-07-2018 16:47:10 Windows Update 26-07-2018 12:06:20 Removed XSplit Gamecaster 27-07-2018 23:16:52 Removed Python Launcher ==================== Defecte Apparaatbeheer Apparaten ============= Name: Standaard PS/2-toetsenbord Description: Standaard PS/2-toetsenbord Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (standaardtoetsenbord) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Microsoft-muis (PS/2) Description: Microsoft-muis (PS/2) Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (07/27/2018 09:38:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: RzStats.Manager.exe, versie: 1.2.16.0, tijdstempel: 0x587327cf Naam van module met fout: KERNELBASE.dll, versie: 10.0.16299.547, tijdstempel: 0xb03e83b5 Uitzonderingscode: 0xe0434352 Foutmarge: 0x00103ff2 Id van proces met fout: 0x3438 Starttijd van toepassing met fout: 0x01d425e1605ae17c Pad naar toepassing met fout: C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: c3305d68-8e66-4f9e-bcd2-53821b0442e4 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (07/27/2018 09:38:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: RzStats.Manager.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.IO.IOException bij System.IO.__Error.WinIOError(Int32, System.String) bij System.IO.File.InternalCopy(System.String, System.String, Boolean, Boolean) bij System.IO.File.Copy(System.String, System.String, Boolean) bij Razer.DataTracking.Common.Utils.XDocumentSafe.SafeSave(System.Xml.Linq.XDocument, System.String) bij RzDataTrackingManager.DataHistoryManager.InitStatsHistory(System.String) bij RzDataTrackingManager.DataHistoryManager.GetStatsFromStorage() bij RzDataTrackingManager.Form1..ctor() bij RzDataTrackingManager.Program.Main() Error: (07/27/2018 07:44:25 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (07/27/2018 11:07:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: RzStats.Manager.exe, versie: 1.2.16.0, tijdstempel: 0x587327cf Naam van module met fout: KERNELBASE.dll, versie: 10.0.16299.547, tijdstempel: 0xb03e83b5 Uitzonderingscode: 0xe0434352 Foutmarge: 0x00103ff2 Id van proces met fout: 0x3370 Starttijd van toepassing met fout: 0x01d425894bf8e866 Pad naar toepassing met fout: C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: dde20347-5911-47f3-b73e-ffe61a235e2a Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (07/27/2018 11:07:55 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: RzStats.Manager.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.IO.IOException bij System.IO.__Error.WinIOError(Int32, System.String) bij System.IO.File.InternalCopy(System.String, System.String, Boolean, Boolean) bij System.IO.File.Copy(System.String, System.String, Boolean) bij Razer.DataTracking.Common.Utils.XDocumentSafe.SafeSave(System.Xml.Linq.XDocument, System.String) bij RzDataTrackingManager.DataHistoryManager.InitStatsHistory(System.String) bij RzDataTrackingManager.DataHistoryManager.GetStatsFromStorage() bij RzDataTrackingManager.Form1..ctor() bij RzDataTrackingManager.Program.Main() Error: (07/26/2018 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode. Error: (07/26/2018 11:56:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: RzStats.Manager.exe, versie: 1.2.16.0, tijdstempel: 0x587327cf Naam van module met fout: KERNELBASE.dll, versie: 10.0.16299.547, tijdstempel: 0xb03e83b5 Uitzonderingscode: 0xe0434352 Foutmarge: 0x00103ff2 Id van proces met fout: 0x3210 Starttijd van toepassing met fout: 0x01d424c6eba2902f Pad naar toepassing met fout: C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe Pad naar module met fout: C:\WINDOWS\System32\KERNELBASE.dll Rapport-id: d03a88c9-d9c2-4779-8382-770c4ac85c24 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (07/26/2018 11:56:31 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Toepassing: RzStats.Manager.exe Framework-versie: v4.0.30319 Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering. Uitzonderingsinformatie: System.IO.IOException bij System.IO.__Error.WinIOError(Int32, System.String) bij System.IO.File.InternalCopy(System.String, System.String, Boolean, Boolean) bij System.IO.File.Copy(System.String, System.String, Boolean) bij Razer.DataTracking.Common.Utils.XDocumentSafe.SafeSave(System.Xml.Linq.XDocument, System.String) bij RzDataTrackingManager.DataHistoryManager.InitStatsHistory(System.String) bij RzDataTrackingManager.DataHistoryManager.GetStatsFromStorage() bij RzDataTrackingManager.Form1..ctor() bij RzDataTrackingManager.Program.Main() Systeemfouten: ============= Error: (07/27/2018 10:48:19 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 10:34:41 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 10:24:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 10:18:34 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 09:59:17 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 09:50:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (07/27/2018 09:39:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Energy Server Service queencreek-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (07/27/2018 09:38:14 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KD6M4E1) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker DESKTOP-KD6M4E1\Gebruiker SID (S-1-5-21-61398639-3510963538-1143681263-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. CodeIntegrity: =================================== Date: 2018-03-30 16:07:16.766 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Telenet Security Pack\apps\Ultralight\ulcore\1522233571\fshook64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:22:06.543 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:22:06.262 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:22:05.951 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:22:04.574 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:21:23.104 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:21:21.050 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. Date: 2018-02-27 17:18:56.661 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz Percentage geheugen in gebruik: 29% Totaal fysiek RAM-geheugen: 16333.73 MB Beschikbaar fysiek RAM-geheugen: 11587.02 MB Totaal Virtueel geheugen: 18765.73 MB Beschikbaar Virtueel geheugen: 13006.59 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:464.42 GB) (Free:147.09 GB) NTFS \\?\Volume{9f043e3a-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS \\?\Volume{9f043e3a-0000-0000-0000-203a74000000}\ () (Fixed) (Total:0.85 GB) (Free:0.47 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 9F043E3A) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=464.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=872 MB) - (Type=27) ==================== Eind van Addition.txt ============================