Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 15-05.2019 01 Gestart door rita (15-05-2019 20:31:18) Gestart vanaf C:\Users\rita\Desktop Windows 10 Home Versie 1803 17134.706 (X64) (2018-07-08 10:47:54) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-455634102-3971962441-1493714179-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-455634102-3971962441-1493714179-503 - Limited - Disabled) Gast (S-1-5-21-455634102-3971962441-1493714179-501 - Limited - Disabled) => C:\Users\Gast rita (S-1-5-21-455634102-3971962441-1493714179-1001 - Administrator - Enabled) => C:\Users\rita WDAGUtilityAccount (S-1-5-21-455634102-3971962441-1493714179-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) Adblock Plus voor IE (32-bit en 64-bit) (HKLM\...\{EAB6B77C-0E46-48EF-8660-7ABA400F7FB4}) (Version: 1.5 - Eyeo GmbH) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe) ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.212 - Alps Electric) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AMD Catalyst Install Manager (HKLM\...\{13351E83-6DCD-4E97-2A8C-5D496259A47F}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.) Apple Application Support (32-bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) Avast Driver Updater (HKLM-x32\...\{8804140C-3144-4075-9526-1C662E26CA17}) (Version: 2.5.5 - AVAST Software) Hidden Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.5.5 - AVAST Software) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.4.2374 - AVAST Software) Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.48.0 - Conexant) CutePDF Writer 3.2 (HKLM\...\CutePDF Writer Installation) (Version: 3.2 - Acro Software Inc.) CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4427.52 - CyberLink Corp.) Dropbox (HKLM-x32\...\Dropbox) (Version: 72.4.136 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.) Google Chrome Bèta (HKLM-x32\...\Google Chrome Beta) (Version: 75.0.3770.27 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard) HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Officejet 4620 series Basissoftware van het apparaat (HKLM\...\{E75C591A-0E5F-4365-9B79-0E4FCCF1B34F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Officejet 4620 series Haelp (HKLM-x32\...\{225F0E4C-A89A-4AC7-A56A-95B2A12DDC26}) (Version: 6.0.0 - Hewlett Packard) HP Officejet 4620 series Productverbeteringsonderzoek (HKLM\...\{487EE170-5858-4400-8975-085145D91C83}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\HP Photo Creations) (Version: 1.0.0.17422 - HP) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard) I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) iCloud (HKLM\...\{03742818-3BC2-45BA-B6BB-4C2D453FD033}) (Version: 7.11.0.19 - Apple Inc.) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Packard Bell) iTunes (HKLM\...\{CE796E03-4418-4086-A8C3-7AEF2013CDC7}) (Version: 12.9.4.102 - Apple Inc.) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Packard Bell) Malwarebytes versie 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes) McAfee True Key (HKLM\...\TrueKey) (Version: 5.3.138.1 - McAfee, LLC) Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.10730.20334 - Microsoft Corporation) Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.10730.20334 - Microsoft Corporation) Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.10730.20334 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\OneDriveSetup.exe) (Version: 19.062.0331.0006 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 66.0.5 (x64 nl) (HKLM\...\Mozilla Firefox 66.0.5 (x64 nl)) (Version: 66.0.5 - Mozilla) Mozilla Firefox 66.0.5 (x86 nl) (HKLM-x32\...\Mozilla Firefox 66.0.5 (x86 nl)) (Version: 66.0.5 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.3 - Mozilla) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG) Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{B2B0EC73-AD4A-4716-A3DE-CEA8440B309B}) (Version: 12.5.00000 - Nero AG) Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.11100.8.0 - Nero AG) Norton Online Backup ARA (HKLM-x32\...\NARA) (Version: 4.1.0.14 - Symantec Corporation) Hidden Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.11601.20144 - Microsoft Corporation) Hidden Packard Bell Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Packard Bell) Packard Bell Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Packard Bell) Packard Bell Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3012 - Packard Bell) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0002 - Nero AG) Hidden Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.) Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.188 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype versie 8.42 (HKLM-x32\...\Skype_is1) (Version: 8.42 - Skype Technologies S.A.) SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC) Stuurprogrammapakket voor Windows - Fedict SmartCard (08/08/2015 4.1.5) (HKLM\...\9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958) (Version: 08/08/2015 4.1.5 - Fedict) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.10168 - Microsoft Corporation) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Unity Web Player (HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS) Update for Skype for Business 2015 (KB4462207) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.AccessRT_{E91507E0-38E5-4415-BAAB-932075CDE00C}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Windows-stuurprogrammapakket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) Packages: ========= 7digital Music Store -> C:\Program Files\WindowsApps\7digitalLtd.7digitalMusicStore_2.1.10.3_x86__qv1vc61z2t2b4 [2017-07-21] (7digital Ltd) Dictionary. -> C:\Program Files\WindowsApps\Farlex.581429F59E1D8_5.1.2.0_x64__wyegy4e46y996 [2019-01-20] (Farlex) Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.18.8489.0_x86__q4d96b2w5wcc2 [2019-05-09] (Evernote) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-13] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_95.1.531.0_x64__v10z8vjag6ke6 [2019-03-22] (HP Inc.) Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.9.4100.0_x64__8wekyb3d8bbwe [2019-04-23] (Microsoft Studios) Microsoft Telefoon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-08] (Microsoft Corporation) Microsoft Telefoonassistent -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-15] (Microsoft Corporation) Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.5.3272.0_x64__8wekyb3d8bbwe [2018-04-15] (Microsoft Studios) Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x64__8wekyb3d8bbwe [2016-08-12] (Microsoft Platform Extensions) Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x86__8wekyb3d8bbwe [2016-08-12] (Microsoft Platform Extensions) Mixed Reality Portal -> C:\Windows\SystemApps\Microsoft.Windows.HolographicFirstRun_cw5n1h2txyewy [2018-09-22] (Microsoft Corporation) Skitch Touch -> C:\Program Files\WindowsApps\Evernote.Skitch_2.4.2000.1918_neutral__q4d96b2w5wcc2 [2013-09-04] (Evernote) TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.5.0_x64__6bhtb546zcxnj [2018-06-06] (TuneIn) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.) WeatherBug -> C:\Program Files\WindowsApps\WeatherBug.WeatherBugbeta_2.0.4.0_neutral__j565901s17z26 [2014-11-15] (WeatherBug) Yelo Play -> C:\Program Files\WindowsApps\Telenet.Yelo_6.5.19.0_x64__c5vekn1z7ww04 [2017-07-10] (Telenet) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-455634102-3971962441-1493714179-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\rita\Dropbox [2014-09-25 12:26] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-16] (AVAST Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-16] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-03-13] (Apple Inc. -> Apple Inc.) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-16] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-02-28] (Advanced Micro Devices, Inc.) [Bestand niet getekend] ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-04-16] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes) ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\rita\Favorites\Packard Bell\Packard Bell.lnk -> hxxp://www.packardbell.com ==================== Geladen Modules (gefilterd) ============== 2014-01-17 18:00 - 2014-03-03 15:04 - 001298432 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BBDaemon.exe 2014-01-17 18:00 - 2014-03-03 15:04 - 000068096 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BBService.exe 2014-01-17 18:00 - 2014-03-03 15:04 - 001704960 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\BrytonBridge2.exe 2014-01-17 18:00 - 2014-03-03 15:04 - 000041472 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\HeraLib.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000026624 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qgif4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000028672 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qico4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000196608 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qjpeg4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000220672 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qmng4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000022016 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qsvg4.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000284672 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\imageformats\qtiff4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 001061888 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\PythonQt.dll 2014-04-04 16:58 - 2014-03-03 15:04 - 000087040 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\_ctypes.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000356352 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\_hashlib.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000044032 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\_socket.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000865792 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\_ssl.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000010240 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\select.pyd 2014-04-04 16:58 - 2014-03-03 15:04 - 000686080 _____ () [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\Resources\unicodedata.pyd 2015-02-28 03:38 - 2015-02-28 03:38 - 000127488 _____ () [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2015-02-28 03:38 - 2015-02-28 03:38 - 000102400 _____ () [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2019-05-14 23:19 - 2019-05-14 23:19 - 000009728 _____ () [Bestand niet getekend] C:\Users\rita\AppData\Local\Temp\nsvBED.tmp\nsDialogs.dll 2019-05-14 23:19 - 2019-05-14 23:19 - 000011264 _____ () [Bestand niet getekend] C:\Users\rita\AppData\Local\Temp\nsvBED.tmp\System.dll 2014-01-17 18:00 - 2012-12-25 11:21 - 000049152 _____ () [Bestand niet getekend] C:\Users\rita\AppData\Roaming\Python-Eggs\gevent-1.0rc2-py2.7-win32.egg-tmp\gevent\_semaphore.pyd 2014-01-17 18:00 - 2012-12-25 11:21 - 000195584 _____ () [Bestand niet getekend] C:\Users\rita\AppData\Roaming\Python-Eggs\gevent-1.0rc2-py2.7-win32.egg-tmp\gevent\core.pyd 2014-01-17 18:00 - 2012-06-21 19:31 - 000019968 _____ () [Bestand niet getekend] C:\Users\rita\AppData\Roaming\Python-Eggs\greenlet-0.4.0-py2.7-win32.egg-tmp\greenlet.pyd 2015-02-28 03:28 - 2015-02-28 03:28 - 000898048 _____ (Advanced Micro Devices, Inc.) [Bestand niet getekend] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll 2015-02-28 03:28 - 2015-02-28 03:28 - 000004608 _____ (Advanced Micro Devices, Inc.) [Bestand niet getekend] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamnld.dll 2015-02-28 03:37 - 2015-02-28 03:37 - 000344064 _____ (Advanced Micro Devices, Inc.) [Bestand niet getekend] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe 2019-05-14 23:20 - 2019-05-14 23:20 - 000005120 _____ (Afrow Soft Ltd) [Bestand niet getekend] C:\Users\rita\AppData\Local\Temp\nsvBED.tmp\ButtonEvent.dll 2018-07-08 11:51 - 2018-07-08 11:51 - 000065536 _____ (Microsoft Corporation) [Bestand niet getekend] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll 2018-09-07 12:58 - 2019-03-26 16:27 - 015257088 _____ (Node.js) [Bestand niet getekend] C:\Program Files (x86)\Microsoft\Skype for Desktop\node.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 002520576 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtCore4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 008347136 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtGui4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 001018368 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtNetwork4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000194560 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtSql4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000278016 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtSvg4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 012747264 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtWebKit4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000341504 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\QtXml4.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 002436608 _____ (Python Software Foundation) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\python27.dll 2013-03-22 16:54 - 2012-08-01 09:08 - 000081536 _____ (Qualcomm Atheros -> Atheros) [Bestand niet getekend] C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe 2014-01-17 18:00 - 2014-03-03 15:04 - 001145344 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\LIBEAY32.dll 2014-01-17 18:00 - 2014-03-03 15:04 - 000237056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\BrytonBridge2\ssleay32.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\sharepoint.com -> hxxps://climapac-files.sharepoint.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-455634102-3971962441-1493714179-1001\...\1001movie.com -> 1001movie.com Er zijn 6091 Meer websites. ==================== Hosts inhoud: ========================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2019-04-26 09:10 - 000002132 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 2018-02-11 22:57 - 2018-10-30 11:46 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\AOMEI Backupper;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04262019091036845\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04262019091038132\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-455634102-3971962441-1493714179-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rita\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\2019-01-18.png DNS Servers: 195.130.130.5 - 195.130.131.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Geen bestand) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == Als een item is opgenomen in de fixlist, zal het worden verwijderd. HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "LManager" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "beid" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "iTunesHelper" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [UDP Query User{05773E9D-06B6-46C9-89EC-B9D247A6144F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{6E1C8F20-BCDE-4B7B-BB74-CE8E5E81A708}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7B9BD807-CA6B-4E6D-BCFA-19BA87B45CEA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7DF6E6CF-B678-44D7-8794-CBEC633C100B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{35EA5BFF-02D2-40DA-B560-57BF53551FF2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{8984036D-4D1B-4031-A0E0-6CF5FC593F63}C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [TCP Query User{524FD0C2-EFA5-45D9-AEC2-4D0D50187DC9}C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [UDP Query User{77C6A5D4-FCAF-40C6-953E-84D5EE7D3B9F}C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicator.exe] => (Block) C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [TCP Query User{37DE4182-906E-4B83-8F4F-E71A9199ADE9}C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicator.exe] => (Block) C:\program files\hp\hp officejet 4620 series\bin\hpnetworkcommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{721A416D-3B0F-47CD-A4AF-101440D92C01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{C7F02B43-C10D-4832-98DF-7C6205E3E394}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E0FDA282-FD11-48A9-9499-E07C3ED32FD5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2DDA7095-F20A-4FE7-A1E5-E8C16CD84A0E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{708441D2-504E-4052-B0EE-31CDBBB7162F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{9695F02D-3B22-4778-AB0A-78FD7E52B7B3}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A32E4224-A982-4F53-B3D6-F440575A7AE2}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A14EB96E-0BCE-45A0-A415-7EDB4588AFB1}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{556DD12E-FA2A-405C-9FEE-D44AE01517A2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{764D28B6-EE7B-490E-BEC4-A34273152F11}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C7AC0CC0-5BD1-4A4B-81BD-D177BB5755D4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DF1FF151-4DCF-4AF4-A58D-3F80174634E4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CFDE922F-8F9A-423A-865F-6AC6ABA79CCD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{8A2A9D89-39F0-4209-B85E-D69EE7D8A999}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{3707DA0F-FD1A-4BF2-8D79-C1C616656FB0}] => (Allow) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 25-04-2019 21:37:43 Windows Update 14-05-2019 21:35:50 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (05/15/2019 08:17:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: explorer.exe, versie: 10.0.17134.677, tijdstempel: 0xb4a88dff Naam van module met fout: twinui.pcshell.dll, versie: 10.0.17134.619, tijdstempel: 0x2c9131e2 Uitzonderingscode: 0x80270233 Foutmarge: 0x0000000000307843 Id van proces met fout: 0x918c Starttijd van toepassing met fout: 0x01d50b4a5900a506 Pad naar toepassing met fout: C:\WINDOWS\explorer.exe Pad naar module met fout: C:\WINDOWS\system32\twinui.pcshell.dll Rapport-id: f28d8614-b94d-4752-9b35-921ef58f3143 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (05/15/2019 08:06:58 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/15/2019 07:52:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: svchost.exe_SysMain, versie: 10.0.17134.556, tijdstempel: 0xf23cada5 Naam van module met fout: sysmain.dll, versie: 10.0.17134.191, tijdstempel: 0xd2f66a7b Uitzonderingscode: 0xc0000305 Foutmarge: 0x000000000003c9fd Id van proces met fout: 0x6cc Starttijd van toepassing met fout: 0x01d4fbff0ea93ecb Pad naar toepassing met fout: c:\windows\system32\svchost.exe Pad naar module met fout: c:\windows\system32\sysmain.dll Rapport-id: 8ea876ac-8390-4c75-8d7f-42c80c099d4e Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (05/15/2019 07:50:56 PM) (Source: ESENT) (EventID: 489) (User: ) Description: taskhostw (5684,G,0) Een poging het bestand C:\Users\rita\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat te openen voor alleen-lezen is mislukt. Systeemfout 32 (0x00000020): Het proces heeft geen toegang tot het bestand omdat het door een ander proces wordt gebruikt. . Tijdens het openen van het bestand treedt fout -1032 (0xfffffbf8) op. Error: (05/15/2019 07:41:21 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 11891 Error: (05/15/2019 07:41:21 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 11891 Error: (05/15/2019 07:41:21 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (05/15/2019 07:41:17 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7984 Systeemfouten: ============= Error: (05/15/2019 08:39:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:39:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:36:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:36:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:34:38 PM) (Source: DCOM) (EventID: 10001) (User: ERWIN) Description: Kan DCOM Server CyberLinkCorp.ac.SocialNetworks_1.0.2228.0_neutral__ypz87dpxkv292!App.AppXzmxwwb3j7xmksn17mtwp0m9cmbfw5d3p.wwa niet starten als Niet beschikbaar/Niet beschikbaar. Foutmelding "2" is opgetreden bij het uitvoeren van de opdracht "C:\WINDOWS\system32\wwahost.exe" -ServerName:App.wwa Error: (05/15/2019 08:32:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:32:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (05/15/2019 08:29:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} en APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} aan de gebruiker NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Windows Defender: =================================== Date: 2019-04-13 09:30:28.941 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {2A0AF76F-D8E5-40E3-A721-B17099C18694} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-04-10 00:24:07.210 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {E09BF559-10EF-421F-9D78-EF1A830FC42F} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-04-08 19:45:40.675 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {361B0B35-9602-44AF-A47A-5314F888FB2C} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-04-06 12:27:19.986 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {DEE55EF1-885C-4529-85B4-3B6D4DADB5E2} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-04-06 10:37:56.407 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {EC5E8D75-CA6E-4C62-B86A-4858065F005F} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-04-16 19:41:21.696 Description: Real-timebeveiligingsonderdeel van Windows Defender Antivirus heeft een fout aangetroffen en is niet uitgevoerd. Onderdeel: Gedragscontrole Foutcode: 0x80508023 Foutbeschrijving: Op dit apparaat is geen malware en andere mogelijk ongewenste software gevonden. Reden: Antimalwarebeveiliging werkt niet meer wegens een onbekende reden. In sommige gevallen kan het probleem worden verholpen door de service opnieuw te starten. Date: 2019-04-10 19:18:36.401 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.291.1362.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15800.1 Foutcode: 0x8024001e Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-04-09 18:56:13.776 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.291.1362.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15800.1 Foutcode: 0x8024001e Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-04-07 22:25:18.814 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.291.1295.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15800.1 Foutcode: 0x80240022 Foutbeschrijving: Er kan niet naar definitie-updates worden gezocht. Date: 2019-04-05 23:06:14.179 Description: Windows Defender Antivirus heeft een fout aangetroffen bij het bijwerken van handtekeningen. Nieuwe handtekeningversie: Vorige handtekeningversie: 1.291.1094.0 Bron update: Microsoft-updateserver Type handtekening: AntiVirus Type update: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.15800.1 Foutcode: 0x80240022 Foutbeschrijving: Er kan niet naar definitie-updates worden gezocht. CodeIntegrity: =================================== Date: 2019-05-13 21:28:51.036 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-05-04 14:17:03.174 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-04-20 13:30:55.968 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2019-04-20 13:30:55.826 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2019-04-20 13:30:35.259 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2019-04-20 13:30:35.040 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2019-04-20 13:30:34.805 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system. Date: 2019-04-20 13:30:34.517 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system. ==================== Geheugen info =========================== BIOS: Insyde Corp. V2.11 12/13/2012 Motherboard: Packard Bell EG70_BZ Processor: AMD E1-1200 APU with Radeon(tm) HD Graphics Percentage geheugen in gebruik: 90% Totaal fysiek RAM-geheugen: 3658.26 MB Beschikbaar fysiek RAM-geheugen: 365.67 MB Totaal Virtueel geheugen: 14922.26 MB Beschikbaar Virtueel geheugen: 458.02 MB ==================== Schijven ================================ Drive c: (Packard Bell) (Fixed) (Total:442.83 GB) (Free:262.72 GB) NTFS \\?\Volume{aa6c998b-37fb-4621-8ad9-d6b35c6598ac}\ (Recovery) (Fixed) (Total:0.39 GB) (Free:0.13 GB) NTFS \\?\Volume{618bd2aa-6117-45e0-be9f-8acdaf3072f7}\ () (Fixed) (Total:0.78 GB) (Free:0.35 GB) NTFS \\?\Volume{e1324845-3dd0-4e93-8bd9-0ab59d698b68}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS \\?\Volume{2dffcbb6-3f42-4cb9-ad19-613f381e4f8a}\ (Push Button Reset) (Fixed) (Total:21 GB) (Free:8.57 GB) NTFS \\?\Volume{0061eb7e-366d-4944-8d75-ba3aa8e61190}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Partitietabel ================== ==================== Einde van Addition.txt ============================