Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 18-01-2020 Gestart door katin (19-01-2020 16:39:48) Gestart vanaf C:\Users\katin\Desktop Windows 10 Home Versie 1903 18362.535 (X64) (2019-10-18 21:18:27) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4209545030-941644967-1577953332-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4209545030-941644967-1577953332-503 - Limited - Disabled) defaultuser0 (S-1-5-21-4209545030-941644967-1577953332-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gast (S-1-5-21-4209545030-941644967-1577953332-501 - Limited - Disabled) joach (S-1-5-21-4209545030-941644967-1577953332-1003 - Limited - Enabled) => C:\Users\joach katin (S-1-5-21-4209545030-941644967-1577953332-1001 - Administrator - Enabled) => C:\Users\katin WDAGUtilityAccount (S-1-5-21-4209545030-941644967-1577953332-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee VirusScan Enterprise Antispyware Module (Enabled - Up to date) {AB673DE7-398B-91DC-4631-C988CF0E285E} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) 5Beaufort (HKLM-x32\...\5Beaufort_is1) (Version: - ) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.1.435 - Adobe Systems Incorporated) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_1) (Version: 20.0.1 - Adobe Systems Incorporated) Albelli.be Fotoboeken (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\{C16DFB31-4A09-474E-AF61-02AFB3008763}_is1) (Version: 17.0.0.4057 - albelli BE) AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.) AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 77.2.2152.121 - De auteurs van Avast Secure Browser) Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.245.0 - AVAST Software) Hidden Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.5.1 - Nikon Corporation) Catalyst Control Center Next Localization BR (HKLM\...\{80CC2950-1814-AC9E-3D0D-C90A55E8D4DC}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (HKLM\...\{26F1F4A7-20CA-14F7-2FD4-881A091CC3B0}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (HKLM\...\{E56BC5C6-72A4-CB01-C088-4A49C08E8445}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (HKLM\...\{6B0B6172-7323-3978-C975-21DF6DF80E71}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (HKLM\...\{B75AE7D2-592B-59C9-D4AB-425E60BB37A3}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (HKLM\...\{587F9805-4CD8-0F20-D653-83401BE78CC2}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (HKLM\...\{CB010EC4-AA3B-BCE4-D404-1E2F8D2DCC5B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (HKLM\...\{3A755952-64D5-23A9-A277-FFD385C1FB6B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (HKLM\...\{92E1BEC3-CBE6-F9A9-D7E6-06D5F394E68D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (HKLM\...\{6B24AFE6-AB87-D3D1-D373-16A1FBC7CFB0}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (HKLM\...\{D971F05F-649C-207F-E93B-32948E534112}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (HKLM\...\{21BC8691-9AF5-3C88-9943-F29276660BAA}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (HKLM\...\{68B28E41-D54A-C41A-3E0B-347459597C2F}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (HKLM\...\{D3A475CA-EE19-EB26-2134-63AE67843005}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (HKLM\...\{B3CE29F8-87C4-96BF-7C94-82659E62710D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (HKLM\...\{29BF8AF3-23C2-DC38-E15A-DD76865380CC}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (HKLM\...\{2845D5D2-5EEF-BDCF-8288-01DCEB918680}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (HKLM\...\{C71FD137-A760-2E9E-2286-233EA5550C84}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (HKLM\...\{2E80A4A4-07BC-6AB4-64DF-05D825E23E7B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (HKLM\...\{6A9E8B8B-88E8-E128-9F68-5CADD3F8598D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (HKLM\...\{6E1880E5-FF3B-C060-7550-D173CA379F7A}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden CCSDK Customer Engagement Service (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.3.0.3 - Lenovo) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.6812 - CyberLink Corp.) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.6408 - CyberLink Corp.) Dropbox (HKLM-x32\...\Dropbox) (Version: 88.4.172 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden Lenovo App Explorer (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\Host App Service) (Version: 0.273.3.730 - SweetLabs for Lenovo) Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.12325.20298 - Microsoft Corporation) Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.12325.20298 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\Teams) (Version: 1.2.00.27559 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MovieStarPlanet versie 1.1 (HKLM-x32\...\{FBF94616-28CB-4277-8FB5-DB2018FEDDF1}_is1) (Version: 1.1 - MovieStarPlanet ApS) Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation) Nikon Transfer 2 (HKLM-x32\...\{4D5EE11A-0D0A-4214-ABAC-72419F7BE24D}) (Version: 2.13.1 - Nikon Corporation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.7.1 - Notepad++ Team) OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20298 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden OpenOffice 4.1.4 (HKLM-x32\...\{A9C6FDB5-733E-4A38-A063-6D2C440CFBC9}) (Version: 4.14.9788 - Apache Software Foundation) Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.4.1 - Nikon Corporation) Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10374 - Qualcomm Atheros) Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.260 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7738 - Realtek Semiconductor Corp.) Roblox Player for katin (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for katin (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - Roblox Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.24753 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.) YouTube (HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\HostAppService_322460fb8f47d8cb14cd883b17b5e0dd233a7768) (Version: v1.0.1 - YouTube) Packages: ========= Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-12-01] (Microsoft Corporation) Grammarly for Microsoft Edge -> C:\Program Files\WindowsApps\Grammarly.GrammarlyforMicrosoftEdge_1.120.2309.0_neutral__zee0y2571dhse [2020-01-15] (Grammarly) Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-19] (LENOVO INCORPORATED.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.1910.41.0_x64__k1h2ywk1493x8 [2020-01-05] (LENOVO INC.) Lenovo-accountportal -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-05-26] (LENOVO INCORPORATED.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft News: Gratis nieuws app voor België -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-16] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-23] (Microsoft Studios) [MS Ad] Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.105.0_x64__8wekyb3d8bbwe [2019-12-23] (Microsoft Studios) MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-23] (Microsoft Corporation) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-11-04] (Netflix, Inc.) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-4209545030-941644967-1577953332-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FE04A80B3A09} -> [Creative Cloud Files] => C:\Users\katin\Creative Cloud Files [2018-12-01 15:13] CustomCLSID: HKU\S-1-5-21-4209545030-941644967-1577953332-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\katin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19252.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4209545030-941644967-1577953332-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\katin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19252.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4209545030-941644967-1577953332-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\katin\Dropbox [2019-05-12 18:09] CustomCLSID: HKU\S-1-5-21-4209545030-941644967-1577953332-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-06-16] (Notepad++ -> ) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-08-12] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-08-12] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\katin\Desktop\YouTube.lnk -> C:\Users\katin\AppData\Local\Host App Service\Engine\WebAppHelper.exe (SweetLabs, Inc) -> /NAME"YouTube" /APPID"322460fb8f47d8cb14cd883b17b5e0dd233a7768" /URL"hxxps://www.youtube.com/?gl=US" ShortcutWithArgument: C:\Users\katin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube.lnk -> C:\Users\katin\AppData\Local\Host App Service\Engine\WebAppHelper.exe (SweetLabs, Inc) -> /NAME"YouTube" /APPID"322460fb8f47d8cb14cd883b17b5e0dd233a7768" /URL"hxxps://www.youtube.com/?gl=US" ==================== Geladen Modules (gefilterd) ============= 2015-06-25 15:53 - 2015-06-25 15:53 - 000011776 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2015-06-25 15:51 - 2015-06-25 15:51 - 002013696 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2015-06-25 16:34 - 2015-06-25 16:34 - 000014336 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2015-06-25 16:37 - 2015-06-25 16:37 - 000739840 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-06-25 16:38 - 2015-06-25 16:38 - 000071168 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-06-25 16:35 - 2015-06-25 16:35 - 000014336 _____ () [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2016-07-07 14:22 - 2016-07-07 14:22 - 000004608 _____ (Advanced Micro Devices, Inc.) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\atiamnld.dll 2017-10-12 05:23 - 2017-10-12 05:23 - 000542208 _____ (Apache Software Foundation) [Bestand niet getekend] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll 2017-10-12 05:23 - 2017-10-12 05:23 - 000865280 _____ (Apache Software Foundation) [Bestand niet getekend] C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll 2019-11-28 16:06 - 2019-10-27 05:36 - 001261568 _____ (Robert Simpson, et al.) [Bestand niet getekend] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000049664 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll 2015-06-25 16:15 - 2015-06-25 16:15 - 000029696 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000037376 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll 2015-06-25 16:15 - 2015-06-25 16:15 - 000030208 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000459776 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll 2015-06-25 16:15 - 2015-06-25 16:15 - 000236544 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000275456 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll 2015-06-25 16:17 - 2015-06-25 16:17 - 000023552 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000022528 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000351744 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll 2015-06-25 16:20 - 2015-06-25 16:20 - 000021504 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll 2015-06-25 16:21 - 2015-06-25 16:21 - 000374784 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll 2015-06-25 16:14 - 2015-06-25 16:14 - 001212416 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll 2015-06-25 04:13 - 2015-06-25 04:13 - 000912384 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll 2015-07-02 11:58 - 2015-07-02 11:58 - 005496320 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2015-06-25 16:03 - 2015-06-25 16:03 - 005804544 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2015-06-25 16:00 - 2015-06-25 16:00 - 001061376 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2015-06-25 16:23 - 2015-06-25 16:23 - 003187712 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2015-06-25 16:28 - 2015-06-25 16:28 - 002924544 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2015-06-25 16:16 - 2015-06-25 16:16 - 000310784 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2015-06-25 16:08 - 2015-06-25 16:08 - 005444608 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2015-06-25 16:58 - 2015-06-25 16:58 - 000277504 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2015-06-25 15:59 - 2015-06-25 15:59 - 000193024 _____ (The Qt Company Ltd) [Bestand niet getekend] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2018-05-18 20:35 - 2018-05-18 20:40 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-4209545030-941644967-1577953332-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\katin\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\RIC_6438.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) MSCONFIG\Services: AdaptiveSleepService => 2 HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2" HKLM\...\StartupApproved\Run32: => "ShStatEXE" HKU\S-1-5-21-4209545030-941644967-1577953332-1001\...\StartupApproved\Run: => "OneDrive" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{FBC5B37E-CA3F-4558-926D-A1FFCFA7A78E}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [{D5D5C393-3D5A-45AE-BC9B-92CB13B722A8}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [{24B8DC67-2485-49B4-9460-2E3703297593}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [{C63E1612-093D-4554-A7EB-7B5516292E99}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [{3B2C5E9B-6EA2-4B89-9971-DA61E066F18F}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [{A4EC70FF-C58F-4C46-9E6A-6A7EC71A8776}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe Geen bestand FirewallRules: [UDP Query User{76FD7B06-F7D7-4FDD-AF80-941837E631B6}C:\users\katin\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\katin\appdata\local\popcorn-time\popcorn-time.exe Geen bestand FirewallRules: [TCP Query User{68E1C52A-8BB3-4F14-8FCA-BA86EAE61A82}C:\users\katin\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\katin\appdata\local\popcorn-time\popcorn-time.exe Geen bestand FirewallRules: [{A9F3D098-57E2-41AF-9681-90B36D15663A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe Geen bestand FirewallRules: [{AB3EEBC7-2AA5-432C-81F1-55276806AB3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe Geen bestand FirewallRules: [{9B484690-4EC2-46DA-8EB6-E33DCE5E77E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe Geen bestand FirewallRules: [{D7832A58-B702-4446-BF9B-587F894E249E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe Geen bestand FirewallRules: [{F6118240-AD19-471A-9560-2AF8F373485E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Geen bestand FirewallRules: [{08EB0762-2B5D-4A87-925C-EBB1269333E2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Geen bestand FirewallRules: [{E7B7C798-9176-4A07-B5AA-D66130F32930}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe Geen bestand FirewallRules: [{252D61D2-BA23-4EEA-BE2D-0639673F9CDA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe Geen bestand FirewallRules: [{30384381-80F9-429A-A406-5D0E358A2A0F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{CD9B0528-C3FD-4CB9-ABB3-04B755EC7050}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe Geen bestand FirewallRules: [{D5719F4F-C37D-4A6C-8FFA-EB4421A3A3EC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe Geen bestand FirewallRules: [{A9260E28-A57D-4AB9-BCDC-F29EEA0A1832}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{B944CDCB-F979-4A43-AA3C-423B3AB39AE8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{BCEE3716-0623-4863-BDA1-DB3058E4DECB}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe Geen bestand FirewallRules: [{EAADA67D-06EB-4E97-9AC7-96FDDBDEF92E}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe Geen bestand FirewallRules: [{C9105AD5-B54F-4E8B-91F5-93D626411751}] => (Allow) %systemroot%\system32\alg.exe Geen bestand FirewallRules: [{0F98B4DB-D83B-4CC2-98C0-E8E46C293DE7}] => (Allow) %systemroot%\system32\alg.exe Geen bestand FirewallRules: [{FECAC5C5-2FA8-49E4-8BA5-3BCFF3BE2165}] => (Allow) %systemroot%\system32\alg.exe Geen bestand FirewallRules: [{662331E5-8077-409B-BDC7-C69E7B5A5C44}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{385BCA45-027A-43B4-9200-F208629187B6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5AA04371-DEEE-41A0-8931-315984C2042D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F36FB14D-FADE-422A-BF2A-65C320F40EC8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B0520B5C-888F-43C8-967B-7097F00F20B1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E77006C4-037B-4BE1-8534-0251148CD160}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software) FirewallRules: [{B7F8F445-1C7A-485E-B470-6C89B485E385}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{7CE80B40-E123-496A-B506-0701D4E7280F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 30-12-2019 12:15:13 Gepland controlepunt 11-01-2020 16:04:34 Gepland controlepunt 17-01-2020 23:52:58 Windows Update ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (01/19/2020 04:39:44 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (9244,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 02:29:38 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1988,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 01:54:32 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (11896,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 01:35:51 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY) Description: De vereiste buffergrootte is groter dan de grootte die is doorgegeven aan de verzamelfunctie van het DLL-bestand voor uitbreidbare items "C:\Windows\System32\perfts.dll" voor de "LSM"-service. De opgegeven buffergrootte was 29592 en de vereiste grootte was 38744. Error: (01/19/2020 01:26:52 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (13168,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 01:11:25 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4316,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 12:38:22 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6564,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/19/2020 12:20:46 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (12228,R,98) TILEREPOSITORYS-1-5-18: Fout -1023 (0xfffffc01) is opgetreden tijdens het openen van logboekbestand C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Systeemfouten: ============= Error: (01/17/2020 11:19:45 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de ShellHWDetection-service met de argumenten Niet beschikbaar om de server {DD522ACC-F821-461A-A407-50B198B896DC} te starten Error: (01/17/2020 11:19:34 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de ShellHWDetection-service met de argumenten Niet beschikbaar om de server {DD522ACC-F821-461A-A407-50B198B896DC} te starten Error: (01/17/2020 11:19:18 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} te starten Error: (01/17/2020 11:19:17 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de netprofm-service met de argumenten Niet beschikbaar om de server {A47979D2-C419-11D9-A5B4-001185AD2B89} te starten Error: (01/17/2020 11:19:17 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.TokenBrokerInternal te starten Error: (01/17/2020 11:19:17 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.TokenBrokerInternal te starten Error: (01/17/2020 11:19:17 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de TokenBroker-service met de argumenten Niet beschikbaar om de server Windows.Internal.Security.Authentication.Web.WamProviderRegistration te starten Error: (01/17/2020 11:19:11 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-RLTGDPVT) Description: DCOM heeft de foutmelding 1084 gekregen bij het starten van de WSearch-service met de argumenten Niet beschikbaar om de server {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} te starten Windows Defender: =================================== Date: 2019-12-11 17:30:59.572 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {5B1AE78C-C070-427B-920B-D132F5FECA2E} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-12-11 17:23:49.451 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {D51CD240-D740-4EF7-987D-35D664DA46A8} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-12-11 17:05:58.661 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {77A171F9-B17C-4AE8-B840-B893E73AC2F9} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-12-11 16:57:54.806 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {8075A8EA-DCD6-4D56-9F22-7AC437FB4C0E} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-12-11 15:56:44.398 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {BEDDB866-01EF-4E2A-BFBD-81C83838DE69} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2019-11-17 14:06:23.786 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.305.2092.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16500.1 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2019-10-21 16:22:57.271 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.305.301.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16500.1 Foutcode: 0x8050a003 Foutbeschrijving: Dit pakket bevat geen bijgewerkte definitiebestanden voor dit programma. Raadpleeg Help en ondersteuning voor meer informatie. Date: 2019-10-21 16:22:57.270 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.305.301.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiSpyware Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16500.1 Foutcode: 0x8050a003 Foutbeschrijving: Dit pakket bevat geen bijgewerkte definitiebestanden voor dit programma. Raadpleeg Help en ondersteuning voor meer informatie. Date: 2019-10-21 16:22:57.270 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.305.301.0 Updatebron: Microsoft Centrum voor beveiliging tegen malware Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\NETWORK SERVICE Huidige engineversie: Vorige engineversie: 1.1.16500.1 Foutcode: 0x8050a003 Foutbeschrijving: Dit pakket bevat geen bijgewerkte definitiebestanden voor dit programma. Raadpleeg Help en ondersteuning voor meer informatie. Date: 2019-10-21 16:16:40.796 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.299.420.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16500.1 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. CodeIntegrity: =================================== Date: 2020-01-19 16:34:08.891 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:08.869 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:07.792 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:07.789 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:07.769 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:07.734 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:06.619 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-19 16:34:06.590 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== BIOS: Lenovo 1QCN32WW 08/18/2016 Moederbord: LENOVO Nano 5A8 Processor: AMD A6-7310 APU with AMD Radeon R4 Graphics Percentage geheugen in gebruik: 59% Totaal fysiek RAM-geheugen: 7074.6 MB Beschikbaar fysiek RAM-geheugen: 2830.79 MB Totaal Virtueel geheugen: 8226.6 MB Beschikbaar Virtueel geheugen: 3743.95 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:885.24 GB) (Free:775.4 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.5 GB) NTFS \\?\Volume{2bb33d3f-019d-4b2b-a03a-7836ddcde2ed}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.47 GB) NTFS \\?\Volume{436e7f6c-1df0-497f-9f0c-002dd7e17e65}\ (LENOVO_PART) (Fixed) (Total:19.05 GB) (Free:7.2 GB) NTFS \\?\Volume{57e0d07f-b804-4dc8-8878-67ae2f9cdfcc}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: DE9CB66B) Partition: GPT. ==================== Einde van Addition.txt =======================