Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 08-03-2020 Gestart door RandySp (17-03-2020 11:03:02) Gestart vanaf C:\Users\RandySp\Desktop Windows 10 Home Versie 1803 17134.1130 (X64) (2018-06-08 21:39:07) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3669440298-1739476700-4279047772-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3669440298-1739476700-4279047772-503 - Limited - Disabled) Gast (S-1-5-21-3669440298-1739476700-4279047772-501 - Limited - Disabled) RandySp (S-1-5-21-3669440298-1739476700-4279047772-1001 - Administrator - Enabled) => C:\Users\RandySp WDAGUtilityAccount (S-1-5-21-3669440298-1739476700-4279047772-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AS: AVG Antivirus (Enabled - Up to date) {A3C8941D-8036-3856-D9BB-709D4A2A7EAC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated) abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.00.3002 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated) Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3012 - Acer Incorporated) Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8107 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8105 - Acer Incorporated) Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3016.0 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated) Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3004 - Acer Incorporated) Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3004 - Acer Incorporated) Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2005.0 - Acer Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.344 - Adobe) Aloha TriPeaks (HKLM-x32\...\WTA-ded2756b-507b-451b-a178-9aeb1c2664af) (Version: 2.2.0.98 - WildTangent) Hidden ANT Drivers Installer x64 (HKLM\...\{99B72734-4395-42D0-ADFD-A9722A7AD7B0}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated) AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.1.3112 - AVG Technologies) Bejeweled 2 Deluxe (HKLM-x32\...\WTA-c1c1d117-c164-4c47-aff2-6d1c12b2ad18) (Version: 2.2.0.95 - WildTangent) Hidden Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.) Broadcom NetLink Controller (HKLM\...\{7FBA83D7-D58E-4B70-9B9B-12E95B183B22}) (Version: 16.6.1.3 - Broadcom Corporation) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scan Utility (HKLM-x32\...\Canon_IJ_Network_Scan_UTILITY) (Version: - ) Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.0.19 - Canon Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.) Canon MG6100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series) (Version: - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.) Canon TS6000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS6000_series) (Version: 1.01 - Canon Inc.) Canon TS6000 series Schermhandleiding (HKLM-x32\...\Canon TS6000 series Schermhandleiding) (Version: 1.1.0 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform) Cipher Classics (HKLM-x32\...\ST5UNST #1) (Version: - ) Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.2.100.14 - Citrix Systems, Inc.) CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4917 - CyberLink Corp.) CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.4218 - CyberLink Corp.) DeLorme Send To GPS 1.5 (HKLM\...\{0F60FD8E-3E58-4F8E-BF2C-DFA4C9987AE2}_is1) (Version: 1.5 - DeLorme Publishing) Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) EasyGPS 5.53.0.0 (HKLM-x32\...\EasyGPS_is1) (Version: 5.53.0.0 - TopoGrafix) Elevated Installer (HKLM-x32\...\{EDCD0A1B-09BE-493A-B871-13F86760A5D0}) (Version: 6.19.4.0 - Garmin Ltd or its subsidiaries) Hidden Farm to Fork Collector's Edition (HKLM-x32\...\WTA-6d72c52b-e28f-4f5c-a476-6d9851a6ecc9) (Version: 3.0.2.59 - WildTangent) Hidden FastStone Image Viewer 6.7 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.7 - FastStone Soft) File Identifier (HKLM-x32\...\{C257E434-E8F1-4E06-A616-598E4933553E}_is1) (Version: 1.0.11 - Sharpened Productions) File Viewer Plus (HKLM-x32\...\{C8B24B83-920A-446E-B027-38F72C9D8898}_is1) (Version: 2.2.1 - Sharpened Productions) FotoGeoTag 3.3 (HKLM-x32\...\{809DCF8F-168D-4886-9C81-9AD0DB41EDB4}_is1) (Version: 3.3 - JaVaWa GPS-tools) Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.) Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.) Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{0a5a7c12-97db-47da-874c-cfeeeac5676f}) (Version: 6.19.4.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{DD4EE84A-E101-4F03-A881-AF498F68811C}) (Version: 6.19.4.0 - Garmin Ltd or its subsidiaries) Hidden Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Gebruikersregistratie voor Canon TS6000 series (HKLM-x32\...\Gebruikersregistratie voor Canon TS6000 series) (Version: - ‭Canon Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.132 - Google LLC) Google Earth Pro (HKLM-x32\...\{5BAA8884-F661-464B-B5B2-5C6C632BFC21}) (Version: 7.1.4.1529 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-c3e5a25e-b6f4-41e5-85d6-6fdf26914896) (Version: 3.0.2.59 - WildTangent) Hidden GSAK 8.7.1.121 (HKLM-x32\...\GSAK_is1) (Version: - CWE computer services) Intel(R) Chipset Device Software (HKLM-x32\...\{d370215a-d003-43ae-a3b6-1028af64d5a1}) (Version: 10.0.20 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1168 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{06A5031E-3B1E-4FB9-AC4C-BA0FE2706152}) (Version: 17.1.1433.02 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{7991b5ae-96d7-4df2-97fb-a605b7cb638b}) (Version: 17.12.0 - Intel Corporation) Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Jewel Match 3 (HKLM-x32\...\WTA-186e33b6-b742-448b-a0f8-3c8625286ddc) (Version: 3.0.2.59 - WildTangent) Hidden King Oddball (HKLM-x32\...\WTA-4425af4f-73a5-494e-9209-fdc955ea45f9) (Version: 3.0.2.48 - WildTangent) Hidden LUXOR Evolved (HKLM-x32\...\WTA-59cf0432-1bfb-46f4-85d4-3eebf45c5b2b) (Version: 2.2.0.98 - WildTangent) Hidden Magic Academy (HKLM-x32\...\WTA-2b951635-cf03-4f4f-8aaa-67e420e1fd71) (Version: 2.2.0.98 - WildTangent) Hidden Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.11929.20606 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\...\Teams) (Version: 1.3.00.3564 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 74.0 (x64 nl) (HKLM\...\Mozilla Firefox 74.0 (x64 nl)) (Version: 74.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0 - Mozilla) NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation) NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.11929.20606 - Microsoft Corporation) Hidden Online Plug-in (HKLM-x32\...\{C0F6F192-C145-44AF-8D68-CC6F91DE9F9B}) (Version: 14.2.100.14 - Citrix Systems, Inc.) Hidden OurSecret 2.5 (HKLM-x32\...\OurSecret_is1) (Version: - securekit.net) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC) Peggle Nights (HKLM-x32\...\WTA-35992e9e-cf96-4caa-b342-f58557e4e5cb) (Version: 2.2.0.98 - WildTangent) Hidden PhotoME Beta-Release (HKLM-x32\...\PhotoME Beta-Release_is1) (Version: 0.8ß2 - Jens Duttke) Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-cae36700-19c7-4cab-bb24-ed68f24c27a6) (Version: 3.0.2.59 - WildTangent) Hidden Polar Bowler 1st Frame (HKLM-x32\...\WTA-6d80f542-3557-4ee8-beaa-3378b0d613a0) (Version: 3.0.2.59 - WildTangent) Hidden Prey Anti-Theft (HKLM-x32\...\{AC65C5A1-AEA9-474C-B544-520D8D4FDCFD}) (Version: 1.3.9 - Prey, Inc.) Hidden Quicksilver Puzzle Tools (HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\...\70f3ee1c1cf4bad2) (Version: 1.5.0.2 - Tommy Quicksilver) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39059 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7260 - Realtek Semiconductor Corp.) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 2.1.214 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.6.1.119 - EnigmaSoft Limited) Stuurprogrammapakket voor Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Stuurprogrammapakket voor Windows - Fedict SmartCard (04/30/2014 4.0.7.5) (HKLM\...\C5357B4AD7C02B3F6EF45765A07E5B725E50BBF7) (Version: 04/30/2014 4.0.7.5 - Fedict) Stuurprogrammapakket voor Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.34161 - Microsoft Corporation) The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-092ae20c-2934-48b3-8615-f9de6d30016a) (Version: 3.0.2.51 - WildTangent) Hidden Trinklit Supreme (HKLM-x32\...\WTA-39da2751-1031-489e-a9bc-fdfe1e897574) (Version: 2.2.0.98 - WildTangent) Hidden TunnelBear (HKLM-x32\...\{4c4afaad-5e4a-4975-ad76-4873af5ba2e9}) (Version: 3.6.1.0 - TunnelBear) TunnelBear (HKLM-x32\...\{A96814A3-456B-47FE-8FCE-8F4331CA605E}) (Version: 3.6.1.0 - TunnelBear) Hidden Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-012B-0413-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden Urwigo (HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\...\58f19a2872fb977e) (Version: 1.22.0.144 - Urwigo) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== AANDACHT WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.13 - WildTangent) Hidden Windows 10-updateassistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) XnView 2.43 (HKLM-x32\...\XnView_is1) (Version: 2.43 - Gougelet Pierre-e) Zuma's Revenge (HKLM-x32\...\WTA-b76cad2e-21b6-4cf1-bd93-705c481a0560) (Version: 2.2.0.97 - WildTangent) Hidden Packages: ========= Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.3007.0_x86__48frkmn4z8aw4 [2016-07-07] (Acer Incorporated) Booking.com Partner Edition -> C:\Program Files\WindowsApps\4AE8B7C2.Booking.comPartnerEdition_1.2.1.0_x64__6wqyppa9wfhnr [2014-12-11] (Booking.com B.V.) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.) Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.18.60.0_x86__q7m17pa7q8kj0 [2020-03-09] (Deezer SA) Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.24.8919.0_x86__q4d96b2w5wcc2 [2020-03-12] (Evernote) Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2017-07-15] (Flipboard) Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_3.1.10383.1000_x86__8wekyb3d8bbwe [2019-06-08] (Microsoft Corporation) Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-21] (AMZN Mobile LLC) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.1.0_x64__8wekyb3d8bbwe [2018-07-08] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.7.0_x64__8wekyb3d8bbwe [2018-07-30] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.9.0_x64__8wekyb3d8bbwe [2018-08-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2018-09-28] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad] Microsoft News: Gratis nieuws app voor België -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20583.0_x64__8wekyb3d8bbwe [2020-03-06] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-28] (Microsoft Studios) [MS Ad] Microsoft Telefoon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-08] (Microsoft Corporation) Microsoft Telefoonassistent -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation) MoneyPoint -> C:\Program Files\WindowsApps\44000TuanSamath.MoneyDashboard_1.2.1055.0_x64__pqv0azgxs32ap [2019-07-04] (Two Square Systems) [MS Ad] MSN eten en drinken -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad] MSN financiën -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad] MSN gezondheid en fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad] MSN reizen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad] MSN sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad] MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2020-03-06] (Microsoft Corporation) [MS Ad] TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2019-09-20] (TuneIn) [MS Ad] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.) Videomomenten -> C:\Program Files\WindowsApps\Microsoft.MovieMoments_6.3.9654.20464_x64__8wekyb3d8bbwe [2014-12-11] (Microsoft Corporation) Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-10-25] (Zinio LLC) ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\RandySp\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19350.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\RandySp\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19350.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001_Classes\CLSID\{e02fc67b-e3a3-4478-9d7d-ab92865deb4c}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Geen bestand ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Geen bestand ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Geen bestand ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Geen bestand ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Geen bestand ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Geen bestand ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Geen bestand ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (gefilterd) ==================== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.) HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [255488 2011-05-30] () [Bestand niet getekend] HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [240640 2011-05-30] () [Bestand niet getekend] ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2019-09-09 07:13 - 2019-09-09 07:13 - 001364992 _____ () [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll 2019-12-12 13:34 - 2019-12-12 13:34 - 000073216 _____ () [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll 2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll 2019-07-27 08:57 - 2019-07-27 08:57 - 096071680 _____ () [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\libcef.dll 2018-08-27 12:13 - 2018-08-27 12:13 - 000166912 _____ () [Bestand niet getekend] C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll 2015-04-08 02:40 - 2015-04-08 02:40 - 002293760 _____ (Apache Software Foundation) [Bestand niet getekend] C:\Program Files (x86)\Citrix\Receiver\xerces-c_3_1.dll 2019-12-12 13:34 - 2019-12-12 13:34 - 001976832 _____ (Apache Software Foundation) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\XercesLib.dll 2017-09-03 20:43 - 2015-09-15 15:07 - 000318464 _____ (CANON INC) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\scchmpm.dll 2017-09-03 20:49 - 2016-06-09 10:57 - 000561152 _____ (CANON INC. ) [Bestand niet getekend] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll 2015-03-25 21:20 - 2010-08-24 09:27 - 000019968 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_NLD.DLL 2017-09-03 20:43 - 2015-09-01 17:11 - 000194560 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnmpu2.dll 2017-09-03 20:43 - 2015-06-17 15:00 - 000104960 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_IMG.dll 2017-09-03 20:43 - 2015-06-17 15:01 - 000008704 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_NLD.DLL 2017-09-03 20:43 - 2015-05-26 08:44 - 000141312 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnwidsd.dll 2017-09-03 20:49 - 2016-06-09 12:35 - 000588800 _____ (CANON INC.) [Bestand niet getekend] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll 2015-03-25 21:19 - 2012-06-14 17:18 - 000359936 _____ (CANON INC.) [Bestand niet getekend] C:\WINDOWS\System32\CNMN6PPM.DLL 2019-12-12 13:36 - 2019-12-12 13:36 - 000234496 _____ (Dynastream Innovations Inc.) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll 2019-12-12 13:34 - 2019-12-12 13:34 - 002711552 _____ (Garmin International) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\legacyio.dll 2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll 2019-12-12 13:34 - 2019-12-12 13:34 - 000425472 _____ (Garmin) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\XMLdll.dll 2018-06-08 22:25 - 2018-06-08 22:25 - 001101824 _____ (Microsoft Corporation) [Bestand niet getekend] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL 2016-05-05 20:49 - 2016-05-05 20:49 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2016-05-05 20:49 - 2016-05-05 20:49 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2014-10-25 00:32 - 2014-05-29 23:59 - 001279480 _____ (NVIDIA CORPORATION -> NVIDIA Corporation) [Bestand niet getekend] C:\WINDOWS\system32\nvspcap64.dll 2019-12-12 13:35 - 2019-12-12 13:35 - 000090112 _____ (Silicon Laboratories, Inc.) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL 2019-07-27 08:57 - 2019-07-27 08:57 - 000762368 _____ (The Chromium Authors) [Bestand niet getekend] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll ==================== Alternate Data Streams (gefilterd) ======== (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\Users\RandySp\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118] ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) IE trusted site: HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\...\sharepoint.com -> hxxps://terumoemea-files.sharepoint.com ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 14:25 - 2020-03-17 10:50 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Acer\abFiles\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3669440298-1739476700-4279047772-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 195.130.131.3 - 195.130.130.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is uitgeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{53A20720-D0D8-450E-AF85-AA3490E8748D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1D92A3D7-3BEE-4903-A576-935F3F1B0723}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C182C936-5BF9-4D0D-9B89-6FD1D36DFFF3}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B5D20737-96DF-4FF2-91FC-BBCEC35F0EC7}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{36080393-B25D-425A-8B55-2C71D70FF719}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B9A1049B-A24D-43BA-813F-03536AEF6988}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3F2B4CE4-5E81-44C3-A30E-616F502C0C42}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8CB16639-70D9-4352-9F97-373041C49BC4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2FC99D94-4C13-44B3-B06C-B5C4711E7CBC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{02791B9E-5461-4A7B-B69D-A4D98A4BDB22}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{56B7621F-E116-4242-887A-018C268E602B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{1B923DE2-752D-43F8-B517-F168FC9EDEC4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{917BBCDD-AEF2-46BF-BDAF-DB787A6A8BEC}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{DC54D452-A70F-475C-A125-88F67928167E}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{86AE888E-A20B-4D4B-B035-FB1B3ADE14BF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{28B4019C-B1B2-4A57-8655-B255C0280244}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Play.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{E97A8E61-0923-477D-BA57-0708B56FC4A4}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{155FA803-24A4-4375-90F2-4B8D237FAEED}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{3E65D782-3D50-4F52-9963-D8B0689CD4FD}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{DBFC1100-B081-41FB-9F15-80A10F007961}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{8F8BC7A3-B6BC-454A-80A5-CBA7C98A695D}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{3B26BD6F-8175-4711-907C-F03CD8C8E85D}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{D2A7F6AE-F0F2-43D7-9A46-9DEF65D1E081}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{E6915197-69AA-4819-8D10-E86A08BAAA27}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{3783A401-0638-4988-840E-336D68A89CD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{891C28D8-BB56-4F60-ABDD-31B52714CF4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E0A6C34C-DA72-45CF-845A-CEBD35933875}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{82E61250-EBD7-4EC9-873D-65B4147761A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E7DF094A-0A31-4E97-BEBB-B492C0E4288C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{936917E7-2441-4E1B-B06F-BEFA59DAE80B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{4BD7F41E-E70C-4313-BFC3-4BCE132D6D92}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{C6D558DB-BFEA-43DD-9099-807AEA4DA051}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{A064F95D-AFC9-491E-9ED1-554348A1BEB3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{B3520583-6F95-4C3E-B968-12B06EEE41E4}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{7EABEFA4-F95B-4AEB-96E9-3F70B813426D}] => (Allow) C:\Windows\Prey\versions\1.6.2\bin\node.exe (Node.js Foundation -> Node.js) FirewallRules: [{138EB807-E1E9-4698-9250-1033BA73C245}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3859B591-BF53-4A5D-B65A-4CB0B8227CF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7151EF2C-F0F2-41B5-9944-ACC78ECF6029}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{E6595D43-7012-4327-8A54-F0802DEB5D13}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{325C7600-ABB5-46F9-8649-36FE0676D093}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{65217373-5F32-414C-A7F5-8F3038D03568}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= AANDACHT: Systeemherstel is uitgeschakeld (Total:117.6 GB) (Free:10.08 GB) (9%) ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (03/17/2020 10:50:32 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Users\RandySp\AppData\Local\chromium\Application\chrome.exe' niet maken. Kan afhankelijke assembly 58.0.3014.0,language="*",type="win32",version="58.0.3014.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (03/17/2020 10:02:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: wpxsvc.exe, versie: 1.0.0.0, tijdstempel: 0x00000000 Naam van module met fout: ntdll.dll, versie: 10.0.17134.799, tijdstempel: 0x636bcb43 Uitzonderingscode: 0xc00000fd Foutmarge: 0x0002d825 Id van proces met fout: 0x15ecc Starttijd van toepassing met fout: 0x01d5fb811d3885f2 Pad naar toepassing met fout: C:\Windows\Prey\wpxsvc.exe Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll Rapport-id: 414d4e23-c433-493b-abfb-54f5fbd8950a Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (03/17/2020 09:14:55 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Users\RandySp\AppData\Local\chromium\Application\chrome.exe' niet maken. Kan afhankelijke assembly 58.0.3014.0,language="*",type="win32",version="58.0.3014.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (03/16/2020 05:16:51 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: RANDY-PC) Description: brave hendrikbrave hendrik-2147467263 Error: (03/16/2020 05:04:36 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Kan activeringscontext voor 'C:\Users\RandySp\AppData\Local\chromium\Application\chrome.exe' niet maken. Kan afhankelijke assembly 58.0.3014.0,language="*",type="win32",version="58.0.3014.0" niet vinden. Gebruik sxstrace.exe voor een gedetailleerde diagnose. Error: (03/16/2020 11:52:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: wpxsvc.exe, versie: 1.0.0.0, tijdstempel: 0x00000000 Naam van module met fout: ntdll.dll, versie: 10.0.17134.799, tijdstempel: 0x636bcb43 Uitzonderingscode: 0xc00000fd Foutmarge: 0x0002d825 Id van proces met fout: 0x33934 Starttijd van toepassing met fout: 0x01d5faf6adbf1f84 Pad naar toepassing met fout: C:\Windows\Prey\wpxsvc.exe Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll Rapport-id: f66bd7bf-444a-450b-b071-67f36296de98 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (03/16/2020 11:14:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: svchost.exe_MapsBroker, versie: 10.0.17134.556, tijdstempel: 0xf23cada5 Naam van module met fout: unknown, versie: 0.0.0.0, tijdstempel: 0x00000000 Uitzonderingscode: 0x8400000e Foutmarge: 0x0000000000000000 Id van proces met fout: 0x1c894 Starttijd van toepassing met fout: 0x01d5fb7b8707705b Pad naar toepassing met fout: C:\WINDOWS\System32\svchost.exe Pad naar module met fout: unknown Rapport-id: e96c114b-5953-45b0-9e88-9249d499877e Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (03/16/2020 11:12:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: Teams.exe, versie: 1.3.0.3564, tijdstempel: 0x5e1faf43 Naam van module met fout: nvoglv64.dll_unloaded, versie: 21.21.13.7654, tijdstempel: 0x5864fb9b Uitzonderingscode: 0xc0000005 Foutmarge: 0x0000000000ba0ef3 Id van proces met fout: 0x24724 Starttijd van toepassing met fout: 0x01d5fb7b59d1d6ba Pad naar toepassing met fout: C:\Users\RandySp\AppData\Local\Microsoft\Teams\current\Teams.exe Pad naar module met fout: nvoglv64.dll Rapport-id: 64de70a0-4e07-4c1a-a8e8-ae07760cb863 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Systeemfouten: ============= Error: (03/17/2020 10:50:49 AM) (Source: DCOM) (EventID: 10016) (User: RANDY-PC) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker Randy-pc\RandySp SID (S-1-5-21-3669440298-1739476700-4279047772-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (03/17/2020 10:50:43 AM) (Source: DCOM) (EventID: 10016) (User: RANDY-PC) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Activeren niet verleend aan Lokaal voor de COM-servertoepassing met CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} en APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} aan de gebruiker Randy-pc\RandySp SID (S-1-5-21-3669440298-1739476700-4279047772-1001) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (03/17/2020 10:50:32 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: In de machtigingsinstellingen toepassingsspecifiek wordt de machtiging Starten niet verleend aan Lokaal voor de COM-servertoepassing met CLSID Windows.SecurityCenter.WscBrokerManager en APPID Niet beschikbaar aan de gebruiker NT AUTHORITY\SYSTEM SID (S-1-5-18) met het adres LocalHost (via LRPC) die wordt uitgevoerd in de toepassingscontainer Niet beschikbaar SID (Niet beschikbaar). Deze beveiligingsmachtiging kan worden gewijzigd met het beheerprogramma van Component Services. Error: (03/17/2020 10:03:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Cron Service-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (03/17/2020 09:29:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De eapihdrv-service kan vanwege de volgende fout niet worden gestart: Het laden van het stuurprogramma wordt geblokkeerd Error: (03/17/2020 09:29:05 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\RandySp\AppData\Local\Temp\ehdrv.sys Error: (03/17/2020 09:29:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De eapihdrv-service kan vanwege de volgende fout niet worden gestart: Het laden van het stuurprogramma wordt geblokkeerd Error: (03/17/2020 09:29:04 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\RandySp\AppData\Local\Temp\ehdrv.sys Windows Defender: =================================== Date: 2018-08-02 22:32:22.860 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {887C00D4-9B40-4DF1-A42B-114D8529F35D} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-07-29 22:23:52.010 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {2411A7C7-8BE6-45E3-8D36-4B4B883A55D1} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-07-29 20:55:39.733 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {05EF27D5-DC5B-4888-9483-D6402B2B2971} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-07-29 19:45:17.712 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {CE43173F-8257-4437-BB12-CE90609ECB96} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2018-07-29 18:20:28.883 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {5340A84A-DAFF-4044-8ED3-CF4693E38AD1} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM CodeIntegrity: =================================== Date: 2020-03-17 11:21:48.762 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:21:48.741 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:21:24.452 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:21:24.405 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:20:41.399 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:20:41.274 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:18:48.743 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2020-03-17 11:18:48.680 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\snxhk.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== BIOS: Insyde Corp. V1.07 09/05/2014 Moederbord: Acer Aspire VN7-791 Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz Percentage geheugen in gebruik: 48% Totaal fysiek RAM-geheugen: 12211.27 MB Beschikbaar fysiek RAM-geheugen: 6311.42 MB Totaal Virtueel geheugen: 14067.27 MB Beschikbaar Virtueel geheugen: 7925.79 MB ==================== Schijven ================================ Drive c: (Acer) (Fixed) (Total:117.6 GB) (Free:10.23 GB) NTFS Drive d: (DATA) (Fixed) (Total:914.65 GB) (Free:753.72 GB) NTFS \\?\Volume{15fafc91-4246-46a3-aa1f-a124c397cddd}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.29 GB) NTFS \\?\Volume{f6fdbdb4-7ae3-42f7-a227-3fcdd6d57b6e}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS \\?\Volume{9bf222b4-d9a3-4575-b78b-35d91ec25b22}\ (Push Button Reset) (Fixed) (Total:16.87 GB) (Free:2.14 GB) NTFS \\?\Volume{606591fb-2761-4be9-87d2-8cba9b9235af}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: B4874E0E) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: B4874E1F) Partition: GPT. ==================== Einde van Addition.txt =======================