Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 08-03-2020 Gestart door Dave (21-03-2020 09:26:39) Gestart vanaf D:\downloads Windows 10 Home Versie 1903 18362.720 (X64) (2019-10-01 10:25:36) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2648919848-3834913178-3553055256-500 - Administrator - Disabled) Dave (S-1-5-21-2648919848-3834913178-3553055256-1002 - Administrator - Enabled) => C:\Users\Dave DefaultAccount (S-1-5-21-2648919848-3834913178-3553055256-503 - Limited - Disabled) Gast (S-1-5-21-2648919848-3834913178-3553055256-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2648919848-3834913178-3553055256-504 - Limited - Disabled) ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-2648919848-3834913178-3553055256-1002\...\uTorrent) (Version: 3.5.5.45608 - BitTorrent Inc.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.1.0.407 - Adobe Systems Incorporated) Belgium e-ID middleware 4.4.4 (build 3838) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73838}) (Version: 4.4.3838 - Belgian Government) Belgium e-ID viewer 4.4.12 (build 4000) (HKLM-x32\...\{F3DC7F06-92FF-4C98-87F5-72C0B7864000}) (Version: 4.4.4000 - Belgian Government) BrLauncher (HKLM-x32\...\{C04DCB6D-02A2-41AD-AA79-2644CEB26445}) (Version: 2.0.17.0 - Brother Industries Ltd.) Hidden BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden Brother Printer Driver (HKLM-x32\...\{F423BC73-694E-4E00-9370-32E703301F14}) (Version: 1.5.0.0 - Brother Industries Ltd.) Hidden BrSupportTools (HKLM-x32\...\{E1B7CE6D-A4F9-4C9B-8FAB-9178CF47FDED}) (Version: 1.0.27.0 - Brother Industries Ltd.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform) Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft) Google Chrome (HKLM\...\{50ADB1A8-7D22-3FA4-9F99-AD149455FE09}) (Version: 80.0.3987.149 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot) K-Lite Codec Pack 15.1.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.1.6 - KLCP) Kodi (HKU\S-1-5-21-2648919848-3834913178-3553055256-1002\...\Kodi) (Version: - XBMC Foundation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.12527.20278 - Microsoft Corporation) Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.12527.20278 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2648919848-3834913178-3553055256-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Mozilla Firefox 74.0 (x64 nl) (HKLM\...\Mozilla Firefox 74.0 (x64 nl)) (Version: 74.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.1.1 - Mozilla) Mozilla Thunderbird 68.6.0 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 68.6.0 (x86 nl)) (Version: 68.6.0 - Mozilla) NetworkRepairTool (HKLM-x32\...\{947DE453-69FD-4CF6-A682-04D1308C79AF}) (Version: 1.2.15.0 - Brother Industries, Ltd.) Hidden NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20242 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden paint.net (HKLM\...\{39136CF7-E6F5-4DE0-9AB6-EFB45F464590}) (Version: 4.2.4 - dotPDN LLC) Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.) SnailDriver 2 Lite version 2.1.2.0 (HKLM-x32\...\{3189DA22-4E71-4794-9F3D-39A3DE0062DE}_is1) (Version: 2.1.2.0 - Snailsuite) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) SPEELet (HKLM-x32\...\{E5900BAE-52A8-4152-87F6-FD1E0A9F61FB}) (Version: 3.4.1952.40010 - Die Keure) StatusMonitor (HKLM-x32\...\{B8C27558-33E8-46D3-B965-5937285234CD}) (Version: 1.22.25.0 - Brother Industries, Ltd.) Hidden TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.1.3937 - TeamViewer) TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector) UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-10-21] (Adobe Systems Incorporated) Adobe XD -> C:\Program Files\WindowsApps\Adobe.CC.XD_23.1.32.2_x64__adky2gkssdxte [2019-10-21] (Adobe Systems Incorporated) Arduino IDE -> C:\Program Files\WindowsApps\ArduinoLLC.ArduinoIDE_1.8.33.0_x86__mdqgnx93n4wtt [2020-02-17] (Arduino LLC) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.5.9.0_x86__kgqvnymyfvs32 [2020-02-23] (king.com) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.33.4.0_x86__kgqvnymyfvs32 [2020-03-19] (king.com) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-21] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-03-03] (Microsoft Studios) [MS Ad] MSN weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2020-03-08] (Microsoft Corporation) [MS Ad] Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-12-17] (Adobe Systems Incorporated) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0 [2020-03-14] (Spotify AB) [Startup Task] ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-2648919848-3834913178-3553055256-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0 CustomCLSID: HKU\S-1-5-21-2648919848-3834913178-3553055256-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-05460C9DB9DC} -> [Creative Cloud Files] => C:\Users\Dave\Creative Cloud Files [2019-10-21 20:32] CustomCLSID: HKU\S-1-5-21-2648919848-3834913178-3553055256-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> ) ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> ) ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> ) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> ) ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> ) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== ==================== Geladen Modules (gefilterd) ============= 2009-02-27 16:38 - 2009-02-27 16:38 - 000139264 _____ () [Bestand niet getekend] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2018-12-07 11:17 - 2018-12-07 11:17 - 000521216 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\BrMonitor.dll 2018-11-14 13:28 - 2018-11-14 13:28 - 000180224 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\BroSNMP.dll 2018-12-07 11:18 - 2018-12-07 11:18 - 000208896 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2018-12-07 11:18 - 2018-12-07 11:18 - 001720832 _____ () [Bestand niet getekend] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2018-07-15 12:15 - 2018-07-15 12:15 - 000885560 _____ (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] C:\Program Files\Classic Shell\ClassicExplorer64.dll 2018-07-15 12:15 - 2018-07-15 12:15 - 003664696 _____ (Ivaylo Beltchev -> IvoSoft) [Bestand niet getekend] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll ==================== Alternate Data Streams (gefilterd) ======== ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer vertrouwde/beperkte toegang ========== ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2648919848-3834913178-3553055256-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Dave\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\20190807_192859.jpg DNS Servers: 195.130.131.4 - 195.130.130.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is uitgeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{258A6575-E33F-49DD-B551-B1A1D3BA842F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6AC817B5-7FB2-4981-B7BB-97AF27E30426}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{13B068EB-7ABF-4944-A88D-EA66E5DE61C8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{74DD73BB-C031-46D6-B1AB-3F90FA6513BF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{73476873-8265-487A-8D37-565BB95DD078}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BDD681C7-2627-49F2-8BD2-0EC65A189627}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{A74FD06C-9EE1-4A8D-8B1A-9E0E73150C6E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe Geen bestand FirewallRules: [{B4A9F027-F544-4AB7-9F02-7DC615372408}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe Geen bestand FirewallRules: [{A1C5E2D2-73DB-4EC0-865D-12BDAB3B7F04}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe Geen bestand FirewallRules: [{E722AF7D-0BB8-4317-9588-8A73370BED64}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe Geen bestand FirewallRules: [{59F4B38A-2496-4D1E-89E6-689C6B906599}] => (Allow) C:\Users\Dave\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{5755BC39-3DE1-4F7E-9036-410119B4868F}] => (Allow) C:\Users\Dave\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{1B337585-09B7-4E65-ACF3-13963C50DC77}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2733F217-65B4-4017-9CE3-B76AB2C050FE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4AE5A09F-EFA7-46E7-98BD-337A90090C02}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B3517654-74A5-482F-AF50-04C64BB3EE6A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{82200B04-496D-4838-A18A-102A141CE5B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{82AF829C-47C2-4973-B0E4-09E4E09E2CBB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FE3250E8-7FCF-4153-939A-E79F5AE44FB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B5A8450C-9C1B-4A19-94E4-15A6D909A2DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BD273DE1-7BE0-4B97-8329-735B2A9D7138}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1F3C3CDD-B2AD-4D93-9398-EE5DD7DA48B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FE2B938D-4DF2-430C-B684-3AE7A652BCE6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{46C76B41-71BE-468E-8E6D-075F28FF00A6}] => (Allow) C:\Users\Dave\AppData\Local\Programs\Opera\64.0.3417.83\opera.exe Geen bestand FirewallRules: [{49DD10AA-CE3D-47E4-BCC7-640145B7A78A}] => (Allow) C:\Users\Dave\AppData\Local\Programs\Opera\64.0.3417.92\opera.exe Geen bestand FirewallRules: [TCP Query User{7D8B0E5B-1A8C-47F4-B8FD-F71773E0640D}C:\program files\windowsapps\arduinollc.arduinoide_1.8.21.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.21.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe Geen bestand FirewallRules: [UDP Query User{A8D0C0AD-CAA4-4CAC-8B14-56D6896B9EF3}C:\program files\windowsapps\arduinollc.arduinoide_1.8.21.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe] => (Allow) C:\program files\windowsapps\arduinollc.arduinoide_1.8.21.0_x86__mdqgnx93n4wtt\java\bin\javaw.exe Geen bestand FirewallRules: [{E466F17C-5F19-4633-830D-D076BEA3983A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{DFBDCC0E-EAC1-4E67-A080-CA3039854731}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{3B83270F-68C9-4D2A-8E72-0B1735F4022E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{8ED90EBD-FF5C-41EA-8DCE-F576D2EA53AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{86848FF3-0608-4D59-9818-2AD1101E4A68}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0DDAB379-CCCE-4393-BE29-2CA17A094AAF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C91BC5E1-8991-47B5-8977-EED49B4F3FF1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C02EF820-22DB-48BC-ADD6-E8139201BA15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{38392F79-02CF-42F2-9FC9-BBCD74470CED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E40D242F-ECF4-4B44-8BE2-C2F663437BFE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{734A66B1-75AB-4310-BA9D-D0106226EF7B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1E76E4CD-22CF-4118-AF6B-F59E6BD00ADB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.128.721.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2A21DCBA-1EFE-4570-8FB3-D37608512ECB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Herstelpunten ========================= 14-03-2020 10:01:17 Windows Update 20-03-2020 09:37:35 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (03/20/2020 11:27:27 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (03/20/2020 11:27:27 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (03/19/2020 11:33:23 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (03/16/2020 09:25:09 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (03/16/2020 09:25:09 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (03/14/2020 10:19:08 PM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: MTDLL BrtMTDLL: [2020/03/14 22:19:08.978]: [00012188]: Error GetLifePageCountEnable Send ( ErrCode == 5 ) Error: (03/14/2020 10:19:06 PM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: MTDLL BrtMTDLL: [2020/03/14 22:19:06.344]: [00012188]: Error GetInkSupplyType Send ( ErrCode == 5 ) Error: (03/14/2020 09:02:16 PM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: MTDLL BrtMTDLL: [2020/03/14 21:02:16.042]: [00012188]: Error GetLifePageCountEnable Send ( ErrCode == 5 ) Systeemfouten: ============= Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De NVIDIA LocalSystem Container-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 6000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De BrYNSvc-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Klik-en-klaar-service van Microsoft Office-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 0 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Adobe Genuine Software Integrity Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Adobe Genuine Monitor Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De AdobeUpdateService-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: De Adobe Acrobat Update Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error: (03/20/2020 11:38:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De NVIDIA Display Container LS-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 1000 milliseconden worden uitgevoerd: Service opnieuw starten. Windows Defender: =================================== Date: 2020-03-18 10:49:58.636 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {CB9FB9D4-2C98-4DD5-A819-8C33C60F3300} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2020-03-09 08:53:30.475 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {67D4F20B-CF2A-441C-986A-96D6C79294E7} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2020-03-08 20:01:20.032 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {1346E015-385C-48A7-BD7B-F15521625C9C} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2020-03-07 12:23:41.084 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {B827E9B0-45AC-4569-B6E3-02B0F1D267C0} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2020-03-07 12:16:22.846 Description: Scan van Windows Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {35B3CD19-27A8-468E-AAB7-A5ED943E7453} Type scan: Antimalware Scanparameters: Snelle scan Gebruiker: NT AUTHORITY\SYSTEM Date: 2020-03-14 10:06:51.168 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.311.1117.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16800.2 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2020-02-12 17:18:09.311 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.309.810.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16700.3 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. Date: 2020-01-18 09:30:35.235 Description: Windows Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.307.2525.0 Updatebron: Microsoft-updateserver Type beveiligingsinformatie: AntiVirus Updatetype: Volledig Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.16600.7 Foutcode: 0x80240016 Foutbeschrijving: Er is tijdens het zoeken naar updates een onverwacht probleem opgetreden. Raadpleeg Help en ondersteuning voor meer informatie over het installeren van updates en het oplossen van problemen. CodeIntegrity: =================================== Date: 2019-11-11 17:32:12.739 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:32:12.738 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:32:11.302 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:32:11.301 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:32:09.710 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:32:09.709 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:26:26.617 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-11-11 17:26:26.615 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. 1704 06/08/2011 Moederbord: ASUSTeK Computer INC. P8P67 Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz Percentage geheugen in gebruik: 58% Totaal fysiek RAM-geheugen: 8165.41 MB Beschikbaar fysiek RAM-geheugen: 3356.99 MB Totaal Virtueel geheugen: 9445.41 MB Beschikbaar Virtueel geheugen: 4102.45 MB ==================== Schijven ================================ Drive c: () (Fixed) (Total:465.19 GB) (Free:418.5 GB) NTFS Drive d: () (Fixed) (Total:931.51 GB) (Free:708.7 GB) NTFS Drive e: (SONY_DVD_RECORDER_VOLUME) (CDROM) (Total:4.32 GB) (Free:0 GB) UDF \\?\Volume{a927daf8-0000-0000-0000-100000000000}\ (Door systeem gereserveerd) (Fixed) (Total:0.57 GB) (Free:0.14 GB) NTFS ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: A927DAF8) Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 4EAFAAC2) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Einde van Addition.txt =======================