Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 04-08-2022 Gestart door wilfr (10-08-2022 15:02:04) Gestart vanaf C:\Users\wilfr\Downloads Microsoft Windows 10 Home Versie 21H2 19044.1766 (X64) (2021-01-13 21:20:50) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) Administrator (S-1-5-21-1228691392-3513963491-2876946990-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1228691392-3513963491-2876946990-503 - Limited - Disabled) Gast (S-1-5-21-1228691392-3513963491-2876946990-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1228691392-3513963491-2876946990-504 - Limited - Disabled) wilfr (S-1-5-21-1228691392-3513963491-2876946990-1003 - Administrator - Enabled) => C:\Users\wilfr ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23} AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8} FW: Kaspersky Internet Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58} FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKLM-x32\...\uTorrent) (Version: 1.6 - ) µTorrent (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\uTorrent) (Version: 3.5.5.46348 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden 7-Zip 22.00 (x64) (HKLM\...\7-Zip) (Version: 22.00 - Igor Pavlov) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.0.468 - Adobe Inc.) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Inc.) Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 15.0.1 - IObit) Any Video Converter Ultimate 5.8.0 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com) Belgium e-ID middleware 5.0.17 (build 5498) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A75498}) (Version: 5.0.5498 - Belgian Government) CCleaner (HKLM\...\CCleaner) (Version: 6.02 - Piriform) Clean Disk Free 2.6 (HKLM-x32\...\Clean Disk Free 2.6_is1) (Version: 2.6 - Orderprog) Connective Signing Plugins (HKLM-x32\...\{4E3E9C50-EC82-44A8-A830-18D6916CB81B}) (Version: 2.0.8 - Connective) Content Transfer (HKLM-x32\...\{CFADE4AF-C0CF-4A04-A776-741318F1658F}) (Version: 1.3.0.23190 - Sony Corporation) CyberLink Home Cinema 10 (HKLM-x32\...\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.3025 - CyberLink Corp.) Hidden CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) CyberLink LabelPrint 2.5 (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.6603 - CyberLink Corp.) Hidden CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6602 - CyberLink Corp.) Hidden CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.5311 - CyberLink Corp.) Hidden CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4118.0 - CyberLink Corp.) Hidden CyberLink PowerDVD 12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5619.05 - CyberLink Corp.) Hidden CyberLink PowerDVD Copy 1.5 (HKLM-x32\...\{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.0.3725a - CyberLink Corp.) Hidden Data Lifeguard Diagnostic version 1.37 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) Duplicate File Finder (HKLM-x32\...\{E0EA718E-AAF4-4C78-AFB3-8A9C4D5ECECF}}_is1) (Version: 8.1.0.1 - Ashisoft) Duplicate Music Finder Free 2.7 (HKLM-x32\...\Duplicate Music Finder Free 2.7_is1) (Version: 2.7 - Orderprog) DVDFab (x64) 10.0.8.7 (14/03/2018) (HKLM-x32\...\DVDFab 10(x64)) (Version: 10.0.8.7 - Fengtao Software Inc.) Facebook Gameroom 1.26.7732.32363 (HKLM-x32\...\{6A6FE9AC-F3C9-41C6-8A6B-F377E8C4E9A5}) (Version: 1.26.7732.32363 - Facebook) FormatFactory 5.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.7.5.0 - Free Time) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1159 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{4DA476FC-AFA5-49C3-A419-688153FC2D01}) (Version: 11.0.0.1159 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{8911FD78-14CF-4B69-A772-6204D5E86928}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME UninstallLegacy (HKLM\...\{9B445C3B-9E6D-47E6-9A62-A693B6A224B0}) (Version: 1.0.1.0 - Intel Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Kaspersky Password Manager (HKLM-x32\...\{11017E8F-9A83-47E2-8C6E-316A34AD4F07}) (Version: 10.0.0.592 - Kaspersky Lab) Hidden Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{11017E8F-9A83-47E2-8C6E-316A34AD4F07}) (Version: 10.0.0.592 - Kaspersky Lab) Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) K-Lite Codec Pack 13.6.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) Luminar 3 (HKLM\...\Luminar 3) (Version: 3.2.0.5246 - Skylum) Microsoft .NET Core Host - 3.1.27 (x64) (HKLM\...\{0A0DA9E9-6CC6-47F7-8C80-FA9259D593B0}) (Version: 24.108.31415 - Microsoft Corporation) Hidden Microsoft .NET Core Host FX Resolver - 3.1.27 (x64) (HKLM\...\{5A2A3E2E-D357-4F22-B5CF-31733FDAF030}) (Version: 24.108.31415 - Microsoft Corporation) Hidden Microsoft .NET Core Runtime - 3.1.27 (x64) (HKLM\...\{FF9D1913-291F-4A48-BDBB-5BEE8BF394B4}) (Version: 24.108.31415 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 103.0.1264.71 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 103.0.1264.71 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Ondersteunings- en herstelassistent (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\a1a734b8150c1d83) (Version: 17.0.8777.3 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.25.28508 (HKLM\...\{7D0B74C2-C3F8-4AF1-940F-CD79AB4B2DCE}) (Version: 14.25.28508 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.25.28508 (HKLM\...\{EEA66967-97E2-4561-A999-5C22E3CDE428}) (Version: 14.25.28508 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29913 (HKLM-x32\...\{572DCD10-CF2E-43D1-8151-8BD9AC9086D0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29913 (HKLM-x32\...\{6236EBBD-F50F-40B3-B819-8DB0C608308C}) (Version: 14.28.29913 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 3.1.27 (x64) (HKLM\...\{0116DF03-EA5F-41AE-90DF-7B8D82A880A4}) (Version: 24.108.31415 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 3.1.27 (x64) (HKLM-x32\...\{3b79c044-e24c-45eb-b710-03d503f2e594}) (Version: 3.1.27.31415 - Microsoft Corporation) Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft) Movavi Photo Editor 6 (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\Movavi Photo Editor 6) (Version: 6.3.0 - Movavi) Mozilla Firefox (x64 nl) (HKLM\...\Mozilla Firefox 103.0.1 (x64 nl)) (Version: 103.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0 - Mozilla) NetflixGo - NetflixGo for Desktop (HKLM-x32\...\NetflixGo) (Version: 16.2010.1rhnx - NetflixGo) NWZ-E450 WALKMAN Guide (HKLM-x32\...\{0A6C2811-AD29-473F-8086-F0B401276DEC}) (Version: 2.1.0.17210 - Sony Corporation) PrivaZer (HKLM-x32\...\PrivaZer) (Version: 4.0.23.0 - Goversoft LLC) PS (HKLM\...\{E94B7DF7-1D44-4A8A-A79F-8F27BBE71245}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.876.867.092115 - REALTEK Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8899.1 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0277 - REALTEK Semiconductor Corp.) Recovery Toolbox for Outlook Password 1.5 (HKLM-x32\...\Recovery Toolbox for Outlook Password_is1) (Version: - File Master LLC) Similarity 64-bit 2.5.1 (HKLM\...\{3D3C412A-8521-4C5C-83F3-94CC8223C309}) (Version: 2.5.2415 - GAR Software) TomTom MyDrive Connect 4.2.13.4348 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.13.4348 - TomTom) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) WD Desktop App 2.1.0.299 (HKLM-x32\...\{f79d30ca-d71c-4aaa-b9b0-b26833cdac51}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden WD Desktop App 2.1.0.299 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.299 - Western Digital Corporation) Hidden WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden WhatsApp (HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\WhatsApp) (Version: 2.2039.9 - WhatsApp) Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA) Windows Pc-statuscontrole (HKLM\...\{4C95130F-4638-4B19-B1B4-DA7CB78A2911}) (Version: 3.6.2204.08001 - Microsoft Corporation) YouTube Song Downloader 2020 (HKLM-x32\...\AbAppId-55_is1) (Version: 20.17 - Abelssoft) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-11] (Adobe Systems Incorporated) Adobe Photoshop Express: afbeeldingseditor, aanpassingen, filters, effecten, randen -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.6.385.0_x64__ynb6jyjzte8ga [2022-03-23] (Adobe Inc.) Any DVD -> C:\Program Files\WindowsApps\15191PeakPlayer.50533F9B98293_3.2.8.0_x64__y5c4dfz5b21fm [2022-06-30] (Any DVD & Office App) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.21.71.0_x64__kgqvnymyfvs32 [2022-07-23] (king.com) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.223.300.0_x64__kgqvnymyfvs32 [2022-07-29] (king.com) Cool File Viewer -> C:\Program Files\WindowsApps\20815shootingapp.AirFileViewer_1.4.14.0_x86__xcg28tkrsnqww [2021-10-07] (Cool File Viewer) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.14.67.0_x64__rz1tebttyb220 [2022-07-09] (Dolby Laboratories) Duo video converter -> C:\Program Files\WindowsApps\IOForth.VideoConverterMate_1.0.8.0_x64__pxs7cjhtcq1xt [2021-11-24] (IOForth) Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-09-30] (Facebook Inc) Foto's-invoegtoepassing -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-09-30] (Microsoft Corporation) GPXTracker -> C:\Program Files\WindowsApps\25100LocPELLETAN.GPXTracker_0.9.2.0_x64__cava6kcq6fv62 [2021-09-23] (Loïc PELLETAN) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-07-18] (HP Inc.) Media-engine-invoegtoepassing voor Foto's -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1560.21.216.0_x64__8xx8rvfyw5nnt [2022-07-22] (Meta) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-13] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-30] (Microsoft Studios) [MS Ad] ==================== Aangepaste CLSID (gefilterd): ============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{4A93A12D-FD47-45E0-9513-BABEDDC6C494}\InprocServer32 -> C:\Program Files\Easy Duplicate Finder 7\EasyDuplicateFinder.exe => Geen bestand CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\wilfr\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\wilfr\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{BFBE0943-74C5-40E0-9E80-0B808109E95D}\InprocServer32 -> C:\Users\wilfr\AppData\Local\Microsoft\EdgeUpdate\1.3.163.19\psuser_64.dll => Geen bestand CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{D1CE12B0-2529-4B24-BE8E-189735EA0DC1}\InprocServer32 -> C:\Users\wilfr\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) CustomCLSID: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003_Classes\CLSID\{F09690BD-582D-4439-B6ED-5C2545D2F424}\InprocServer32 -> C:\WINDOWS\system32\kernel32.dll (Microsoft Windows -> Microsoft Corporation) SSODL: WDFSMountNotificator-wdfsconnect2017 - {CE51E5E2-EB2A-4226-846C-325A4D4C8943} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Bestand niet getekend] SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {CE51E5E2-EB2A-4226-846C-325A4D4C8943} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellServiceObjects: Virtual Storage Mount Notification -> {CE51E5E2-EB2A-4226-846C-325A4D4C8943} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellServiceObjects-x32: Virtual Storage Mount Notification -> {CE51E5E2-EB2A-4226-846C-325A4D4C8943} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Bestand niet getekend] ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2014-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Bestand niet getekend] ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2022-02-15] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers1: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-05-26] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2022-02-15] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Bestand niet getekend] ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2022-02-15] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ContextMenuHandlers4: [WDDesktopContextMenu] -> {d95497fd-7066-3d1c-8ea7-96649264b38f} => C:\Program Files\WD Desktop App\kda.DLL [2020-02-20] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Bestand niet getekend] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-28] (Adobe Inc. -> ) ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2022-02-15] (AO Kaspersky Lab -> AO Kaspersky Lab) ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-05-24] (Goversoft LLC -> ) ==================== Codecs (gefilterd) ==================== ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) Shortcut: C:\Users\wilfr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\µTorrent\µTorrent Homepage.lnk -> hxxp://www.utorrent.com Shortcut: C:\Users\wilfr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 10 (x64)\DVDFab (x64) Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab10&p=x64&v=10.0.8. ==================== Geladen Modules (gefilterd) ============= 2018-10-15 12:01 - 2018-10-15 12:01 - 000013312 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\libEGL.DLL 2018-10-15 12:01 - 2018-10-15 12:01 - 001950720 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\libGLESv2.dll 2014-09-11 13:46 - 2014-09-11 13:46 - 000218112 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll 2022-03-14 10:58 - 2022-03-14 10:58 - 000132096 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\quazip.dll 2022-03-14 10:58 - 2022-03-14 10:58 - 000074240 _____ () [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\zlib1.dll 2020-08-04 11:46 - 2020-08-04 11:46 - 000341504 _____ (Free Time) [Bestand niet getekend] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) [Bestand niet getekend] c:\windows\system32\hpzinw12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) [Bestand niet getekend] c:\windows\system32\hpzipm12.dll 2020-02-06 21:33 - 2022-06-15 15:00 - 000094720 _____ (Igor Pavlov) [Bestand niet getekend] C:\Program Files\7-Zip\7-zip.dll 2021-01-13 23:12 - 2021-01-13 23:12 - 001093120 _____ (Microsoft Corporation) [Bestand niet getekend] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL 2018-03-27 22:33 - 2018-03-27 22:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll 2018-03-27 22:33 - 2018-03-27 22:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll 2018-10-15 12:11 - 2018-10-15 12:11 - 000038912 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000026112 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000033280 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll 2018-10-15 12:10 - 2018-10-15 12:10 - 000027648 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 000243712 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000021504 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000020992 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000327680 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll 2018-10-16 12:38 - 2018-10-16 12:38 - 000019968 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll 2018-10-16 12:39 - 2018-10-16 12:39 - 000400896 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll 2018-10-15 12:12 - 2018-10-15 12:12 - 001096704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll 2022-05-02 09:34 - 2022-05-02 09:34 - 004785152 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 004970496 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll 2018-10-15 12:05 - 2018-10-15 12:05 - 000961024 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll 2018-10-16 12:31 - 2018-10-16 12:31 - 000264704 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll 2018-10-15 12:09 - 2018-10-15 12:09 - 004468224 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll 2018-10-15 12:02 - 2018-10-15 12:02 - 000150016 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\Qt5Xml.dll 2022-05-02 09:32 - 2022-05-02 09:32 - 000143360 _____ (TomTom) [Bestand niet getekend] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll ==================== Alternate Data Streams (gefilterd) ======== (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) AlternateDataStreams: C:\ProgramData:Easy$Duplicate$Finder [120] AlternateDataStreams: C:\Users\All Users:Easy$Duplicate$Finder [120] AlternateDataStreams: C:\ProgramData\Application Data:Easy$Duplicate$Finder [120] ==================== Veilige Modus (gefilterd) ================== ==================== Bestandskoppeling (gefilterd) ================= ==================== Internet Explorer (gefilterd) ========== HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.starwebsearch.com/index.php?from=3 SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f URL = SearchScopes: HKU\S-1-5-21-1228691392-3513963491-2876946990-1003 -> {2877A654-1C9F-4cb5-8438-16022B2FDD9C} URL = hxxp://www.starwebsearch.com/results.php?q={searchTerms} ==================== Hosts inhoud: ========================= (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2021-10-22 11:30 - 2022-08-10 14:55 - 000001306 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 2018-12-17 10:25 - 2019-06-07 18:37 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 192.168.137.1 DESKTOP-0GEVP4A.mshome.net # 2024 6 3 5 16 37 42 447 ==================== Andere gebieden =========================== (Momenteel is er geen automatische fix voor dit onderdeel.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\ HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "YouTube Mini" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "MP3Studio YouTube Downloader" HKU\S-1-5-21-1228691392-3513963491-2876946990-1003\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== Firewall regels (gefilterd) ================ (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{C27564A2-82F1-4C66-AF94-25E4F2DDABE3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA) FirewallRules: [{102298CF-EB33-4D11-871C-628FF63C1A40}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA) FirewallRules: [{0BE0F54F-C4EC-4B08-9927-3A19BB57175D}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{CE00EB8D-910F-4E65-A495-DDD041F9E0DD}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{523214BD-8508-419A-B424-0C5A16575157}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{21204392-1B29-4972-ADBA-66FDBB6D2F2C}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom) FirewallRules: [{7A2E779C-EF0C-43FF-B149-93FF6EF02307}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{CA8B159D-D33F-41AD-B011-61E072356022}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{6749F428-F826-4873-84E6-486EC51BE4B0}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{F608C83E-328C-447C-BD50-19CA9198AAA6}] => (Allow) C:\Users\wilfr\AppData\Roaming\uTorrent\uTorrent.exe => Geen bestand FirewallRules: [{587B1FBD-A7BD-43FA-8CFC-6B0DB0FFFFD8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0086D7DB-2174-4D46-8665-D5A266891D73}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{61C5D5AE-C6C1-4EDB-95F7-A189426E5C26}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{AF62FB7E-60CA-46D6-B283-F7D39C3CE9EA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9C1507F6-F1D2-402C-AB69-BCC559AA098F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E3AD18F3-0769-4AD9-8880-6D2761F6A1E3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{ABCD1D19-EA4A-48FD-9157-03683217ED78}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{ACD71ADC-B243-4818-8FED-C84DB2F5505C}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\103.0.1264.71\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Herstelpunten ========================= ==================== Defecte Apparaatbeheer Apparaten ============ ==================== Eventlog fouten: ======================== Applicatiefouten: ================== Error: (08/10/2022 02:54:42 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (08/10/2022 02:54:42 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (08/10/2022 02:54:42 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Fout in de Volume Shadow Copy-service: onverwachte fout bij het aanroepen van routine CoCreateInstance. hr = 0x8007045b, Systeem wordt afgesloten. . Error: (08/10/2022 02:54:42 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informatie voor de Volume Shadow Copy-service: de COM-server met CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} en de naam CEventSystem kan niet worden gestart. [0x8007045b, Systeem wordt afgesloten. ] Error: (08/10/2022 02:51:25 PM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {00000000-0000-0000-0000-000000000000}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x80010114. Error: (08/10/2022 01:45:10 PM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {00000000-0000-0000-0000-000000000000}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x80010114. Error: (08/10/2022 01:44:34 PM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {7757ADFF-D420-0135-00E4-57774B1C5387}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x800401fd. Error: (08/10/2022 01:44:34 PM) (Source: COM) (EventID: 10035) (User: ) Description: De IID {618736E0-3C3D-11CF-810C-00AA00389B71} die is geleverd door de server en de IID {00020400-0000-0000-C000-000000000046} die is aangevraagd door de client met handler-CLSID {0000001D-0000-0023-A200-00000000FD00}, komen niet overeen. De COM-standaardmarshaller kan dit probleem niet oplossen. Foutcode: 0x800401fd. Systeemfouten: ============= Error: (08/10/2022 03:01:04 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: De naam WORKGROUP :1d kan niet op de interface met het IP-adres 192.168.0.34 worden geregistreerd. De computer met het IP-adres 192.168.0.151 staat niet toe dat deze naam door deze computer wordt gebruikt. Error: (08/10/2022 02:55:54 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: De naam WORKGROUP :1d kan niet op de interface met het IP-adres 192.168.0.34 worden geregistreerd. De computer met het IP-adres 192.168.0.151 staat niet toe dat deze naam door deze computer wordt gebruikt. Error: (08/10/2022 02:55:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De LMS-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (08/10/2022 02:55:33 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY) Description: Het DLL-meldingsbestand C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter voor wachtwoorden kan niet worden geladen door de fout 126. Controleer of het pad van het DLL-meldingsbestand dat is gedefinieerd in het register (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages), verwijst naar een juist en absoluut pad (:\\.) en niet naar een relatief of ongeldig pad. Als het pad van het DLL-bestand juist is, controleert u of eventuele ondersteunende bestanden zich in dezelfde map bevinden en of het systeemaccount over leestoegang beschikt voor zowel het pad van het DLL-bestand als eventuele ondersteunende bestanden. Neem contact op met de leverancier van het DLL-meldingsbestand voor aanvullende ondersteuning. Meer informatie vindt u op de webpagina http://go.microsoft.com/fwlink/?LinkId=245898. Error: (08/10/2022 12:46:28 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070070: 2022-08 .NET Core 3.1.28 Security Update for x64 Client (KB5016987). Error: (08/10/2022 11:46:24 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070070: KB890830: Windows-programma voor het verwijderen van schadelijke software voor x64-systemen- v5.104. Error: (08/10/2022 11:28:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De LMS-service kan vanwege de volgende fout niet worden gestart: Het systeem kan het opgegeven bestand niet vinden. Error: (08/10/2022 11:28:43 AM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY) Description: Het DLL-meldingsbestand C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter voor wachtwoorden kan niet worden geladen door de fout 126. Controleer of het pad van het DLL-meldingsbestand dat is gedefinieerd in het register (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages), verwijst naar een juist en absoluut pad (:\\.) en niet naar een relatief of ongeldig pad. Als het pad van het DLL-bestand juist is, controleert u of eventuele ondersteunende bestanden zich in dezelfde map bevinden en of het systeemaccount over leestoegang beschikt voor zowel het pad van het DLL-bestand als eventuele ondersteunende bestanden. Neem contact op met de leverancier van het DLL-meldingsbestand voor aanvullende ondersteuning. Meer informatie vindt u op de webpagina http://go.microsoft.com/fwlink/?LinkId=245898. CodeIntegrity: =============== Date: 2022-08-10 14:58:01 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements. ==================== Geheugen info =========================== BIOS: American Megatrends Inc. 110EMW0X.101 11/20/2015 Moederbord: MEDION H110H4-EM Processor: Intel(R) Core(TM) i3-6100 CPU @ 3.70GHz Percentage geheugen in gebruik: 80% Totaal fysiek RAM-geheugen: 8107.52 MB Beschikbaar fysiek RAM-geheugen: 1606.87 MB Totaal Virtueel geheugen: 11947.52 MB Beschikbaar Virtueel geheugen: 4752.53 MB ==================== Schijven ================================ Drive c: (Boot) (Fixed) (Total:117.64 GB) (Free:0.04 GB) (Model: SAMSUNG MZNLF128HCHP-00000) NTFS Drive d: (Wilfried) (Fixed) (Total:1803 GB) (Free:807.57 GB) (Model: ST2000DM001-1ER164) NTFS Drive e: (Recover) (Fixed) (Total:60.02 GB) (Free:31.81 GB) (Model: ST2000DM001-1ER164) NTFS Drive f: (My Passport) (Fixed) (Total:1862.98 GB) (Free:531.48 GB) (Model: WD My Passport 259D USB Device) NTFS \\?\Volume{71d43d19-a261-4dee-8b17-ee98efa1de91}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS \\?\Volume{30404f2e-e518-4e19-82bb-5e549acca117}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partitietabel ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 119.2 GB) (Disk ID: 8F00F597) Partition: GPT. ========================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Einde van Addition.txt =======================