Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Running firewall causes configurationscreen to freeze up.


  • This topic is locked This topic is locked

#1
Crabface

Crabface

    New Member

  • Member
  • Pip
  • 7 posts

Hello,

 

I'm not sure if i posted this in the right section or if there was already a fix for this problem, but none of the posts i could find really relate to my problem.

 

I can't seem to open up my firewall. Whenever i open the config screen and try to open my firewall settings, the window will freeze up and crash. Also whenever i try to open mcafee it takes over 5 minutes to open.

 

I have reasons to assume this is caused by a virus, since yesterday i accidentally opened a wrong link while browsing some websites.

 

I have ran a full virus scan using McAfee, Malwarebytes and Dr. Web cureit and none of these programs seem to find any problems.

 

I used sfc /scannow to find any corrupt files but this did not find anything as well.

 

Also my mcafee firewall is up and running as well. (even though i assume this has nothing to do with the problem.

 

I hope someone can help me out.


  • 0

Advertisements


#2
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Hi! My name is zep516 and Welcome to Geekstogo!
I'll do the best I can to resolve your computer issue
Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions! :)

Everything gets download to the desktop and tools are "Run as administrator."

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  • 0

#3
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
I am not at home at this moment. I will post the log as soon as i am home.
  • 0

#4
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
That's fine an thank you.

Joe
  • 0

#5
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

That's fine an thank you.

Joe

 

Here are the results of the full scan

 

FRST.TXT

 

 

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 31-08-2016
Gestart door Dwayne (Beheerder) op DESKTOP-72NGU92 (31-08-2016 23:00:54)
Gestart vanaf C:\Users\dwayn\Desktop
Geladen Profielen: Dwayne (Beschikbare Profielen: Dwayne)
Platform: Windows 10 Home Versie 1511 (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
() C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.97.31.0\OverwolfBrowser.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.EXE
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.97.31.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.97.31.0\OverwolfHelper64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7167.40721.0_x64__8wekyb3d8bbwe\HxTsr.exe


==================== Register (gefilterd) ===========================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-23] (Valve Corporation)
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [Spotify Web Helper] => C:\Users\dwayn\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-07-20] (Spotify Ltd)
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [Spotify] => C:\Users\dwayn\AppData\Roaming\Spotify\Spotify.exe [6913648 2016-07-20] (Spotify Ltd)
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.)
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [247344 2016-08-14] ()
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\RunOnce: [Uninstall C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\..\Interfaces\{192b0022-dfb4-453f-b0d7-0380abd5f6aa}: [DhcpNameServer] 89.101.251.228 89.101.251.229
Tcpip\..\Interfaces\{c94f193f-f877-41e9-85a0-74f012ec6416}: [NameServer] 89.101.251.228,89.101.251.229

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-08-22] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2016-07-07] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2016-07-07] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\dwayn\AppData\Roaming\Mozilla\Firefox\Profiles\9d5wd9jp.default
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Geen bestand]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Extension: (Adblock Plus) - C:\Users\dwayn\AppData\Roaming\Mozilla\Firefox\Profiles\9d5wd9jp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-08-30]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-08-31]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-07-21] [ niet getekend]

Chrome:
=======
CHR Profile: C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Presentaties) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-20]
CHR Extension: (Google Documenten) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-20]
CHR Extension: (Google Drive) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-20]
CHR Extension: (YouTube) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-20]
CHR Extension: (Google Spreadsheets) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-20]
CHR Extension: (SiteAdvisor) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-07-21]
CHR Extension: (Offline Documenten) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-20]
CHR Extension: (AdBlock) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-25]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-20]
CHR Extension: (Gmail) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-20]
CHR Extension: (Chrome Media Router) - C:\Users\dwayn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

==================== Services (gefilterd) ========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Bestand niet getekend]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1404936 2016-08-01] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [227104 2016-08-19] (EasyAntiCheat Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-17] (Intel Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [374360 2016-07-22] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
S3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Bestand niet getekend]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [Bestand niet getekend]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-08-22] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1310448 2016-08-14] (Overwolf LTD)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-26] (Microsoft Corporation)
S2 0282331472149700mcinstcleanup; C:\WINDOWS\TEMP\028233~1.EXE -cleanup -nolog [X]

===================== Drivers (gefilterd) ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-17] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-17] (Intel Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [519976 2016-04-27] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [100136 2016-04-27] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420440 2015-05-27] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2016-08-31 23:00 - 2016-08-31 23:00 - 00019981 _____ C:\Users\dwayn\Desktop\FRST.txt
2016-08-31 23:00 - 2016-08-31 23:00 - 00000000 ____D C:\FRST
2016-08-31 22:59 - 2016-08-31 23:00 - 02397696 _____ (Farbar) C:\Users\dwayn\Desktop\FRST64.exe
2016-08-31 17:31 - 2016-08-31 17:31 - 00000000 ____D C:\Users\dwayn\AppData\Local\ElevatedDiagnostics
2016-08-31 17:12 - 2016-08-31 17:12 - 00214174 _____ C:\Users\dwayn\Desktop\WindowsFirewall.diagcab
2016-08-31 16:34 - 2016-08-31 16:34 - 00000000 ____D C:\Users\dwayn\Doctor Web
2016-08-31 16:33 - 2016-08-31 16:33 - 141434000 _____ C:\Users\dwayn\Downloads\ontwh229.exe
2016-08-31 10:22 - 2016-08-31 16:45 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-31 10:22 - 2016-08-31 10:22 - 00001177 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-08-31 10:22 - 2016-08-31 10:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-31 10:21 - 2016-08-31 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-31 10:21 - 2016-08-31 10:21 - 22851472 _____ (Malwarebytes ) C:\Users\dwayn\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-31 10:21 - 2016-08-31 10:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-31 10:21 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-31 10:21 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-31 10:21 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-30 23:12 - 2016-08-30 23:12 - 00001037 _____ C:\Users\dwayn\Documents\hosts.txt
2016-08-30 21:38 - 2016-08-30 21:38 - 00000000 ____D C:\Users\dwayn\Documents\Adobe
2016-08-30 21:20 - 2016-08-30 21:20 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-30 20:55 - 2016-08-31 16:59 - 00000000 ____D C:\ProgramData\Adobe
2016-08-30 20:54 - 2016-08-31 09:40 - 00000000 ____D C:\Users\dwayn\AppData\Local\Adobe
2016-08-30 19:34 - 2016-08-30 19:34 - 00002872 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-30 19:34 - 2016-08-30 19:34 - 00000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-30 19:34 - 2016-08-30 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-30 19:32 - 2016-08-30 19:34 - 00000000 ____D C:\Program Files\CCleaner
2016-08-30 19:31 - 2016-08-30 19:32 - 08227032 _____ (Piriform Ltd) C:\Users\dwayn\Downloads\ccsetup521(1).exe
2016-08-30 19:31 - 2016-08-30 19:32 - 00000000 ____D C:\Program Files\Defraggler
2016-08-30 19:31 - 2016-08-30 19:31 - 00001767 _____ C:\Users\Public\Desktop\Defraggler.lnk
2016-08-30 19:31 - 2016-08-30 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2016-08-30 19:29 - 2016-08-30 19:29 - 04529456 _____ (Piriform Ltd) C:\Users\dwayn\Downloads\dfsetup221.exe
2016-08-30 19:23 - 2016-08-30 19:23 - 08227032 _____ (Piriform Ltd) C:\Users\dwayn\Downloads\ccsetup521.exe
2016-08-30 19:21 - 2016-08-31 16:38 - 00000000 ____D C:\Users\dwayn\Downloads\Adobe After Effects CC 2015 v13.5 + Crack
2016-08-30 19:17 - 2016-08-30 19:23 - 00000000 ____D C:\Users\dwayn\AppData\Local\Mozilla
2016-08-30 19:17 - 2016-08-30 19:17 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-30 19:17 - 2016-08-30 19:17 - 00001222 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-08-30 19:17 - 2016-08-30 19:17 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Mozilla
2016-08-30 19:17 - 2016-08-30 19:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-30 19:16 - 2016-08-30 19:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-30 19:16 - 2016-08-30 19:16 - 00242264 _____ C:\Users\dwayn\Downloads\Firefox Setup Stub 48.0.2.exe
2016-08-30 16:33 - 2016-08-30 16:33 - 00000222 _____ C:\Users\dwayn\Desktop\Euro Truck Simulator 2.url
2016-08-30 16:22 - 2016-08-31 22:59 - 00004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-08-26 00:12 - 2016-08-26 00:12 - 00783175 _____ C:\Users\dwayn\Downloads\AutoClicker.exe
2016-08-26 00:12 - 2016-08-26 00:12 - 00783175 _____ C:\Users\dwayn\Downloads\AutoClicker (1).exe
2016-08-26 00:12 - 2016-08-26 00:12 - 00000000 ____D C:\Users\dwayn\Documents\AutomaticSolution Software
2016-08-25 11:11 - 2016-08-25 11:11 - 00003344 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-24 13:20 - 2016-08-24 13:50 - 00000000 ____D C:\Users\dwayn\Desktop\Werk
2016-08-19 16:02 - 2016-08-19 16:02 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-08-19 16:02 - 2016-08-19 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-19 16:02 - 2016-08-19 16:02 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2016-08-19 16:02 - 2016-08-19 16:02 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-08-19 16:01 - 2016-08-19 16:01 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-08-19 16:01 - 2016-08-19 16:01 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-08-19 16:00 - 2016-08-19 16:01 - 00000000 ____D C:\Program Files\Microsoft Office
2016-08-19 16:00 - 2016-08-19 16:00 - 00000000 ____D C:\Users\dwayn\AppData\Local\Microsoft Help
2016-08-19 15:59 - 2016-08-19 15:59 - 00008427 ____R C:\Users\dwayn\Downloads\IORRT 3.5.cmd
2016-08-19 15:59 - 2016-08-19 15:59 - 00000000 __RHD C:\MSOCache
2016-08-19 15:51 - 2016-08-19 15:53 - 361279488 ____R C:\Users\dwayn\Downloads\Microsoft Office 2010 Word x64 64bit.iso
2016-08-19 13:55 - 2016-08-22 13:29 - 00331512 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-08-19 13:54 - 2016-08-19 13:53 - 00227104 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-08-18 11:00 - 2016-08-18 11:24 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\PortForward.com
2016-08-18 10:59 - 2016-08-18 10:59 - 05588288 _____ (Portforward, LLC) C:\Users\dwayn\Downloads\setup-network-utilities.exe
2016-08-18 10:59 - 2016-08-18 10:59 - 00000000 ____D C:\Users\dwayn\AppData\Local\Downloaded Installations
2016-08-18 10:43 - 2016-08-19 11:11 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-08-18 10:42 - 2016-08-18 10:49 - 06686411 _____ C:\Users\dwayn\Downloads\teamspeak3-server_win64-3.0.13.2.zip
2016-08-17 19:58 - 2016-08-17 19:58 - 00001710 _____ C:\Users\dwayn\Desktop\Mail.lnk
2016-08-17 16:04 - 2016-08-17 16:04 - 00003806 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-08-17 16:03 - 2016-08-18 11:23 - 00000000 ____D C:\ProgramData\Overwolf
2016-08-17 16:03 - 2016-08-18 11:23 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-08-17 16:03 - 2016-08-18 10:44 - 00000002 _____ C:\END
2016-08-17 16:03 - 2016-08-17 16:03 - 00001156 _____ C:\Users\Public\Desktop\Overwolf.lnk
2016-08-17 16:03 - 2016-08-17 16:03 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-08-17 16:02 - 2016-08-31 22:57 - 00000000 ____D C:\Users\dwayn\AppData\Local\Overwolf
2016-08-17 16:02 - 2016-08-30 20:52 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\TS3Client
2016-08-17 16:02 - 2016-08-17 16:02 - 00001010 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-08-17 16:02 - 2016-08-17 16:02 - 00000972 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-08-17 16:02 - 2016-08-17 16:02 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-08-17 16:00 - 2016-08-17 16:01 - 32019840 _____ (TeamSpeak Systems GmbH) C:\Users\dwayn\Downloads\TeamSpeak3-Client-win64-3.0.19.4.exe
2016-08-15 12:50 - 2016-08-15 12:50 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\HelloGames
2016-08-15 12:50 - 2016-08-15 12:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\No Man's Sky [GOG.com]
2016-08-15 12:47 - 2016-08-30 19:22 - 00000000 ____D C:\GOG Games
2016-08-15 12:43 - 2016-08-15 12:43 - 00000000 ____D C:\Users\dwayn\Downloads\No Man's Sky
2016-08-15 12:09 - 2016-08-26 12:54 - 00000000 ____D C:\Users\dwayn\Desktop\teamspeak3-server_win64
2016-08-15 11:27 - 2016-08-15 11:27 - 00005842 _____ C:\Users\dwayn\Downloads\DCF_plugin-36125-1-3 (1).zip
2016-08-15 11:26 - 2016-08-15 11:26 - 00005842 _____ C:\Users\dwayn\Downloads\DCF_plugin-36125-1-3.zip
2016-08-15 11:16 - 2016-08-15 11:16 - 00019701 _____ C:\Users\dwayn\Downloads\BW_plugin-36177-v1-2.zip
2016-08-15 11:07 - 2016-08-15 11:07 - 00049775 _____ C:\Users\dwayn\Downloads\Skip Bethesda intro-100.zip
2016-08-11 12:03 - 2016-08-31 23:00 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-11 11:55 - 2016-08-11 11:55 - 00058049 _____ C:\Users\dwayn\Downloads\Betaalspecificatie 9 aug. 2016.pdf
2016-08-10 11:27 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 11:27 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-10 11:27 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 11:27 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 11:27 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 11:27 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-10 11:27 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-10 11:27 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-10 11:27 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 11:27 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-10 11:27 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 11:27 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-10 11:27 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 11:27 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-10 11:27 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 11:27 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-10 11:27 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 11:27 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 11:27 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-10 11:27 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 11:27 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 11:27 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-10 11:27 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-10 11:27 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-10 11:27 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-10 11:27 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-10 11:27 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 11:27 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-10 11:27 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-10 11:27 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-10 11:27 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-10 11:27 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-10 11:27 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 11:27 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-10 11:27 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-10 11:27 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-10 11:27 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-10 11:26 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-10 11:26 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-10 11:26 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-10 11:26 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 11:26 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-10 11:26 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-10 11:26 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-10 11:26 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-10 11:26 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-10 11:26 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-10 11:26 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-10 11:26 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-10 11:26 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-10 11:26 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 11:26 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-10 11:26 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-10 11:26 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-10 11:26 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-10 11:26 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-10 11:26 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-10 11:26 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-10 11:26 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 11:26 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-10 11:26 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-10 11:26 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-10 11:26 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-10 11:26 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-10 11:26 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-10 11:26 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 11:26 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-10 11:26 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-10 11:26 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-10 11:26 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-10 11:26 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 11:26 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-10 11:26 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-10 11:26 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 11:26 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 11:26 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-10 11:26 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-10 11:26 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-10 11:26 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-10 11:26 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-10 11:26 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 11:26 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-10 11:26 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-10 11:26 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 11:26 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-10 11:26 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-10 11:26 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-10 11:26 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-10 11:26 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 11:26 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 11:26 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-10 11:26 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-10 11:26 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-10 11:26 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-10 11:26 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-10 11:26 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 11:26 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 11:26 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-10 11:26 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-10 11:26 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-10 11:26 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-10 11:26 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-10 11:26 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-10 11:26 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-10 11:26 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-10 11:26 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-10 11:26 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-10 11:26 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-10 11:26 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-10 11:26 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 11:26 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-10 11:26 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-10 11:26 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-10 11:26 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-10 11:26 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-10 11:26 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 11:26 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 11:26 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-10 11:26 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-10 11:26 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-10 11:26 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-10 11:26 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-10 11:26 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-10 11:26 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 11:26 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 11:26 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-10 11:26 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-10 11:26 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 11:26 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-05 15:55 - 2016-08-05 15:55 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships
2016-08-05 15:54 - 2016-08-05 15:55 - 05995392 _____ (Wargaming.net ) C:\Users\dwayn\Downloads\WoWS_internet_install_eu.exe
2016-08-05 11:21 - 2016-08-05 11:22 - 00000000 ____D C:\Users\dwayn\AppData\Local\Skyrim
2016-08-05 11:14 - 2016-08-05 11:14 - 00000221 _____ C:\Users\dwayn\Desktop\The Elder Scrolls V Skyrim.url

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2016-08-31 23:00 - 2016-07-26 15:44 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-31 22:59 - 2016-07-22 10:02 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-08-31 22:59 - 2016-07-20 18:42 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-31 22:58 - 2016-07-20 18:42 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-31 22:56 - 2016-07-26 15:27 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-31 22:54 - 2016-04-27 08:30 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-31 22:54 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-31 16:44 - 2016-07-20 18:52 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-31 16:43 - 2016-07-25 19:53 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\uTorrent
2016-08-31 16:34 - 2016-07-26 15:32 - 00000000 ____D C:\Users\dwayn
2016-08-31 10:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-31 10:36 - 2016-04-26 23:26 - 04964936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-30 21:39 - 2016-07-20 18:32 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Adobe
2016-08-30 21:10 - 2015-11-23 23:19 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-30 19:42 - 2016-07-26 16:18 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-30 19:42 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-30 16:54 - 2016-07-29 12:50 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\CPUCores
2016-08-30 16:29 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-08-26 11:08 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-25 20:28 - 2016-07-21 22:27 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-08-25 11:11 - 2016-07-20 18:37 - 00002389 _____ C:\Users\dwayn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-25 11:11 - 2016-07-20 18:37 - 00000000 ___RD C:\Users\dwayn\OneDrive
2016-08-24 13:50 - 2016-07-20 18:34 - 00000000 ____D C:\Users\dwayn\AppData\Local\Comms
2016-08-19 16:02 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-19 16:00 - 2015-08-18 07:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-19 11:10 - 2016-04-27 08:05 - 00820294 _____ C:\WINDOWS\system32\perfh013.dat
2016-08-19 11:10 - 2016-04-27 08:05 - 00159892 _____ C:\WINDOWS\system32\perfc013.dat
2016-08-19 11:10 - 2015-08-18 07:20 - 01847504 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-18 20:19 - 2016-07-22 11:02 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Skype
2016-08-18 11:23 - 2016-07-21 22:22 - 00000294 _____ C:\Users\dwayn\Desktop\Nieuw tekstdocument.txt
2016-08-17 19:54 - 2016-07-25 21:35 - 00000000 ____D C:\Users\dwayn\Desktop\ONDECHONDE LA
2016-08-17 16:05 - 2016-07-20 19:19 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\NVIDIA
2016-08-12 11:41 - 2016-04-27 08:37 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-12 11:33 - 2016-04-27 08:18 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-12 11:33 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-12 11:33 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-11 21:42 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-11 19:43 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-11 19:40 - 2016-07-26 15:18 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-08-11 19:40 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Com
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\IME
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Help
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\System
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-08-11 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-11 19:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-08-11 19:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-11 19:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-08-11 19:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\servicing
2016-08-11 19:34 - 2016-04-27 08:05 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-08-11 19:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-08-11 19:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-11 12:12 - 2016-07-21 23:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-11 12:12 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-11 12:07 - 2016-07-21 23:02 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-10 10:53 - 2016-07-20 19:00 - 00000000 ____D C:\Users\dwayn\Desktop\Webms
2016-08-09 12:01 - 2016-07-20 18:43 - 00002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-09 12:01 - 2016-07-20 18:43 - 00002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-08 10:44 - 2016-07-22 11:02 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-08 10:44 - 2016-07-22 11:02 - 00000000 ____D C:\ProgramData\Skype
2016-08-05 15:55 - 2016-07-25 20:27 - 00000000 ____D C:\Games
2016-08-05 15:40 - 2016-07-25 20:39 - 00000000 ____D C:\Users\dwayn\AppData\Local\DayZ
2016-08-05 11:20 - 2016-07-27 11:42 - 00000000 ____D C:\Users\dwayn\Documents\My Games
2016-08-05 10:45 - 2016-07-29 12:48 - 00000000 ____D C:\Users\dwayn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-05 10:45 - 2016-07-29 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-05 10:45 - 2016-07-29 12:47 - 00000000 ____D C:\Program Files\WinRAR
2016-08-05 10:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-05 10:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Macromed

==================== Bestanden in de root van sommige mappen =======

2016-07-25 20:39 - 2016-07-25 20:39 - 0000000 ___SH () C:\Users\dwayn\AppData\Local\LumaEmu
2016-07-26 15:27 - 2016-07-26 15:27 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend


LastRegBack: 2016-08-24 13:54

==================== Eind van FRST.txt ============================

 

 

 

 

 

Addition.txt

 

 

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 31-08-2016
Gestart door Dwayne (31-08-2016 23:02:13)
Gestart vanaf C:\Users\dwayn\Desktop
Windows 10 Home Versie 1511 (X64) (2016-07-26 13:50:36)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1566819876-2752599805-3409464325-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1566819876-2752599805-3409464325-503 - Limited - Disabled)
Dwayne (S-1-5-21-1566819876-2752599805-3409464325-1001 - Administrator - Enabled) => C:\Users\dwayn
Gast (S-1-5-21-1566819876-2752599805-3409464325-501 - Limited - Disabled)

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Antivirus en antispyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Antivirus en antispyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

µTorrent (HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
Arma 2 (HKLM\...\Steam App 33910) (Version:  - Bohemia Interactive)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CPUCores (HKLM-x32\...\{158EEC2E-0351-4C63-A89D-42B0BFB169F4}) (Version: 1.3.1 - cpucores.com)
DayZ (HKLM\...\Steam App 221100) (Version:  - Bohemia Interactive)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version:  - SCS Software)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Insurgency (HKLM\...\Steam App 222880) (Version:  - New World Interactive)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Malware versie 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 15.0.166 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.262 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Mozilla Firefox 48.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 nl)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2 - Mozilla)
No Man's Sky (HKLM-x32\...\1446213994_is1) (Version: 2.0.0.2 - GOG.com)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.97.31.0 - Overwolf Ltd.)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Rocket League (HKLM\...\Steam App 252950) (Version:  - Psyonix, Inc.)
RuneScape Launcher 2.2.2 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.2 - Jagex Ltd)
Rust (HKLM\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM\...\Steam App 365720) (Version:  - The SKSE Team)
Spotify (HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\Spotify) (Version: 1.0.33.106.g60b5d1f0 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation)
Windows-stuurprogrammapakket - ASUS (ATP) Mouse  (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-1566819876-2752599805-3409464325-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {1F672A02-6B9C-49E1-BC4C-99EC8BD287FA} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {3D836A9A-1C19-4C17-81B4-990A07E57945} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd)
Task: {41A1F7E5-43B2-427A-9CE4-95A43BEDEC72} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-30] (Realtek Semiconductor)
Task: {47565369-8474-4064-A893-DFA5FC227E30} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-08-14] (Overwolf LTD)
Task: {596774EF-C2E1-4357-9560-6FFEEBA55D17} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {6830C085-D525-4C78-8CBD-B75DC2C8AB02} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {799708D9-BC7A-4A7E-81C5-6C6706D6FCEC} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {7F2200B1-7F3A-49E5-8FA6-00BACA42BA39} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-08-12] ()
Task: {8AB5FB97-BD3B-4D65-8E58-4A40A7598C2C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-08-12] (ASUSTeK Computer Inc.)
Task: {AE1DC423-4CDC-484A-AFD0-0EDAE11171A5} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-25] (Microsoft Corporation)
Task: {AF696432-1FDA-47A3-86F8-3CEDB920DC74} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2016-07-07] (McAfee, Inc.)
Task: {BA043E6F-0AA9-4634-AB81-E566A9C03248} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2015-03-14] (Microsoft Corporation)
Task: {BFD0F4AD-020C-4FE6-8981-9F3F99E24552} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)
Task: {C8C8EC4B-278A-45D4-AD51-066B7FBEC5A7} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {E091384A-AE52-4A67-B3F6-3EAFF0A6CEB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-20] (Google Inc.)
Task: {E1AF1254-AC4F-4124-B237-C0C28CB74E1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-20] (Google Inc.)
Task: {E1F24139-C977-4E1B-AFEB-E8D300251AD4} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-30] (Realtek Semiconductor)
Task: {E270C62E-AE4A-4B83-8D1B-4E00C0A86B7B} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {EB82C456-F30C-4CD0-9719-E9624AB14A11} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

==================== Geladen Modules (gefilterd) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-26 15:28 - 2015-08-07 19:18 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-19 11:11 - 2015-05-19 11:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
2016-07-26 16:10 - 2016-07-26 16:10 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-08-25 11:10 - 2016-08-25 11:10 - 01864384 _____ () C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-07-27 10:33 - 2016-07-27 10:34 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-04-27 08:08 - 2016-04-27 08:08 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-26 16:10 - 2016-07-26 16:10 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-07-22 10:55 - 2016-07-22 10:55 - 00402520 _____ () C:\WINDOWS\system32\igfxTray.exe
2015-05-31 18:15 - 2015-05-31 18:15 - 00063272 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe
2016-07-27 11:07 - 2016-07-27 11:07 - 04276736 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\7b93f417a253d07d7d542825407973ad\Windows.ApplicationModel.ni.dll
2016-07-29 12:04 - 2016-07-29 12:04 - 01188864 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Storage\4e41a1053a77e24d167aad6ef88a1134\Windows.Storage.ni.dll
2016-07-29 12:04 - 2016-07-29 12:04 - 00497664 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\0c168de19f2576f13020da2bdb2a6d56\Windows.Foundation.ni.dll
2016-07-27 10:33 - 2016-07-27 10:34 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-07-27 10:33 - 2016-07-27 10:34 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-11-23 23:28 - 2015-07-24 06:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-08-25 11:10 - 2016-08-25 11:10 - 01383616 _____ () C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-25 11:10 - 2016-08-25 11:10 - 00118976 _____ () C:\Users\dwayn\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-08-14 13:41 - 2016-08-14 13:41 - 45069312 _____ () C:\Program Files (x86)\Overwolf\0.97.31.0\libcef.DLL
2016-08-14 13:41 - 2016-08-14 13:41 - 01643008 _____ () C:\Program Files (x86)\Overwolf\0.97.31.0\libglesv2.dll
2016-08-14 13:41 - 2016-08-14 13:41 - 00074752 _____ () C:\Program Files (x86)\Overwolf\0.97.31.0\libegl.dll
2013-04-27 12:24 - 2013-04-27 12:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll
2015-08-07 03:09 - 2015-08-07 03:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


==================== Hosts inhoud: ===============================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2015-07-10 13:04 - 2016-08-31 16:25 - 00000822 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dwayn\Desktop\Green+_daa718c7c4402bf948645043a5463645.jpg
DNS Servers: 89.101.251.228 - 89.101.251.229
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1566819876-2752599805-3409464325-1001\...\StartupApproved\Run: => "Steam"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8728BA23-3657-465A-8D83-9768979E74B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{10990DEE-4996-44C3-A235-2741F632B237}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{CF728E28-EBD9-4DB7-AB65-D808C5BD42AF}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8EBEF382-6E97-48FA-8E87-32655CBE2F8D}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A8B92FF2-62BD-42B4-985A-D49D9DD7CCB4}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9ACBE8A5-1A17-45E1-8064-1317D49CE15B}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BA8378D9-2EF4-45A0-B12E-0FF9E24611AB}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4AE3A7D8-29E8-4263-B522-DFCDC07C4E19}] => (Allow) C:\Users\dwayn\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{963EE6CF-D1AC-40DF-928C-CB2AED279FB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{032F4A4F-06CD-4794-8EE3-3929717C1863}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{201A531A-4A9A-4E69-AE94-95419D53BF9D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{50E1F47C-34DB-43E0-A3F1-F028E7BCD023}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [UDP Query User{B1FE4BC4-1211-4342-821B-51DA59624CF9}C:\users\dwayn\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dwayn\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{B67C2347-E825-470E-A6BB-1648AD9412C2}C:\users\dwayn\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dwayn\appdata\roaming\spotify\spotify.exe
FirewallRules: [{8AF43B70-E965-4841-9EEB-42C251E59101}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{61EB1944-B272-4DE1-8A2A-F8709EAC46F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{20523EE3-D54F-4E1F-B06B-5BA1836FAC0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{E24980CB-1739-4DFC-AF87-E3752B05C5E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{C50E05ED-5A3F-4CA0-839E-58E717487D6C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8FC54505-68A8-4A1B-AADC-42910BD4F54C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D0D63EB5-03D3-4D41-8686-9CE9C89F10D2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FFEC82DA-3EC2-43FD-845A-CF70478D2527}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8722BD85-6D36-41F4-A586-D4E594E0BC1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{F3B63258-0C50-4899-9A07-EF77E19CF2D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{50C2354E-1E40-48EE-8CA0-D042E58770D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{B6E7794C-FCB7-4376-AC41-4095ECA6AC0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{09B0FAC0-E1CB-4911-BC16-96F36E8D5BB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{7C47D6E0-5178-482D-AB51-EA9C236C00A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{0C07456E-689C-4E0E-A9A0-E0FB90452674}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{415B1B3B-07D6-4EB4-8E3D-D9AE6B5CE2E2}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{055A557E-15EC-498B-8735-648FDF2924C8}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{AE1EBC95-CE5D-4797-AC9B-5E4BFEF22AFA}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{421C731A-D999-46C5-B14F-DD664F2BFDF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8C6D2778-A3A1-416F-8500-508B172BB7B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{439BAC5D-2042-442A-984F-2F706C1E3F57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D9F6F633-38E8-42EF-B3DE-976EE3AD671D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{CC96BBAA-4595-4EC7-AE5B-57F5BA5E9BD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{1D562E71-5336-479C-A78A-8228942363F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B3BDC1B1-37BD-48CE-80AB-348D00D43C72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{E25A4D97-E9D4-416B-9DE4-9E010BC10F10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{A154AB88-99A3-40D4-9970-743BBA1A632D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{83A9C51D-E8E0-4AB0-A0C2-077B255C8D73}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7CD516E0-530A-40C4-A37F-85D28099144C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Herstelpunten =========================


==================== Defecte Apparaatbeheer Apparaten =============


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de WmiApRpl-service in DLL-bestand C:\WINDOWS\system32\wbem\wmiaprpl.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.

Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Kan DLL voor uitbreidbare items rdyboost niet laden. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de Windows-foutcode.

Error: (08/31/2016 10:57:32 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Kan het prestatieobject voor dee Server-service niet openen. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de statuscode.

Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de MSDTC-service in DLL-bestand C:\WINDOWS\system32\msdtcuiu.DLL is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.

Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de Lsa-service in DLL-bestand C:\Windows\System32\Secur32.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.

Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de ESENT-service in DLL-bestand C:\WINDOWS\system32\esentprf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.

Error: (08/31/2016 10:57:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: De openprocedure voor de BITS-service in DLL-bestand C:\Windows\System32\bitsperf.dll is mislukt. Prestatiemetergegevens voor deze service zijn niet beschikbaar. De eerste vier bytes (DWORD) in de sectie Gegevens bevatten de foutcode.

Error: (08/31/2016 05:11:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma explorer.exe, versie 10.0.10586.494 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: a20

Starttijd: 01d20395dde99309

Eindtijd: 43

Toepassingspad: C:\Windows\explorer.exe

Rapport-id: 3a7ac4a1-6f8d-11e6-9bde-3052cbef970f

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (08/31/2016 04:43:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma McUICnt.exe, versie 8.0.140.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 1ae0

Starttijd: 01d20391bfabf291

Eindtijd: 10

Toepassingspad: C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe

Rapport-id: 372a394f-6f89-11e6-9bde-3052cbef970f

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (08/31/2016 04:42:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma explorer.exe, versie 10.0.10586.494 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Beveiliging en onderhoud van het Configuratiescherm.

Proces-id: 7f8

Starttijd: 01d2039447e05a83

Eindtijd: 22

Toepassingspad: C:\Windows\explorer.exe

Rapport-id: 1b688a32-6f89-11e6-9bde-3052cbef970f

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:


Systeemfouten:
=============
Error: (08/31/2016 10:53:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (08/31/2016 10:53:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Group Policy Client-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (08/31/2016 10:53:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De User Data Access_1956a2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (08/31/2016 10:53:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De User Data Storage_1956a2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (08/31/2016 10:53:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De Contact Data_1956a2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (08/31/2016 10:53:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: De Host synchroniseren_1956a2-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (08/31/2016 10:53:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Network Setup Service-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (08/31/2016 10:52:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Microsoft Account Sign-in Assistant-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (08/31/2016 10:47:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Microsoft Account Sign-in Assistant-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (08/31/2016 10:38:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De Microsoft Account Sign-in Assistant-service kan vanwege de volgende fout niet worden gestart:
De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.


CodeIntegrity:
===================================
  Date: 2016-08-31 10:29:17.183
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-19 17:11:06.663
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-15 10:51:29.076
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-12 11:40:17.321
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-08-02 22:00:41.334
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-26 18:18:07.979
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-26 18:05:54.198
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-26 15:44:43.557
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-26 15:44:42.982
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-07-26 15:21:33.321
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Geheugen info ===========================

Processor: Intel® Core™ i7-5500U CPU @ 2.40GHz
Percentage geheugen in gebruik: 61%
Totaal fysiek RAM-geheugen: 3998.36 MB
Beschikbaar fysiek RAM-geheugen: 1539.82 MB
Totaal Virtueel geheugen: 11998.36 MB
Beschikbaar Virtual geheugen: 9205.17 MB

==================== Schijven ================================

Drive c: (OS) (Fixed) (Total:371.85 GB) (Free:146.16 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:558.74 GB) NTFS

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 1995A335)

Partition: GPT.

==================== Eind van Addition.txt ============================

 

 

Allthough i have noticed that they are fully in Dutch. Is there a way to get these in English?


  • 0

#6
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
A few items to fix, but there is no Malware / Virus

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Open notepad (Start =>All Programs => Accessories => Notepad).
Copy/Paste the contents of the code box below into Notepad.
start
CloseProcesses:
CreateRestorePoint:
S2 0282331472149700mcinstcleanup; C:\WINDOWS\TEMP\028233~1.EXE -cleanup -nolog [X]
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state Off
CMD: bitsadmin /reset /allusers
CMD: ipconfig /flushdns
Emptytemp:
  • Click Format and ensure Wordwrap is unchecked.
  • Save as Fixlist.txt to your Desktop (Must be in this location)
  • Run FRST/FRST64 and press the Fix button just once and wait.
  • If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
  • The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.

If the issue persists reinstalling McAfee is the next logical course of action.
  • 0

#7
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Where do i press Format and can i select Wordwrap? Is that in the Farbar Recovery tool?


  • 0

#8
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

I think you forgot to list what tool to use,


  • 0

#9
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Referring to Notepad.

When you open notepad at the very top of notepad is File, Edit, format, view, help, click Format and make sure there is a check in wordwrap

Then copy the text below

start
CloseProcesses:
CreateRestorePoint:
S2 0282331472149700mcinstcleanup; C:\WINDOWS\TEMP\028233~1.EXE -cleanup -nolog [X]
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state Off
CMD: bitsadmin /reset /allusers
CMD: ipconfig /flushdns
Emptytemp:

Paste it into notepad
Save it as a fixlist.txt to the desktop
Then open FRST and click fix, a fixlog will be created on the desktop. Post it
  • 0

#10
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Sorry, the translation into Dutch confused. I thought Format was referring to Formatting. I shall run it but then i have to go to bed..


  • 0

#11
Crabface

Crabface

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 31-08-2016
Gestart door Dwayne (31-08-2016 23:47:50) Run:2
Gestart vanaf C:\Users\dwayn\Desktop
Geladen Profielen: Dwayne (Beschikbare Profielen: Dwayne)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start
CloseProcesses:
CreateRestorePoint:
S2 0282331472149700mcinstcleanup; C:\WINDOWS\TEMP\028233~1.EXE -cleanup -nolog [X]
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state Off
CMD: bitsadmin /reset /allusers
CMD: ipconfig /flushdns
Emptytemp:
*****************

Proces succesvol afgesloten.
Herstelpunt is succesfol gemaakt.
0282331472149700mcinstcleanup => dienst is succesvol verwijderd.

========= netsh advfirewall reset =========

Ok.


========= Eind van CMD: =========


========= netsh advfirewall set allprofiles state Off =========

Ok.


========= Eind van CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.8.10586 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

{4DDFB52D-8CF0-442E-873F-F1177DA97DF3} canceled.
1 out of 1 jobs canceled.

========= Eind van CMD: =========


========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= Eind van CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9627764 B
Java, Flash, Steam htmlcache => 375777026 B
Windows/system/drivers => 537272 B
Edge => 493 B
Chrome => 5124579 B
Firefox => 131967201 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1626 B
NetworkService => 0 B
dwayn => 3166544753 B

RecycleBin => 1424400855 B
EmptyTemp: => 4.8 GB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 23:48:18 ====

 

 

 

This is the fixlog.


  • 0

#12
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
That's the fix log, we double checked the windows firewall to make sure it was off so no conflicts.

I would try reinstalling McAfee to see if that fixes your problem.

Thanks
Joe :)
  • 0

#13
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP