Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Computer infected


  • Please log in to reply

#1
Clearingoutthegarbage!

Clearingoutthegarbage!

    New Member

  • Member
  • Pip
  • 1 posts

hi people,

 

im pretty sure this laptop is infected.

 

im trying to sort it out right now. 

its a laptop running on windows 8 64bit    it has a    mcafee livesafe internet security on it that expired long ago  2017 or something.and they never updated it ever,

 

its been giving reports that its been quarainteening random virusses.  however i cant seem to see witch ones.

 

its been getting popup boxes,  of a unknown device connecting to it.   

 

its really slow

 

they told me a period it started losing space on the hd while nothing was getting downloaded

 

and it randomly starts to slow down massively when theres just a browser window open.  and it stays like that for a period like its doing all kinds of things.

 

 

 

please let me know if theres any other information you need

the farbar logs are at the bottom

 

thanks for your time and energy,

 

 

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 02-02-2020 02
Gestart door Stuntroom (Beheerder) op STUNROOM (ASUSTeK COMPUTER INC. S400CA) (11-02-2020 05:07:10)
Gestart vanaf C:\Users\Stuntroom\Desktop
Geladen Profielen: Stuntroom (Beschikbare Profielen: Stuntroom)
Platform: Windows 8 (X64) Taal: Nederlands (Nederland)
Standaardbrowser: FF
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, zal het proces worden gesloten. Het bestand zal niet worden verplaatst.)

() [Bestand niet getekend] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS VivoBook\vivokey.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
(Atheros) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(FreeDownloadManager.org) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe
(Genie-Soft -> Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe
(Genie-Soft -> Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Intel® Software -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel® Software -> Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel® Software -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel® Software -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Intel® Upgrade Service -> Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.5.495.0\McCSPServiceHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Qualcomm Atheros -> ) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros -> Windows ® Win 7 DDK provider) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Seagate Technology LLC -> LaCie) C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCie Desktop Manager.exe
(Seagate Technology LLC -> LaCie) C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCieDesktopManagerDaemon.exe
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wps.exe
(Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wpscenter.exe

==================== Register (gefilterd) ===================

(Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [79376 2013-04-22] (Intel® Software -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s**RtHDVCpl****C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s**kernel32.dll*
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-03] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-04-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Bestand niet getekend]
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
HKLM-x32\...\Run: [ATLauncher] => "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createshortcuts:1
HKLM-x32\...\Run: [ATUninstallIcon] => "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createuninstallentry:1
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [111120 2012-05-24] (CyberLink -> CyberLink)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\Run: [Power2GoExpress] => [X]
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\Run: [LaCie Desktop Manager 2 Startup] => C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCie Desktop Manager.exe [872736 2015-06-09] (Seagate Technology LLC -> LaCie)
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27226072 2016-11-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> regsvr32.exe /s /n /i:U %SystemRoot%\System32\shell32.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.87\Installer\chrmstp.exe [2020-02-07] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]

==================== Geplande Taken (gefilterd) ============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {0C9C7F76-C242-4A78-B323-C2F0D722FAF9} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-01-04] (ASUSTeK Computer Inc. -> ) [Bestand niet getekend]
Task: {0F2AE2B0-90F6-4219-A290-1FDF14CF0BF5} - System32\Tasks\WpsExternal_Stuntroom_20200121175559 => C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wps.exe [1073832 2020-01-21] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {1ABFE3B9-FC6E-4818-A309-80F1B244B494} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1036088 2013-06-19] (ASUSTeK Computer Inc. -> ASUS)
Task: {37821D55-B574-44FA-8E22-D700A9F6AC1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage => {5F074BDF-4BA3-4E68-AE86-2A6B0B5963B0} C:\Windows\system32\wlroamextension.dll [543232 2013-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {56451A46-4699-4B58-A231-8E7D656A9B24} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [3202872 2013-08-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {6A749827-F52B-4BBE-9F4F-46617950AD01} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {7A7C98D7-B439-4FED-B358-4C0A3127487A} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {8C78BB37-15A2-45C0-BB58-4A1309F828E9} - System32\Tasks\WpsUpdateTask_Stuntroom => C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wpsupdate.exe [157864 2020-01-21] (Zhuhai Kingsoft Office Software Co., Ltd. -> )
Task: {A7653764-59A8-402F-BEBC-7CCCCBCA1EE6} - System32\Tasks\ASUS Vivokey => C:\Program Files\ASUS\ASUS VivoBook\vivokey.exe [2278168 2013-07-01] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask => {0AC1DBCA-7F9F-47FC-A090-34E5FEB291E8} C:\Windows\system32\wlroamextension.dll [543232 2013-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {AA7FD4FF-C0FB-4FF5-91FD-54CE35C4A390} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [1156496 2019-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {AAF5E5CE-ADF9-4384-9C1F-C9DD55C95AE3} - System32\Tasks\G2MUpdateTask-S-1-5-21-2506021822-1520974999-1557825404-1001 => C:\Users\Stuntroom\AppData\Local\GoToMeeting\16786\g2mupdate.exe [32256 2020-02-06] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {AB51651B-219F-455D-831C-BD139DA52729} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [688128 2019-01-30] (FreeDownloadManager.org) [Bestand niet getekend]
Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\Windows\system32\SettingSyncInfo.dll [128512 2012-07-26] (Microsoft Windows -> Microsoft Corporation)
Task: {BE8508BC-1814-4BFB-9C67-88419DFD7DD7} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55416 2013-06-03] (ASUSTeK Computer Inc. -> ASUS)
Task: {C50C63AF-86B2-496A-828F-8D354A4FE788} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [184432 2013-06-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C6A64A2E-1749-4ACF-9F59-8F39F0C491DA} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {D1E925CE-9C61-4980-9F9D-BD89F3DF4162} - System32\Tasks\G2MUploadTask-S-1-5-21-2506021822-1520974999-1557825404-1001 => C:\Users\Stuntroom\AppData\Local\GoToMeeting\16786\g2mupload.exe [32256 2020-02-06] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {D3D23392-505C-4F83-9BE8-DD669F1F9A67} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [158336 2013-01-09] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {DA3F84E0-0967-4F10-B99B-E5952AC266F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {E66C557A-EAE6-4BDE-A44F-6707ECF5706E} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [3202872 2013-08-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {E9AC2D19-7669-4254-A3C4-9A7EA23A6131} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [3202872 2013-08-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F2110F87-8DD7-4B91-B04B-47BD845575EC} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\Platform\McAMTaskAgent.exe [650768 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
Task: {F5258A06-5609-4477-85BE-924297E386B8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

(Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-2506021822-1520974999-1557825404-1001.job => C:\Users\Stuntroom\AppData\Local\GoToMeeting\16786\g2mupdate.exe
Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-2506021822-1520974999-1557825404-1001.job => C:\Users\Stuntroom\AppData\Local\GoToMeeting\16786\g2mupload.exe

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist en een registeritem is, wordt het verwijderd of hersteld naar de standaard.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 84.116.46.21 84.116.46.20
Tcpip\..\Interfaces\{4E47BDE8-9CBD-46B8-BF00-09F45623CB95}: [DhcpNameServer] 40.51.1.12
Tcpip\..\Interfaces\{661EE7D5-A4AC-4BC9-B3D7-BD25CD58DF21}: [DhcpNameServer] 84.116.46.21 84.116.46.20

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrictie <==== AANDACHT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
SearchScopes: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001 -> DefaultScope {3F8902EF-2E66-4DE6-B5A2-D9EB1FDC13A3} URL = hxxps://nl.search.yahoo.com/search?fr=mcafee&type=C011NL885D20151114&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001 -> {3F8902EF-2E66-4DE6-B5A2-D9EB1FDC13A3} URL = hxxps://nl.search.yahoo.com/search?fr=mcafee&type=C011NL885D20151114&p={searchTerms}
BHO: Geen Naam -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Geen bestand
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2019-08-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-12-05] (McAfee, LLC -> McAfee, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2019-10-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Geen Naam -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Geen bestand
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-12-05] (McAfee, LLC -> McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Geen bestand
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Geen bestand
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-05-13] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-05-13] (McAfee, Inc. -> McAfee, Inc.)

FireFox:
========
FF DefaultProfile: e6fzfwmj.default
FF ProfilePath: C:\Users\Stuntroom\AppData\Roaming\Mozilla\Firefox\Profiles\e6fzfwmj.default [2020-02-11]
FF DownloadDir: D:\2016
FF Extension: (uBlock Origin) - C:\Users\Stuntroom\AppData\Roaming\Mozilla\Firefox\Profiles\e6fzfwmj.default\Extensions\[email protected] [2019-03-16]
FF SearchPlugin: C:\Users\Stuntroom\AppData\Roaming\Mozilla\Firefox\Profiles\e6fzfwmj.default\searchplugins\McSiteAdvisor.xml [2016-03-29]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-12-05]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2015-07-25] [Verouderd] [niet getekend]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-13] (Adobe Systems Incorporated -> )
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-05-13] (McAfee, Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-13] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-05-13] (McAfee, Inc. -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Bestand niet getekend]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default [2019-12-09]
CHR DefaultSearchURL: Default -> hxxps://nl.search.yahoo.com/search?fr=mcafee&type=E211NL885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://nl.search.yahoo.com/sugg/gossip/gossip-nl-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Presentaties) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-10]
CHR Extension: (Documenten) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-10]
CHR Extension: (Google Drive) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Spreadsheets) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-09-01]
CHR Extension: (Offline Documenten) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-02-10]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-01]
CHR Extension: (Gmail) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-20]
CHR Extension: (Chrome Media Router) - C:\Users\Stuntroom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-01]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <niet gevonden>
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <niet gevonden>

==================== Services (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-06-19] (ASUSTeK Computer Inc. -> ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [Bestand niet getekend]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310400 2013-04-24] (Qualcomm Atheros -> Windows ® Win 7 DDK provider) [Bestand niet getekend]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058256 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [83032 2013-04-22] (Intel® Software -> Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [100032 2013-04-22] (Intel® Software -> Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [92864 2013-04-22] (Intel® Software -> Intel Corporation)
R2 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [662104 2012-09-16] (Genie-Soft -> Genie9)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
R2 LaCieDesktopManagerDaemon; C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCieDesktopManagerDaemon.exe [1149728 2015-06-09] (Seagate Technology LLC -> LaCie)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [754280 2015-05-13] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334760 2012-12-21] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe [207344 2015-06-04] (McAfee, Inc. -> McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [609592 2015-05-05] (McAfee, Inc. -> McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc. -> McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-06] (McAfee, Inc. -> McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc. -> McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-05-06] (McAfee, Inc. -> McAfee, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-04-26] (Microsoft Windows -> Microsoft Corporation)
S3 wpscloudsvr; C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\wpscloudsvr.exe [790696 2020-01-21] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-04-24] (Atheros) [Bestand niet getekend]
S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X]

===================== Drivers (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S3 AgereSoftModem; C:\Windows\system32\DRIVERS\agrsm64.sys [1146880 2012-06-02] (Microsoft Windows -> LSI Corp)
R3 athr; C:\Windows\system32\DRIVERS\athw8x.sys [3847168 2013-05-16] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [65784 2013-06-28] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [68072 2013-04-22] (Intel® Software -> Intel Corporation)
R3 DptfDevFan; C:\Windows\system32\DRIVERS\DptfDevFan.sys [32968 2013-04-22] (Intel® Software -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [45880 2013-04-22] (Intel® Software -> Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [57216 2013-04-22] (Intel® Software -> Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [120256 2013-04-22] (Intel® Software -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [200808 2013-04-22] (Intel® Software -> Intel Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [198448 2015-04-27] (McAfee, Inc. -> McAfee, Inc.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] (ASUSTeK Computer Inc. ->  )
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-04-01] (Malwarebytes Corporation -> Malwarebytes Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [101872 2015-04-08] (McAfee, Inc. -> McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [483240 2015-03-26] (McAfee, Inc. -> McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100720 2015-03-26] (McAfee, Inc. -> McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc. -> McAfee, Inc.)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [18232 2013-06-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [589824 2012-06-02] (Microsoft Windows -> Realtek )
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2019-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35232 2013-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [230904 2013-04-26] (Microsoft Corporation -> Microsoft Corporation)
U0 msahci; geen ImagePath

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een maand (aangemaakt) ===================

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2020-02-11 04:41 - 2020-02-11 04:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2020-02-11 04:16 - 2020-02-11 04:21 - 000052483 _____ C:\Users\Stuntroom\Desktop\Addition.txt
2020-02-11 04:04 - 2020-02-11 05:09 - 000035445 _____ C:\Users\Stuntroom\Desktop\FRST.txt
2020-02-11 04:02 - 2020-02-11 05:08 - 000000000 ____D C:\FRST
2020-02-11 04:01 - 2020-02-11 03:59 - 002279424 _____ (Farbar) C:\Users\Stuntroom\Desktop\FRST64.exe
2020-01-30 18:56 - 2020-01-30 18:57 - 000118690 _____ C:\Users\Stuntroom\Downloads\contract_3405283262_Tele2.pdf
2020-01-23 02:34 - 2020-01-25 20:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-01-21 17:55 - 2020-01-21 17:55 - 000004234 _____ C:\Windows\system32\Tasks\WpsExternal_Stuntroom_20200121175559
2020-01-21 17:55 - 2020-01-21 17:55 - 000000000 ____D C:\Users\Stuntroom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WPS Office
2020-01-12 07:26 - 2020-01-12 07:27 - 153431099 _____ C:\Users\Stuntroom\Downloads\Cynthia Morgan - Self+Esteem+Bundle.zip

==================== Een maand (gewijzigd) ==================

(Als een item is opgenomen in de fixlist, wordt de map of het bestand verplaatst.)

2020-02-11 05:10 - 2014-11-28 11:24 - 000000000 ____D C:\Users\Stuntroom\AppData\Local\CrashDumps
2020-02-11 04:38 - 2016-11-28 22:28 - 000000000 ____D C:\Users\Stuntroom\AppData\LocalLow\Mozilla
2020-02-11 04:35 - 2019-12-05 23:13 - 000003474 _____ C:\Windows\system32\Tasks\ASUS Live Update1
2020-02-11 04:35 - 2019-08-08 02:28 - 000003464 _____ C:\Windows\system32\Tasks\ASUS Live Update2
2020-02-11 04:35 - 2014-11-24 03:21 - 000000062 _____ C:\Users\Stuntroom\AppData\Roaming\sp_data.sys
2020-02-11 04:34 - 2012-07-26 08:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-11 04:14 - 2016-02-24 20:40 - 000000580 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-2506021822-1520974999-1557825404-1001.job
2020-02-11 03:22 - 2016-02-24 20:40 - 000000676 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-2506021822-1520974999-1557825404-1001.job
2020-02-10 20:04 - 2012-07-26 06:37 - 000000000 ____D C:\Windows\Inf
2020-02-09 23:14 - 2017-07-08 09:05 - 000000000 ____D C:\Users\Stuntroom\AppData\Local\GoToMeeting
2020-02-09 23:03 - 2012-07-26 06:26 - 000262144 ___SH C:\Windows\system32\config\ELAM
2020-02-09 23:02 - 2012-07-26 06:26 - 000262144 ___SH C:\Windows\system32\config\BBI
2020-02-07 10:30 - 2014-11-27 12:08 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-07 10:30 - 2014-11-27 12:08 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-07 10:30 - 2014-11-27 12:08 - 000002205 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-07 05:29 - 2013-04-26 00:18 - 000000000 ____D C:\Program Files (x86)\McAfee
2020-02-06 19:35 - 2016-02-24 20:40 - 000003684 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-2506021822-1520974999-1557825404-1001
2020-02-06 19:35 - 2016-02-24 20:40 - 000003588 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-2506021822-1520974999-1557825404-1001
2020-02-05 05:59 - 2015-01-25 03:30 - 000000000 ____D C:\Users\Stuntroom\AppData\Roaming\vlc
2020-02-05 01:23 - 2014-11-27 12:06 - 000003492 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 01:23 - 2014-11-27 12:06 - 000003364 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-01 05:50 - 2012-08-03 00:15 - 000804346 _____ C:\Windows\system32\perfh013.dat
2020-02-01 05:50 - 2012-08-03 00:15 - 000162120 _____ C:\Windows\system32\perfc013.dat
2020-02-01 05:50 - 2012-07-26 08:28 - 001792392 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-01 04:02 - 2014-11-24 03:20 - 000000000 ____D C:\Users\Stuntroom
2020-01-30 23:43 - 2012-07-26 09:12 - 000000000 ____D C:\Windows\AUInstallAgent
2020-01-30 23:13 - 2012-07-26 09:12 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-27 08:27 - 2017-03-30 06:14 - 000000000 ____D C:\Users\Stuntroom\AppData\Roaming\audacity
2020-01-25 20:49 - 2014-11-28 06:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-24 23:30 - 2014-11-28 06:35 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2506021822-1520974999-1557825404-1001
2020-01-24 06:19 - 2014-11-28 06:48 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-23 01:46 - 2012-07-26 09:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-23 01:44 - 2015-01-20 21:20 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-01-22 03:36 - 2017-03-30 06:28 - 000000000 ____D C:\Users\Stuntroom\Documents\Audacity
2020-01-21 17:56 - 2019-09-15 20:13 - 000003846 _____ C:\Windows\system32\Tasks\WpsUpdateTask_Stuntroom

==================== Bestanden in de root van sommige mappen ========

2016-05-23 10:25 - 2016-05-31 20:15 - 000000103 _____ () C:\Users\Stuntroom\AppData\Roaming\Camdata.ini
2016-05-23 10:25 - 2016-05-31 20:15 - 000000408 _____ () C:\Users\Stuntroom\AppData\Roaming\CamLayout.ini
2016-05-23 10:25 - 2016-05-31 20:15 - 000000408 _____ () C:\Users\Stuntroom\AppData\Roaming\CamShapes.ini
2016-05-23 10:25 - 2018-04-06 22:06 - 000004509 _____ () C:\Users\Stuntroom\AppData\Roaming\CamStudio.cfg
2014-11-24 03:21 - 2020-02-11 04:35 - 000000062 _____ () C:\Users\Stuntroom\AppData\Roaming\sp_data.sys
2018-09-27 19:03 - 2018-09-27 19:03 - 000000000 _____ () C:\Users\Stuntroom\AppData\Local\{2D11FF93-56FE-46DA-9B6A-09BB8ED5B266}

==================== SigCheck ============================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)


LastRegBack: 2020-02-05 19:13
==================== Einde van FRST.txt ========================

 

 

 

 

 

 

 

@@@@@addition.txt==================================

=======================================

 

 

 

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 02-02-2020 02
Gestart door Stuntroom (11-02-2020 05:18:10)
Gestart vanaf C:\Users\Stuntroom\Desktop
Windows 8 (X64) (2014-11-24 02:20:28)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2506021822-1520974999-1557825404-500 - Administrator - Disabled)
Gast (S-1-5-21-2506021822-1520974999-1557825404-501 - Limited - Disabled)
Stuntroom (S-1-5-21-2506021822-1520974999-1557825404-1001 - Administrator - Enabled) => C:\Users\Stuntroom

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Antivirus en antispyware (Disabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Geïnstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.)

µTorrent (HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
4K Video Downloader 4.4 (HKLM-x32\...\{F350AF86-CD2C-45DC-9F5E-9C1A6789E537}) (Version: 4.4.0.2235 - Open Media LLC)
ActivePresenter (HKLM-x32\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 5.5.5 - Atomi Systems, Inc.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\{4592BAE7-B99A-47A5-9B6B-3BC236B9D3E9}) (Version: 3.9.145.62246 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.9.145.62246 - Alcor Micro Corp.)
Apple Application Support (32-bit) (HKLM-x32\...\{FD52A2FF-4D16-49C4-A2CD-DAC752C18BA2}) (Version: 8.0 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9B061D60-4E2C-4987-BFFD-423E3D477660}) (Version: 8.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6CECF0FB-EE71-4FE5-8AE0-FA007408934A}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.5 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.4 - ASUS)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.1 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0010 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS VivoBook (HKLM\...\{04FDBE69-F9FD-42A2-9008-E5CE7F60C6BE}) (Version: 1.0.30 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0030 - ASUS)
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
Azteca (HKLM-x32\...\WTA-874d1d57-0527-4e80-adaa-bce83e1a070b) (Version: 2.2.0.97 - WildTangent) Hidden
Bejeweled 3 (HKLM-x32\...\WTA-cf23f5a3-be59-42a3-91d4-7147cb84c427) (Version: 2.2.0.97 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CamStudio 2.7 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7 - CamStudio Open Source)
Cut the Rope (HKLM-x32\...\WTA-f9eaaca9-82be-44ea-8a23-da50b5803b42) (Version: 3.0.2.38 - WildTangent) Hidden
CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5415 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.3625 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Fotogalerie (HKLM-x32\...\{3CBD94C1-BA15-488C-888B-D8DD296CC6DC}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
Galerie de photos (HKLM-x32\...\{446CC8CE-0E90-44F7-ADD0-774B243EF090}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 3.0 - Genie9)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.87 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.)
GoToMeeting 10.8.0.16786 (HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\GoToMeeting) (Version: 10.8.0.16786 - LogMeIn, Inc.)
iMyFone D-Back 7.3.0.2 (HKLM-x32\...\{071B9303-5881-4BC6-B9E9-2E2D22C015C1}_is1) (Version: 7.3.0.2 - Shenzhen iMyFone Technology Co., Ltd.)
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.0.0.2023 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3114 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{79D82544-6300-4A19-8410-9C03245D80A4}) (Version: 12.10.1.4 - Apple Inc.)
LaCie Desktop Manager 2.7.0 (HKLM-x32\...\{3845209F-142E-4F48-B61A-AA34D2DB54BB}_is1) (Version: 2.7.0 - LaCie)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LibreOffice 6.3.1.2 (HKLM\...\{46BF4998-7CC7-43AA-8D4C-D43DEFB24493}) (Version: 6.3.1.2 - The Document Foundation)
Malwarebytes Anti-Malware versie 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.1076 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.52 - McAfee, LLC.)
Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 15.0.5207.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{03CC9D58-B132-4CC0-A521-4F3660AA43C7}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{701FE1BC-834A-4857-AF62-6EBA50CFBC78}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{8E6E8CBB-8E58-493C-943F-4664F5F2FEDB}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{A17946CA-18E5-4CF0-8D55-A56D804718F8}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{AE8044B5-FCA3-4EBE-AC78-0FB3A6E8DC76}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 72.0.2 (x64 nl) (HKLM\...\Mozilla Firefox 72.0.2 (x64 nl)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 72.0.2.7321 - Mozilla)
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0413-0000-0000000FF1CE}) (Version: 15.0.5207.1000 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{6649DD88-354B-40C3-94D1-11178CF5CCB2}) (Version: 4.15.9789 - Apache Software Foundation)
Peggle (HKLM-x32\...\WTA-4ac01422-47f4-450d-be29-dd2c93505f68) (Version: 2.2.0.95 - WildTangent) Hidden
Penguins! (HKLM-x32\...\WTA-0eda17f7-fdf1-44cd-87c0-caf591ca3a2e) (Version: 2.2.0.98 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.226 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.19 - Qualcomm Atheros Inc.)
Raccolta foto (HKLM-x32\...\{D04EBB49-C985-4A38-8695-62000861293A}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6886 - Realtek Semiconductor Corp.)
RTF Repair Kit 2.5 (HKLM-x32\...\RTF Repair Kit_is1) (Version:  - File Master LLC)
Scapple (HKLM-x32\...\Scapple 1260) (Version: 1260 - Literature and Latte)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Tales of Lagoona (HKLM-x32\...\WTA-d927468d-46de-4206-b527-35d00680ffb7) (Version: 2.2.0.110 - WildTangent) Hidden
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version:  - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.0.0 - WildTangent)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.10.5 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinX YouTube Downloader (HKLM-x32\...\WinX YouTube Downloader) (Version: 5.4 - Digiarty, Inc.)
WinX YouTube Downloader 4.0.5 (HKLM-x32\...\WinX YouTube Downloader_is1) (Version:  - Digiarty Software, Inc.)
WPS Office (11.2.0.9144) (HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\Kingsoft Office) (Version: 11.2.0.9144 - Kingsoft Corp.)

Packages:
=========
- Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.1.54_neutral__qt5r5pa5dyg8m [2013-04-26] (WildTangent Games)
ASUS Tutorial -> C:\Program Files\WindowsApps\B9ECED6F.ASUSTutorial_1.0.0.43_neutral__qmba6cd70vzyy [2014-11-24] (ASUSTeK COMPUTER INC.)
Bing -> C:\Program Files\WindowsApps\Microsoft.Bing_1.5.1.259_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation)
Camera -> C:\Program Files\WindowsApps\Microsoft.Camera_6.2.9200.20523_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation)
Financieel -> C:\Program Files\WindowsApps\Microsoft.BingFinance_1.7.0.38_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Foto's -> C:\Program Files\WindowsApps\microsoft.windowsphotos_16.4.4388.928_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation)
Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_1.0.13011.1_x86__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation)
Games -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.1.134.0_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_1.6.1012.2_x64__a2t3txkz9j1jw [2013-04-26] (MAGIX)
Muziek -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_1.1.144.0_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Nieuws -> C:\Program Files\WindowsApps\Microsoft.BingNews_1.7.0.38_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Pinball FX2 -> C:\Program Files\WindowsApps\Microsoft.Studios.PinballFx2_1.3.0.452_x86__8wekyb3d8bbwe [2014-11-24] (Microsoft Studios)
Reizen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_1.7.0.26_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
SkyDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_16.4.4388.928_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_1.3.0.112_x86__kzf8qxf38zg5c [2013-04-26] (Skype) [MS Ad]
Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_1.8.0.51_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_1.1.134.0_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]
Weer -> C:\Program Files\WindowsApps\Microsoft.BingWeather_1.7.0.26_x64__8wekyb3d8bbwe [2014-11-24] (Microsoft Corporation) [MS Ad]

==================== Aangepaste CLSID (gefilterd): ==============

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\kwpsmenushellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\GoToMeeting\8034\G2MOutlookAddin64.dll => Geen bestand
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Bestand niet getekend]
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2506021822-1520974999-1557825404-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Stuntroom\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.) [Bestand niet getekend]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.) [Bestand niet getekend]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.) [Bestand niet getekend]
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2015-05-13] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSContextMenu.DLL [2012-12-19] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2013-04-24] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-06-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2015-05-13] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2506021822-1520974999-1557825404-1001: [          kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\kwpsmenushellext64.dll [2020-01-21] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-2506021822-1520974999-1557825404-1001: [          kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\kwpsmenushellext64.dll [2020-01-21] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Codecs (gefilterd) ====================

==================== Snelkoppelingen & WMI ========================

==================== Geladen Modules (gefilterd) =============

2013-04-29 15:17 - 2013-04-29 15:17 - 000587264 _____ () [Bestand niet getekend] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000011264 _____ () [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-04-24 17:07 - 2013-04-24 17:07 - 000086016 _____ () [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2019-09-27 03:15 - 2019-01-30 21:58 - 000037376 _____ () [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\WinDivert.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000708608 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSBackupManager.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000093696 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSCurl.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000089600 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000488960 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000058368 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000045568 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSLogging.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000054784 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSLogManager.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000343552 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSWatcher4.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000332800 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000087040 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\QueueManager.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000011264 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\RWLock.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000205824 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\Settings.dll
2012-02-02 10:16 - 2012-02-02 10:16 - 000740864 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\sqlite3.dll
2012-02-02 10:16 - 2012-02-02 10:16 - 000010752 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000063488 _____ () [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll
2012-02-19 11:43 - 2012-02-19 11:43 - 000491520 _____ (Artpol Software) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSZipEng.dll
2012-09-27 08:15 - 2012-09-27 08:15 - 001472512 _____ (ASUS Cloud Corporation.) [Bestand niet getekend] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll
2012-03-15 15:04 - 2012-03-15 15:04 - 000886272 _____ (Codejock Software) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\SkinFramework1521vc100x64U.dll
2016-04-27 20:02 - 2015-06-09 09:48 - 002555392 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\LaCie\LaCie Desktop Manager\QtCore4.dll
2016-04-27 20:02 - 2015-06-09 09:48 - 008365056 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\LaCie\LaCie Desktop Manager\QtGui4.dll
2016-04-27 20:02 - 2015-06-09 09:48 - 001024000 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\LaCie\LaCie Desktop Manager\QtNetwork4.dll
2016-04-27 20:02 - 2015-06-09 09:48 - 000347136 _____ (Digia Plc and/or its subsidiary(-ies)) [Bestand niet getekend] C:\Program Files (x86)\LaCie\LaCie Desktop Manager\QtXml4.dll
2019-09-27 03:15 - 2019-01-30 21:59 - 000436224 _____ (FreeDownloadManager.org) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\common.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000094208 _____ (Genie9) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSCopy.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000174592 _____ (Genie9) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSOnlineProtocol.dll
2012-09-10 15:29 - 2012-09-10 15:29 - 000086528 _____ (Genie9) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSUpdater.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000648704 _____ (Genie-Soft) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GenieAFX.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000029184 _____ (Genie-soft) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSEnManager.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000113152 _____ (Genie-soft) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSGlobalMFC.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000036352 _____ (Genie-soft) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSSEMGR.dll
2012-04-24 10:29 - 2012-04-24 10:29 - 000143872 _____ (Genie-Soft) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\GSSMTP.dll
2013-04-24 17:12 - 2013-04-24 17:12 - 000033408 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\CommApi.dll
2013-04-24 17:12 - 2013-04-24 17:12 - 000203392 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\FolderViewImpl.dll
2013-04-24 17:12 - 2013-04-24 17:12 - 000085632 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\GattI.dll
2013-04-24 17:12 - 2013-04-24 17:12 - 000126592 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\gatts.DLL
2013-04-24 17:12 - 2013-04-24 17:12 - 000083072 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll
2013-04-24 17:12 - 2013-04-24 17:12 - 000034432 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\ipc.dll
2013-04-24 17:13 - 2013-04-24 17:13 - 000063104 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\ModuleManager.dll
2013-04-24 17:13 - 2013-04-24 17:13 - 001067648 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\OutlookLib.dll
2013-04-24 17:13 - 2013-04-24 17:13 - 000027264 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\TCPConnection.dll
2013-04-24 17:13 - 2013-04-24 17:13 - 000114816 _____ (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\utils.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000194560 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\Audio\audio.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000161792 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\BasicPrintProfile\BPP.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000177152 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\BIP\BIP.dll
2013-04-24 17:07 - 2013-04-24 17:07 - 000018432 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\DID\DId.dll
2013-04-24 17:07 - 2013-04-24 17:07 - 000036352 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\FAX\Fax.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000421888 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\FileTransfer\FileTransfer.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000095232 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\GapSdp\GapSdp.dll
2013-04-24 17:06 - 2013-04-24 17:06 - 000096768 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\goep\goep.dll
2013-04-24 17:06 - 2013-04-24 17:06 - 000029696 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\HCRP\Hcrp.dll
2013-04-24 17:07 - 2013-04-24 17:07 - 000142848 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\HealthDevice\HDP.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000091136 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\L2capLib\l2caplib.dll
2013-04-24 17:07 - 2013-04-24 17:07 - 000308224 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\LE\LE.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000065024 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\OppOperation\OppOperation.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000066560 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\pbap\pbap.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000063488 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\RfcommLib\rfcommlib.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000097280 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\sap\sap.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000087552 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\SesMgr\sesmgr.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000055296 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\spp\spp.dll
2013-04-24 17:09 - 2013-04-24 17:09 - 000064512 _____ (Qualcomm Atheros Commnucations) [Bestand niet getekend] C:\Program Files (x86)\Bluetooth Suite\Modules\Sync\Sync.dll
2012-03-14 15:56 - 2012-03-14 15:56 - 003501056 _____ (Terra Informatica Software, Inc., British Columbia, Canada.) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\htmlayout.dll
2012-02-02 10:16 - 2012-02-02 10:16 - 000222720 _____ (The cURL library, hxxp://curl.haxx.se/) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\libcurl.dll
2016-04-27 20:02 - 2015-06-09 09:48 - 001150976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LIBEAY32.dll
2012-02-02 10:16 - 2012-02-02 10:16 - 001558016 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\LIBEAY32.dll
2012-02-02 10:16 - 2012-02-02 10:16 - 000301568 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Bestand niet getekend] C:\Program Files\Genie9\Genie Timeline\SSLEAY32.dll
2019-09-27 03:15 - 2019-01-30 22:01 - 005938176 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\Qt5Core.dll
2019-09-27 03:15 - 2018-05-15 06:35 - 006345216 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\Qt5Gui.dll
2019-09-27 03:15 - 2018-05-15 06:35 - 001256960 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\Qt5Network.dll
2019-09-27 03:15 - 2018-05-15 06:33 - 000207360 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\Qt5Sql.dll
2019-09-27 03:15 - 2018-05-15 06:38 - 005515264 _____ (The Qt Company Ltd.) [Bestand niet getekend] C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\Qt5Widgets.dll
2013-05-14 20:58 - 2013-05-14 20:58 - 001600000 _____ (TODO: <Company name>) [Bestand niet getekend] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
2013-05-24 18:31 - 2013-05-24 18:31 - 001609216 _____ (TODO: <Company name>) [Bestand niet getekend] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll

==================== Alternate Data Streams (gefilterd) ========

==================== Veilige Modus (gefilterd) ==================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Bestandskoppeling (gefilterd) =================

==================== Internet Explorer vertrouwde/beperkte toegang ==========

==================== Hosts inhoud: =========================

(Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.)

2012-07-26 06:26 - 2012-07-26 06:26 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Andere gebieden ===========================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Skype\Phone\
HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\ASUS\wallpapers\ASUS.jpg
DNS Servers: 84.116.46.21 - 84.116.46.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

HKU\S-1-5-21-2506021822-1520974999-1557825404-1001\...\StartupApproved\Run: => "Skype"

==================== Firewall regels (gefilterd) ================

(Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [{8F742722-EB63-4B60-8280-435B83C49A8F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CACDB418-5466-44CB-97EB-234638B11E8D}] => (Allow) LPort=2869
FirewallRules: [{08DF9207-336B-4D4F-B1FD-122BC45D324B}] => (Allow) LPort=1900
FirewallRules: [{822AD0A9-847D-472C-BFBD-CD644C5B4554}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{7B9EC19C-4EF3-4AF3-A011-ECDCFA39D64C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{C3B7C783-B680-4AC2-B14B-ABC85F4BD4A8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{892A46FE-4D11-4461-BE22-2B70252ED79C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1D68981C-D964-424E-B7F3-D140C2DDD25E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{21F5C2D4-A71A-4FA4-883D-E98AF41425F5}] => (Allow) C:\Users\Stuntroom\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{94E74343-9EA0-4BC7-BFE7-72194E5532E6}] => (Allow) C:\Users\Stuntroom\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{563FE419-663C-4F80-ACAF-89432568290C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AB67D454-A779-4CAE-8EC7-377CCD503A32}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{258E19E6-2DE4-4486-B5A2-3D64F3731482}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN) [Bestand niet getekend]
FirewallRules: [UDP Query User{98CF907B-3E39-4E8B-99C8-37B497E4053B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN) [Bestand niet getekend]
FirewallRules: [{E0562D9C-6253-4712-BE51-BC1603ACD539}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{92236BB9-DA44-40A7-8811-CBC9BAC869A2}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\ActivePresenter.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{6415E62E-3A05-4395-95B1-E6CDC734FD84}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{1FD1EEF3-9881-4E91-8A73-55430A825B9D}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlhtmlrenderer.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{BE5B16D0-5789-4DA3-A71F-D8D5AEF8A826}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{F60A7301-F46D-4084-A32E-BF45CB61E9D1}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlactivator.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{A1F90753-9442-4A1A-A668-F8BC84268B33}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{8CE92A98-D032-4B6D-9337-CE0EF0AFDD4E}] => (Allow) C:\Program Files (x86)\ATOMI\ActivePresenter\rlupdater.exe (ATOMI SYSTEMS, INC. -> Atomi Systems, Inc.)
FirewallRules: [{E932B269-2B55-4B76-87FE-38D07E8F33E8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{FBE32E7A-CA08-498D-B50B-3EF0EB0F535B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{90570FB2-A651-4951-8C0E-EC3834B0B3DD}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{176B33CD-EF9B-46D4-B83B-25EE89B550DC}] => (Allow) C:\Users\Stuntroom\AppData\Local\Kingsoft\WPS Office\11.2.0.8942\office6\wps.exe Geen bestand
FirewallRules: [{428E4D7E-203C-4542-9653-AC3A2BC632ED}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [Bestand niet getekend]
FirewallRules: [{7DA07F73-968D-402A-9F26-C3279704C18D}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [Bestand niet getekend]
FirewallRules: [{4503DF22-7EF5-4444-9095-593B1B041D6B}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4FCC3D1E-6835-48E0-AE1A-81DD835D1754}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E1E76109-FD1D-4E85-A502-33F5214699C6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0093A8B8-A521-46A8-AEB2-33C84E7B2E3E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{583B09A4-7EBC-4BEF-B562-91049891A05B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CF59D23F-3B60-4936-B692-47F3FD9260F8}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E7624D87-2680-4FFC-8656-1E9D1F938833}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Herstelpunten =========================

09-02-2020 05:11:23 Gepland controlepunt

==================== Defecte Apparaatbeheer Apparaten ============

Name: Qualcomm Atheros AR3012 Bluetooth 4.0 + HS
Description: Qualcomm Atheros AR3012 Bluetooth 4.0 + HS
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Eventlog fouten: ========================

Applicatiefouten:
==================
Error: (02/11/2020 05:10:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: LiveUpdate.exe, versie: 3.2.5.0, tijdstempel: 0x520c29b7
Naam van module met fout: ntdll.dll, versie: 6.2.9200.16420, tijdstempel: 0x505aaa82
Uitzonderingscode: 0xc0000005
Foutmarge: 0x0004f855
Id van proces met fout: 0x168c
Starttijd van toepassing met fout: 0x01d5e08c43f5d840
Pad naar toepassing met fout: C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
Pad naar module met fout: C:\Windows\SYSTEM32\ntdll.dll
Rapport-id: 7ad6a0d5-4c84-11ea-803b-e03f49cf7020
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (02/11/2020 05:10:41 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: LiveUpdate.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: uitzonderingscode c0000005, uitzonderingsadres 7711F855

Error: (02/11/2020 05:08:31 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Kan activeringscontext voor C:\Program Files (x86)\Audacity\audacity.exe niet maken. Fout in manifest of beleidsbestand  op regel .
Een onderdeelversie die nodig is voor de toepassing, conflicteert met een andere onderdeelversie die reeds actief is.
Conflicterende onderdelen zijn:
Onderdeel 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Onderdeel 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (02/11/2020 04:34:45 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Kan activeringscontext voor C:\Program Files (x86)\Audacity\audacity.exe niet maken. Fout in manifest of beleidsbestand  op regel .
Een onderdeelversie die nodig is voor de toepassing, conflicteert met een andere onderdeelversie die reeds actief is.
Conflicterende onderdelen zijn:
Onderdeel 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Onderdeel 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (02/11/2020 04:13:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: LiveUpdate.exe, versie: 3.2.5.0, tijdstempel: 0x520c29b7
Naam van module met fout: KERNELBASE.dll, versie: 6.2.9200.16451, tijdstempel: 0x50988950
Uitzonderingscode: 0xe06d7363
Foutmarge: 0x00014b32
Id van proces met fout: 0x812c
Starttijd van toepassing met fout: 0x01d5e07f6da085eb
Pad naar toepassing met fout: C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
Pad naar module met fout: C:\Windows\SYSTEM32\KERNELBASE.dll
Rapport-id: 797839d6-4c7c-11ea-8039-e03f49cf7020
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (02/11/2020 04:13:27 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Toepassing: LiveUpdate.exe
Framework-versie: v4.0.30319
Beschrijving: het proces is beëindigd als gevolg van een onverwerkte uitzondering.
Uitzonderingsinformatie: uitzonderingscode e06d7363, uitzonderingsadres 757D4B32

Error: (02/11/2020 04:06:42 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Kan activeringscontext voor C:\Program Files (x86)\Audacity\audacity.exe niet maken. Fout in manifest of beleidsbestand  op regel .
Een onderdeelversie die nodig is voor de toepassing, conflicteert met een andere onderdeelversie die reeds actief is.
Conflicterende onderdelen zijn:
Onderdeel 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Onderdeel 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (02/11/2020 03:02:33 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Kan activeringscontext voor C:\Program Files (x86)\Audacity\audacity.exe niet maken. Fout in manifest of beleidsbestand  op regel .
Een onderdeelversie die nodig is voor de toepassing, conflicteert met een andere onderdeelversie die reeds actief is.
Conflicterende onderdelen zijn:
Onderdeel 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Onderdeel 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.


Systeemfouten:
=============
Error: (02/11/2020 04:34:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De McAfee WebAdvisor-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (02/11/2020 04:33:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: De IPsec Policy Agent-service is gestopt met de volgende foutcode:
De service voor verificatie is onbekend.
.

Error: (02/11/2020 04:33:08 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: De LaCieDesktopManagerDaemon-service is bij het starten vastgelopen.

Error: (02/11/2020 04:32:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De McAfee WebAdvisor-service kan vanwege de volgende fout niet worden gestart:
Het systeem kan het opgegeven bestand niet vinden.

Error: (02/11/2020 04:32:11 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: De vorige afsluiting van het systeem om 04:20:20 op ‎11-‎2-‎2020 is onverwacht gebeurd.

Error: (02/11/2020 03:02:09 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: GenieTimelineService.

Error: (02/11/2020 02:09:29 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: GenieTimelineService.

Error: (02/11/2020 02:08:59 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op een reactie op een transactie van deze service: GenieTimelineService.


Windows Defender:
===================================
Date: 2017-06-06 21:36:28.172
Description:
De Windows Defender-scan is gestopt vóór voltooiing.
Scan-id: {B844AD4B-1B1D-4921-AB9B-8EF8D3530496}
Scantype: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

Date: 2017-06-06 20:45:42.069
Description:
De Windows Defender-scan is gestopt vóór voltooiing.
Scan-id: {5E8E96F6-3737-4E51-B6C0-70FAEFE642E6}
Scantype: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

Date: 2017-05-10 11:31:04.439
Description:
De Windows Defender-scan is gestopt vóór voltooiing.
Scan-id: {D965DC08-45C6-434D-8704-D17A2C2C9315}
Scantype: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

Date: 2017-05-08 12:57:54.706
Description:
De Windows Defender-scan is gestopt vóór voltooiing.
Scan-id: {51AF7F76-4466-4DD1-825F-77F030331070}
Scantype: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

Date: 2017-05-08 12:45:34.327
Description:
De Windows Defender-scan is gestopt vóór voltooiing.
Scan-id: {042701DE-74D9-4762-862B-9E2A2F626914}
Scantype: Antimalware
Scanparameters: Snelle scan
Gebruiker: NT AUTHORITY\SYSTEM

==================== Geheugen info ===========================

BIOS: American Megatrends Inc. S400CA.209 05/14/2013
Moederbord: ASUSTeK COMPUTER INC. S400CA
Processor: Intel® Core™ i3-3217U CPU @ 1.80GHz
Percentage geheugen in gebruik: 65%
Totaal fysiek RAM-geheugen: 3981.7 MB
Beschikbaar fysiek RAM-geheugen: 1355.18 MB
Totaal Virtueel geheugen: 7565.7 MB
Beschikbaar Virtueel geheugen: 4504.77 MB

==================== Schijven ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:16.51 GB) NTFS ==>[systeem met boot componenten (verkregen van schijf)]
Drive d: (Data) (Fixed) (Total:258.34 GB) (Free:5.8 GB) NTFS
Drive g: (Lexar) (Removable) (Total:14.9 GB) (Free:10.69 GB) FAT32

\\?\Volume{0c01494d-adf2-4e9f-a40f-43b471a8405b}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.5 GB) NTFS
\\?\Volume{4440628d-75ec-441a-9232-aa7d96ff2c7e}\ (Restore) (Fixed) (Total:20.01 GB) (Free:8.41 GB) NTFS

==================== MBR & Partitietabel ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 0FE4DC0A)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=0C)

==================== Einde van Addition.txt =======================


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 22,349 posts
  • MVP

Uninstall:

 

McAfee LiveSafe – Internet Security

McAfee WebAdvisor

 

Get the McAfee Consumer Product Removal tool:

 

http://us.mcafee.com...s/mcpr/mcpr.asp

Download, Save and right click and Run As Admin.

 

Reboot.

 

Get the free Avast offline version:

https://www.avast.co...ST&locale=en-us

Download, Save and right click and Run As Admin.

Do not accept free trial or demos.  Stick with the Basic (free version) and uncheck any optional software such as Chrome or Dropbox.  Once it installs it will ask you to do a quick scan.  Instead of the Quick scan set it up to do a Boot Time Scan:

 

Click on the Avast ball.  Then click on Protection, then on Antivirus, then on Other Scans then on Boot-time Scan.  Click on Install Special Definitions.  Click on Run on Next PC Reboot.

  Reboot and let it run a scan.  It may take hours. so I usually let ti run while I sleep.
Once it finishes it should load windows.   Mute your speakers so it doesn't wake you up when Windows boots.

When you reboot you will see the scan start.  It will tell you where it saves its log.  Usually it's C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.   This is a hidden location so you will need to tell Windows to let you see it:

http://www.howtogeek...-windows-vista/

Copy and paste the text from the log to a Reply when done.

 

Uninstall or update with the latest version:

 

ASUS Live Update

 

Audacity 2.1.3

 

Genie Timeline

 

LaCie Desktop Manager 2.7.0

They are causing errors.

 

Also uninstall all of the office like programs that you don't use:

LibreOffice 6.3.1.2

WPS Office (11.2.0.9144)

OpenOffice 4.1.5

Microsoft Office 365

(Keep the one you do use.)

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   310bytes   9 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.


 



 

 


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP