agie

Pffff....... Gelukt .......! Programma staat bij mij niet in de lijst , maar door in het zoekvak 'printer' in te typen en de bestandslocatie te openen kwam ik de 'easy printer manager'' map automatisch bij de Aplicatie terecht en geopend en de snelkoppeling gevonden .....!!1 :congrats:Bedankt voor je oneindig geduld om me hierbij te helpen, jullie hulp is GOUD waard. In ieder geval kan ik nu weer scannen/afdrukken.

Sorry....maar programma's staat niet in de lijst vermeld bij mijn start menu knop , ik gebruik de 'oude startmenu knop' ......... Helaas kan ik geen afbeelding hiervan maken , maar zoek ik in de lijst en klik ik Samsung aan dan krijg ik alleen de het volgende te zien . Open ik windows verkenner en open ik de mappen dan krijg ik te zien wat in bericht 9 staat........verder weet ik niet wat te doen!

Ook bij programma's krijg ik dezelfde info op het scherm te zien zoals in bericht 9.

Als ik met de rechtermuis op Samsungprinter klik , krijg ik het algemene keuzemenu te zien: openen- kopiëren .verwijderen enz. Wel krijg ik als ik de PrtSc-knop druk de vertrouwde applicatie te zien en ook als ik via de startpagina van windows 8.1 aanklik 9 (ik werk nog met het oude startmenuknop) maar daarna krijg ik toch de melding dat ik een scanapplicatie moet downloaden en kom dan weer terug op de pagina zoals te zien in bericht 21.

De installatie CD heb ik nog een keer geprobeerd nadat ik de link had geprobeerd en na installatie geen resultaat had. Dus niet beide tegelijk. maar ik kan me voorstellen dat dit verwarring brengt , sorry hiervoor! Dus samengevat..... de printer en scanner werken maar ik heb nog steeds niet het icoon/ snelkoppeling voor het instellen van de scanner. Onderstaande software die ik heb geïnstalleerd.

Nee, deze afbeelding kwam nadat ik opnieuw de installatie CD had geïnstalleerd. De scanner werkt wel. - - - Updated - - - Bedoel je met het tweede venster deze afbeelding? deze afbeelding kwam nadat ik opnieuw de installatie CD had geïnstalleerd.

De printer drukt af en ik werk via een usb-kabel. De installatie CD is van 2012 en geeft verder geen info over windows e.d, maar voordat ik fabrieksherstel heb toegepast was de printer via de CD gewoon geïnstalleerd met de icoon . Opnieuw alles verwijder en geïnstalleerd maar helaas geen icoon te zien. Onderstaande afbeelding laten zien wat ik precies heb gedownload - ik hoop de goede want voor mij was het een gok of ik de juiste download heb gekozen. Daarna gaf een diagnostisch hulpprogramma aan dat er nog het een en ander download's nodig waren maar............helaas!

Beide gedownload en bij "meer weergeven' nog de :"scanassistent"gedownload maar dat geeft geen resultaat . Wanneer ik op iets aanklik geeft dit een 'leeg venster".- zie afbeeldingen. Deze lijkt trouwens niet op mijn voorgaande scan/afdruk - icoon!

afbeeldingen bij bericht 12

Alles verwijderd en opnieuw de software via de link gedownload maar....ik krijg toch onderstaande melding dat ik de scan/afdruk applicatie moet downloaden en die verwijst me weer naar de link uit bericht 4.

Ik begrijp niet goed wat je bedoelt met ': Installeer dan de software opnieuw via de link uit bericht 4.' zoals ik in bericht 5 aangaf zie ik mijn printer niet erbij staan . Dus wat moet ik downloaden?

De mappen bij het start menu openen zich niet dus heb ik het op deze manier gedaan . Het zijn er nogal wat , maar hier volgen ze : Laatste mappen zijn niet van belang denk ik , maar mocht dit anders zijn dan hoor ik dit van je.

Oké..... dat heb ik al wat geprobeerd maar ik weet niet tussen al die mappen wat ik precies moet aanklikken!

Via start -> programma's lukt het me niet -zie afbeelding . En het gaat om deze printer :

Oké....het is een SCX - 3400 Samsung laserprinter.

Opnieuw mijn printer met een CD geïnstalleerd maar ik mis het icoon wat ik in het verleden had om te scannen en voor documenten. Normaal wordt er automatisch een icoon op het bureaublad geplaatst maar nu niet. Ik weet dat het is simpel maar ik kom er niet zo snel uit, graag weer wat hulp a.u.b?

Nog een poging gedaan en de upgrade naar Windows 8.1 uiteindelijk gelukt ! Probleem daardoor gelukkig opgelost.

Hallo allemaal. Recent heb ik een fabrieksherstel moeten doen op mijn laptop maar ik bemerk dat ik veel van de apps die te maken hebben met de zoekfunctie-apparaten -en instellingen kwijt ben. Tijdelijk heb ik nu ClassicShell startmenu toegevoegd om mee te werken maar zou natuurlijk graag de normale instelling terug willen. Volgens een melding die ik krijg van microsoft heb ik nog de oudere windows 8 op de laptop maar de gratis update werkt niet . Ook mijn printer zie ik niet terug op de pc terwijl ik wel kan printen . Zo....weet iemand hoe ik dit weer in orde krijg?

Inderdaad is dit achteraf niet zo geweldig idee......maar achteraf en al doende leert men!

Het document is met Apache OpenOffice gemaakt.

Heel duidelijk, dank je wel!

Bij windows 8 is mijn laptop vergrendeld met een wachtwoord. Graag zou ik deze beginstelling wijzigen zodat ik zonder wachtwoord in mijn pc kan. Is dit mogelijk?

OTL logfile created on: 4-10-2014 21:58:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hfm\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16433) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,82 Gb Total Physical Memory | 2,09 Gb Available Physical Memory | 54,62% Memory free 7,32 Gb Paging File | 5,46 Gb Available in Paging File | 74,56% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 443,51 Gb Total Space | 401,72 Gb Free Space | 90,58% Space Free | Partition Type: NTFS Computer Name: RIEKIE | User Name: hfm | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2014-10-04 21:57:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\hfm\Downloads\OTL.com PRC - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe PRC - [2014-09-05 16:29:52 | 003,593,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgui.exe PRC - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe PRC - [2012-12-10 10:39:12 | 000,475,984 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe PRC - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe PRC - [2012-12-10 10:39:08 | 001,192,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe PRC - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe PRC - [2012-11-03 02:36:24 | 000,624,192 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe PRC - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe PRC - [2012-09-20 02:07:44 | 000,995,856 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe PRC - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe PRC - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe PRC - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe PRC - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe PRC - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe ========== Modules (No Company Name) ========== MOD - [2012-11-03 02:38:02 | 000,465,384 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll MOD - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe MOD - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe ========== Services (SafeList) ========== SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire) SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield) SRV:64bit: - [2012-11-17 00:07:20 | 000,469,648 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe -- (DeviceFastLaneService) SRV:64bit: - [2012-10-29 05:20:49 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2012-10-23 20:26:26 | 000,658,064 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc) SRV:64bit: - [2012-09-20 11:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2012-09-20 08:32:59 | 000,169,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2012-09-20 08:32:58 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2012-09-20 08:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2012-07-26 05:17:59 | 000,015,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:64bit: - [2012-07-26 05:08:04 | 001,968,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2012-07-26 05:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2012-07-26 05:06:36 | 000,463,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2012-07-26 05:06:00 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2012-07-26 05:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2012-04-20 23:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel® SRV - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent) SRV - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd) SRV - [2014-03-13 11:42:00 | 000,836,168 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Windows\Temp\0105221412439830mcinst.exe -- (0105221412439830mcinstcleanup) SRV - [2013-03-22 19:30:26 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2013-03-22 19:04:47 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\RfBtnSvc64.exe -- (RfButtonDriverService) SRV - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService) SRV - [2012-11-10 01:06:26 | 000,231,040 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc) SRV - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe -- (CCDMonitorService) SRV - [2012-10-23 05:37:58 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-08-15 20:44:50 | 003,943,104 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) SRV - [2012-07-24 12:00:08 | 002,457,232 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R) SRV - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service) SRV - [2012-07-12 06:10:24 | 000,174,160 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service) SRV - [2010-10-12 19:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) ========== Driver Services (SafeList) ==========

Intussen heb ik de Pc opnieuw in de fabrieksherstel gezet omdat ik mijn wachtwoord had veranderd en dit weer vergeten had en daarom niet in de pc in kon komen. Ik weet niet of dit verder iets uitmaakt maar hier toch het log. Intussen heb ik de Pc opnieuw in de fabrieksherstel gezet omdat ik mijn wachtwoord had veranderd en dit weer vergeten had en daarom niet in de pc in kon komen. Ik weet niet of dit verder iets uitmaakt maar hier toch het log. OTL Extras logfile created on: 4-10-2014 21:58:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hfm\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16433) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,82 Gb Total Physical Memory | 2,09 Gb Available Physical Memory | 54,62% Memory free 7,32 Gb Paging File | 5,46 Gb Available in Paging File | 74,56% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 443,51 Gb Total Space | 401,72 Gb Free Space | 90,58% Space Free | Partition Type: NTFS Computer Name: RIEKIE | User Name: hfm | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-2871391618-1465616402-3070090435-1001\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{09F9EAAE-8D93-4DF8-9E81-3AE9364D4F81}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{07A81045-A0F7-40EA-AEF6-342D192402E4}" = dir=in | name=acer explorer | "{08E96CD1-C26A-4C72-8FBD-3CCB80D99DF7}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe | "{0F81C564-C963-4FB7-AF4E-DF7F542D8E18}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgemca.exe | "{11949497-D45E-4D66-B54C-359E4C56EF23}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | "{13A6FE02-AD6C-4AEB-BD21-CCAC7E35A84F}" = dir=out | name=social jogger | "{17FE250C-A02C-42F2-B237-18B0133931EB}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe | "{1B323B17-762C-4740-80D7-3D9F45A285FD}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe | "{1C113FC3-6CA0-4E1C-9C25-D4CCCD396045}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | "{232679C2-FAC4-4D92-B851-61B2691F837A}" = dir=out | name=adera | "{2334B1D3-CA5B-4688-9A4A-A55F89C98514}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe | "{2592023E-515C-4B4D-9131-605B43DB8EE5}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{2869ED5B-029D-499D-96D7-CF2ED0B1CA8F}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{2C50F9B6-C6A0-4E93-8C45-3A7D87AF5144}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | "{2D4337CD-5992-4D3D-882C-11ABCC4D540B}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe | "{2DAB420C-944E-4D7C-BDAD-554413F6BA81}" = dir=out | name=windows_ie_ac_001 | "{2EA1EEC4-FC6A-4615-8A1F-748BA40E36D2}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe | "{35D07C68-64E1-4BA9-8333-CB4868E30F42}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\ischedulesvc.exe | "{39ADB327-987D-4C0D-ACF7-353FF1FC48C9}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | "{3E089F1D-000A-46DE-B50D-7EBF4C0E7537}" = dir=out | name=acer explorer | "{3F8623A6-8213-4E5D-AD3F-ECFB5CD5D6BA}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | "{42032FA4-D11B-49B7-B261-32FF9A60413F}" = dir=out | name=shark dash | "{45028B55-EC25-411D-B784-BAC4E1899931}" = dir=out | name=cut the rope | "{45561B06-3E68-4128-9886-5C71FC458852}" = dir=out | name=- games app - | "{464D4B4F-5991-4F7C-A8B3-F0CB3ED0C59C}" = dir=out | name=evernote | "{46591D0F-A968-4155-A6AB-AE15ABAC7029}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | "{489B1A36-1238-4127-9592-CB465B3F76EB}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgdiagex.exe | "{4B7B799B-F83D-44CE-A76D-F15A8C4D6183}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | "{5B385A2A-3D20-413E-969F-D9B2FBA48BA3}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\video\videoplayer.exe | "{60B16076-3348-4870-B3AF-1B959BACD8E2}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgnsa.exe | "{61138CDC-8293-4204-97B4-96CC01D51BE4}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgdiagex.exe | "{69120810-F426-43F3-B345-B3AE3EB5EA9C}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe | "{733FAFC8-C020-47A3-AAF7-62508A6DB12C}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | "{7341F6B3-3CB8-4277-A8FB-0584C3264F68}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgemca.exe | "{7466B256-F0BC-43F1-ACDC-5E4C80B2114E}" = dir=out | name=@{microsoft.skypeapp_1.1.0.25_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | "{76655002-6BC8-4625-ADF5-D0B94CE90BD3}" = dir=out | name=weatherbug | "{78354F64-5211-4E4C-8758-84C2D8E8F169}" = dir=out | name=acer crystal eye | "{7A66D30B-6DCC-446A-8FE3-ACFDDD3BADAB}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\backupmanager.exe | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{816B27A6-1CB4-4B56-9A80-DC278251025A}" = dir=out | name=fresh paint | "{860BBC0C-0FD8-4402-A264-5765F24068C3}" = dir=out | name=skitch | "{91E06077-DE6B-47AB-A08D-8288A3961D74}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe | "{92947C6A-7E23-4F63-835A-2FF4AC8E29D4}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\fileexplorer.exe | "{932B982B-00D4-4AAA-A64A-54E429826A6E}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | "{9FC01857-8229-4C6B-A047-F555F1F195C4}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | "{A60D77BD-D577-4B91-BAD8-CB65C7661A84}" = dir=in | name=pinball fx2 | "{A6E9B55A-34C2-4695-ADF6-45ED63BA6F18}" = dir=in | name=evernote | "{AC50563C-3A58-4367-BD9D-91CD8AD29CD3}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{ADA3B9CF-9D6C-4F12-89E4-AE6C4E8F9A45}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe | "{ADE51666-A779-4856-8B79-DF20C7B91EB8}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgnsa.exe | "{B25A8601-B33B-4F04-BB9B-98A60F2E9E00}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{B2709FBE-D93E-4B9F-AA66-A200F2047682}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\movie\playmovie.exe | "{B2879A37-348E-4CC2-BCE8-2A491E244090}" = dir=out | name=tunein radio | "{B916A8C8-CC71-424B-92F4-437AABAC6268}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe | "{BDFEBD7F-9AB7-4F18-8D72-C7ACDCAB8B97}" = dir=out | name=newsxpresso | "{C5016EF6-02F9-49FD-AEA3-0902BB53F5A7}" = dir=in | name=@{microsoft.skypeapp_1.1.0.25_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} | "{C8C3119D-4F7C-4968-9FB9-B6D76DBB7988}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe | "{CC0D80F7-E166-400D-B8C2-5F8BFF9C80AC}" = dir=out | name=the treasures of montezuma 3 | "{CD689DF0-50DB-41CD-8A41-3D620E6189E8}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | "{D25F043C-342A-428E-82E8-9F86C8B62D8D}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{D397962A-77AA-40F8-BC43-8F649B7C377B}" = dir=out | name=pinball fx2 | "{D5D9CACA-AC20-4179-8EC7-5FC1FE8C3057}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe | "{D7B422BD-81F0-4D2F-B735-210CB69E0538}" = dir=out | name=7digital music store | "{DAC97CBC-3AE3-4D99-9FD3-E9C384B8CDD6}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe | "{DAF771FC-2FBD-4FC3-B8AD-CEDE0AA37963}" = dir=out | name=kindle | "{DCBC0FB6-84AE-4410-B52C-19B1514DD7E7}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\video\musicplayer.exe | "{DDE4645B-E50B-4434-9DE7-503E609B0FE0}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{E261A7BD-A850-4F8D-9975-902464157EC8}" = dir=out | name=wordament | "{E58EA945-58C4-421F-86BD-A575ED61A87F}" = dir=out | name=microsoft mahjong | "{E6688760-B312-4313-AB46-CE2C554E8D8F}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{E7DCA96A-0C95-4BAC-9A91-3DA266B10DE7}" = dir=out | name=microsoft solitaire collection | "{E88024C7-FED9-4593-BEDE-921D9E4E1140}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | "{F1588A75-A67F-4B9E-AB6A-184C12F47E9B}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe | "{FBFDF340-18F8-4143-9AF3-6A1DAA1ABB06}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}" = Acer Recovery Management "{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker "{1C5B64D4-6268-41A9-868B-209B100D0A06}" = AVG 2015 "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder "{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}" = Acer Device Fast-lane "{426E8080-E591-436B-9F7A-3C61D0AB742D}" = AVG 2015 "{8215A318-CC27-435E-B3EA-2E3443C8998C}" = Acer Instant Update Service "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables "{91F52DE4-B789-42B0-9311-A349F10E5479}" = Acer Power Management "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver "{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64) "{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64 "{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client "AVG" = AVG 2015 "CCleaner" = CCleaner [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros WLAN and Bluetooth Client Installation Program "{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver "{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}" = clear.fi SDK- Movie 2 "{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime "{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4 "{3D9CB654-99AD-4301-89C6-0D12A790767C}" = Identity Card "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology "{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online Backup "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components "{6D2BBE1D-E600-4695-BA37-0B0E605542CC}" = Office Addin "{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime "{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office "{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Backup Manager v4 "{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}" = AcerCloud "{A694AF57-9891-4D62-824C-7E55A1361A14}" = eBay Worldwide "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4 "{B5AD89F2-03D3-4206-8487-018298007DD0}" = clear.fi Photo "{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader "{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder "{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}" = AcerCloud Docs "{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9 "{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5 "{E9AF1707-3F3A-49E2-8345-4F2D629D0876}" = clear.fi Media "{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}" = clear.fi SDK - Video 2 "{EE26E302-876A-48D9-9058-3129E5B99999}" = Live Updater "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel® SDK for OpenCL - CPU Only Runtime Package "Google Chrome" = Google Chrome "InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite "InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Acer Backup Manager "InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9 "InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5 "LManager" = Launch Manager "Microsoft Visual Studio 2005 Tools for Office Runtime" = Visual Studio 2005 Tools for Office Second Edition Runtime "NARA" = Norton Online Backup ARA "Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime "WildTangent wildgames Master Uninstall" = WildTangent Games "WTA-06164f83-600f-43b3-a6f0-2bdd1c098dd9" = Tales of Lagoona "WTA-30929979-475b-4a24-8c60-9183876bd07d" = John Deere Drive Green "WTA-396d4589-f5c2-410e-80a0-7ef6547004e8" = Zuma's Revenge "WTA-3f4ca42b-7330-4c96-ba76-41c6ac3955cb" = Penguins! "WTA-6d428485-e7dc-4da7-bc09-8f82440b665a" = Delicious: Emily's True Love Premium Edition "WTA-6d88c81d-573f-4c4e-af60-8d7d0c7b0c56" = Magic Academy "WTA-71745360-d024-4479-aa57-05c65e283038" = Polar Bowler "WTA-774cc6dc-30b0-49aa-a849-cfec0b8f31f7" = Plants vs. Zombies - Game of the Year "WTA-8ab19552-f4e2-4759-a656-f0f303337e35" = Governor of Poker 2 Premium Edition "WTA-8bb196cb-811e-45f1-8a05-40d21acb5875" = Aloha TriPeaks "WTA-92811e0a-6697-4252-9df1-609d0aa82924" = Jewel Match 3 "WTA-b5d4f3f8-e15d-45a3-b411-26bdee860d78" = Agatha Christie - Death on the Nile "WTA-b7b4acc2-36b1-4445-b7fd-b23f1102f1c6" = Island Tribe "WTA-ce53cf6d-7dde-4e27-a1c9-94bcb088699d" = Bejeweled 3 ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 4-10-2014 13:10:40 | Computer Name = Riekie | Source = McLogEvent | ID = 5022 Description = Error - 4-10-2014 14:42:23 | Computer Name = Riekie | Source = Microsoft-Windows-Immersive-Shell | ID = 2486 Description = App Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App is niet gestart binnen de toegewezen tijd. Error - 4-10-2014 14:42:47 | Computer Name = Riekie | Source = Application Hang | ID = 1002 Description = Het programma Solitaire.exe, versie 1.0.0.0 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm. Proces-id: 778 Starttijd: 01cfe002e6c28aa1 Eindtijd: 4294967295 Toepassingspad: C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_1.1.0.0_x86__8wekyb3d8bbwe\Solitaire.exe Rapport-id: 2ee70cda-4bf6-11e4-be70-7054d292e9c4 Volledige pakketnaam met fout: Microsoft.MicrosoftSolitaireCollection_1.1.0.0_x86__8wekyb3d8bbwe Relatieve toepassings-id van pakket met fout: App Error - 4-10-2014 14:42:47 | Computer Name = Riekie | Source = Microsoft-Windows-Immersive-Shell | ID = 5973 Description = Het activeren van de app Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App is mislukt door de fout -2144927142. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error - 4-10-2014 15:18:10 | Computer Name = Riekie | Source = Application Error | ID = 1000 Description = Naam van toepassing met fout: mcupdmgr.exe, versie: 0.0.0.0, tijdstempel: 0x4fe3c9aa Naam van module met fout: ntdll.dll, versie: 6.2.9200.16420, tijdstempel: 0x505ab405 Uitzonderingscode: 0xc0000374 Foutmarge: 0x00000000000ea485 Id van proces met fout: 0xa78 Starttijd van toepassing met fout: 0x01cfdff53fc7ab2a Pad naar toepassing met fout: c:\PROGRA~1\mcafee\msc\mcupdmgr.exe Pad naar module met fout: C:\WINDOWS\SYSTEM32\ntdll.dll Rapport-id: 2d66fc5a-4bfb-11e4-be70-7054d292e9c4 Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: [ System Events ] Error - 4-10-2014 20:49:10 | Computer Name = Riekie | Source = volmgr | ID = 262190 Description = Crashdumpinitialisatie is mislukt! < End of report > - - - Updated - - - ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7'>http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE:64bit: - HKLM\..\SearchScopes\{8C8BDECA-373C-43B4-B852-B148C64FFFF7}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7'>http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{8C8BDECA-373C-43B4-B852-B148C64FFFF7}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com IE - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7'>http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PRFF_nlNL608 IE - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () ========== Chrome ========== CHR - plugin: Error reading preferences file CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ CHR - Extension: No name found = C:\Users\hfm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2012-07-26 07:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2:64bit: - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3:64bit: - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O4:64bit: - HKLM..\Run: [btPreLoad] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe () O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [igfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2015\avgui.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Dolby Home Theater v4] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.) O4 - HKLM..\Run: [LManager] File not found O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation) O4 - HKU\S-1-5-21-2871391618-1465616402-3070090435-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.54.40.25 212.54.44.54 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5C0D780B-84BD-45CF-A100-3AD026C77146}: DhcpNameServer = 192.168.48.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9921FE32-9FB4-4DC9-A479-078F37FE1ED9}: DhcpNameServer = 212.54.40.25 212.54.44.54 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2014-10-05 02:49:18 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2014-10-04 19:56:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2014-10-04 19:56:03 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Adobe [2014-10-04 19:53:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Avg_Update_0914avt [2014-10-04 19:38:23 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\AVG2015 [2014-10-04 19:37:05 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\TuneUp Software [2014-10-04 19:37:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG [2014-10-04 19:36:55 | 000,000,000 | -H-D | C] -- C:\$AVG [2014-10-04 19:36:55 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2015 [2014-10-04 19:36:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG [2014-10-04 19:32:22 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\clear.fi [2014-10-04 19:04:03 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Google [2014-10-04 19:03:36 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2014-10-04 19:03:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2014-10-04 19:02:46 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2014-10-04 19:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Google [2014-10-04 19:02:00 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Google [2014-10-04 19:02:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2014-10-04 19:00:46 | 000,059,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2014-10-04 19:00:43 | 001,623,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll [2014-10-04 19:00:43 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll [2014-10-04 19:00:43 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll [2014-10-04 18:59:51 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wushareduxresources.dll [2014-10-04 18:59:51 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2014-10-04 18:59:47 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuaext.dll [2014-10-04 18:59:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2014-10-04 18:59:42 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\MFAData [2014-10-04 18:59:42 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData [2014-10-04 18:59:42 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Avg2015 [2014-10-04 18:33:34 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\EgisTec IPS [2014-10-04 18:26:58 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Atheros [2014-10-04 18:26:08 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer [2014-10-04 18:26:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OEM [2014-10-04 18:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Accessory Store [2014-10-04 18:25:25 | 000,000,000 | R--D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2014-10-04 18:25:25 | 000,000,000 | R--D | C] -- C:\Users\hfm\Searches [2014-10-04 18:25:25 | 000,000,000 | R--D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2014-10-04 18:25:24 | 000,000,000 | R--D | C] -- C:\Users\hfm\Contacts [2014-10-04 18:25:24 | 000,000,000 | -H-D | C] -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned [2014-10-04 18:25:07 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\lm [2014-10-04 18:24:41 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Macromedia [2014-10-04 18:24:40 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Adobe [2014-10-04 18:23:50 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\VirtualStore [2014-10-04 18:23:38 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Packages [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\AppData\Local\Temporary Internet Files [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Sjablonen [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\SendTo [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Recent [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Netwerkprinteromgeving [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\NetHood [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Documents\Mijn video's [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Documents\Mijn muziek [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Mijn documenten [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Documents\Mijn afbeeldingen [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Menu Start [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Local Settings [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\AppData\Local\Geschiedenis [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Cookies [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\Application Data [2014-10-04 18:23:29 | 000,000,000 | -HSD | C] -- C:\Users\hfm\AppData\Local\Application Data [2014-10-04 18:23:28 | 000,000,000 | --SD | C] -- C:\Users\hfm\AppData\Roaming\Microsoft [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Videos [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Saved Games [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Pictures [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Music [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Links [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Favorites [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Downloads [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Documents [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\Desktop [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2014-10-04 18:23:28 | 000,000,000 | R--D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2014-10-04 18:23:28 | 000,000,000 | -H-D | C] -- C:\Users\hfm\AppData [2014-10-04 18:23:28 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Temp [2014-10-04 18:23:28 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Local\Microsoft [2014-10-04 18:23:28 | 000,000,000 | ---D | C] -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ========== Files - Modified Within 30 Days ========== [2014-10-05 02:54:01 | 000,796,920 | ---- | M] () -- C:\WINDOWS\SysNative\perfh013.dat [2014-10-05 02:54:01 | 000,790,022 | ---- | M] () -- C:\WINDOWS\SysNative\perfh00C.dat [2014-10-05 02:54:01 | 000,710,244 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2014-10-05 02:54:01 | 000,159,176 | ---- | M] () -- C:\WINDOWS\SysNative\perfc013.dat [2014-10-05 02:54:01 | 000,155,084 | ---- | M] () -- C:\WINDOWS\SysNative\perfc00C.dat [2014-10-05 02:54:01 | 000,132,614 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2014-10-04 21:13:00 | 000,001,064 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2014-10-04 21:11:20 | 000,001,060 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2014-10-04 21:11:04 | 000,002,307 | ---- | M] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2014-10-04 21:09:58 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2014-10-04 19:37:05 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2015.lnk [2014-10-04 19:03:40 | 000,000,826 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2014-10-04 19:03:33 | 000,002,283 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2014-10-04 18:28:17 | 002,737,524 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2014-10-04 18:27:18 | 000,001,420 | ---- | M] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2014-10-04 18:22:38 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2014-10-04 18:22:35 | 3281,846,272 | -HS- | M] () -- C:\hiberfil.sys ========== Files Created - No Company Name ========== [2014-10-05 02:49:18 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2014-10-05 02:49:15 | 3281,846,272 | -HS- | C] () -- C:\hiberfil.sys [2014-10-04 19:37:05 | 000,000,979 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2015.lnk [2014-10-04 19:03:40 | 000,000,826 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2014-10-04 19:03:33 | 000,002,307 | ---- | C] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2014-10-04 19:03:33 | 000,002,283 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2014-10-04 19:02:07 | 000,001,064 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2014-10-04 19:02:05 | 000,001,060 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2014-10-04 18:27:18 | 000,001,420 | ---- | C] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2014-10-04 18:25:18 | 000,001,426 | ---- | C] () -- C:\Users\hfm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2014-10-04 18:23:28 | 000,000,352 | ---- | C] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2014-10-04 18:23:28 | 000,000,334 | ---- | C] () -- C:\Users\hfm\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2013-03-22 19:08:43 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2012-12-20 05:44:44 | 000,083,968 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll [2012-12-20 05:22:52 | 000,272,928 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin [2012-12-20 05:22:49 | 000,064,512 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll [2012-12-20 05:22:48 | 000,963,452 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012-10-11 07:45:39 | 019,789,824 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-10-11 07:07:29 | 017,560,576 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] < End of report > - - - Updated - - - OTL logfile created on: 4-10-2014 21:58:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hfm\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16433) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,82 Gb Total Physical Memory | 2,09 Gb Available Physical Memory | 54,62% Memory free 7,32 Gb Paging File | 5,46 Gb Available in Paging File | 74,56% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 443,51 Gb Total Space | 401,72 Gb Free Space | 90,58% Space Free | Partition Type: NTFS Computer Name: RIEKIE | User Name: hfm | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2014-10-04 21:57:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\hfm\Downloads\OTL.com PRC - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe PRC - [2014-09-05 16:29:52 | 003,593,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgui.exe PRC - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe PRC - [2012-12-10 10:39:12 | 000,475,984 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe PRC - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe PRC - [2012-12-10 10:39:08 | 001,192,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe PRC - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe PRC - [2012-11-03 02:36:24 | 000,624,192 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe PRC - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe PRC - [2012-09-20 02:07:44 | 000,995,856 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe PRC - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe PRC - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe PRC - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe PRC - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe PRC - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe ========== Modules (No Company Name) ========== MOD - [2012-11-03 02:38:02 | 000,465,384 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll MOD - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe MOD - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe ========== Services (SafeList) ========== SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire) SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield) SRV:64bit: - [2012-11-17 00:07:20 | 000,469,648 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe -- (DeviceFastLaneService) SRV:64bit: - [2012-10-29 05:20:49 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2012-10-23 20:26:26 | 000,658,064 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc) SRV:64bit: - [2012-09-20 11:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2012-09-20 08:32:59 | 000,169,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2012-09-20 08:32:58 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2012-09-20 08:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2012-07-26 05:17:59 | 000,015,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:64bit: - [2012-07-26 05:08:04 | 001,968,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2012-07-26 05:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2012-07-26 05:06:36 | 000,463,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2012-07-26 05:06:00 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2012-07-26 05:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2012-04-20 23:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel® SRV - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent) SRV - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd) SRV - [2014-03-13 11:42:00 | 000,836,168 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Windows\Temp\0105221412439830mcinst.exe -- (0105221412439830mcinstcleanup) SRV - [2013-03-22 19:30:26 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2013-03-22 19:04:47 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\RfBtnSvc64.exe -- (RfButtonDriverService) SRV - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService) SRV - [2012-11-10 01:06:26 | 000,231,040 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc) SRV - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe -- (CCDMonitorService) SRV - [2012-10-23 05:37:58 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-08-15 20:44:50 | 003,943,104 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) SRV - [2012-07-24 12:00:08 | 002,457,232 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R) SRV - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service) SRV - [2012-07-12 06:10:24 | 000,174,160 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service) SRV - [2010-10-12 19:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) ========== Driver Services (SafeList) ========== - - - Updated - - - OTL logfile created on: 4-10-2014 21:58:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hfm\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16433) Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy 3,82 Gb Total Physical Memory | 2,09 Gb Available Physical Memory | 54,62% Memory free 7,32 Gb Paging File | 5,46 Gb Available in Paging File | 74,56% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 443,51 Gb Total Space | 401,72 Gb Free Space | 90,58% Space Free | Partition Type: NTFS Computer Name: RIEKIE | User Name: hfm | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2014-10-04 21:57:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\hfm\Downloads\OTL.com PRC - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe PRC - [2014-09-05 16:29:52 | 003,593,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgui.exe PRC - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe PRC - [2012-12-10 10:39:12 | 000,475,984 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe PRC - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe PRC - [2012-12-10 10:39:08 | 001,192,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe PRC - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe PRC - [2012-11-03 02:36:24 | 000,624,192 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe PRC - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe PRC - [2012-09-20 02:07:44 | 000,995,856 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe PRC - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe PRC - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe PRC - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe PRC - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe PRC - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe ========== Modules (No Company Name) ========== MOD - [2012-11-03 02:38:02 | 000,465,384 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll MOD - [2012-08-23 01:04:22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe MOD - [2012-08-23 01:04:20 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe ========== Services (SafeList) ========== SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire) SRV:64bit: - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield) SRV:64bit: - [2012-11-17 00:07:20 | 000,469,648 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe -- (DeviceFastLaneService) SRV:64bit: - [2012-10-29 05:20:49 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2012-10-23 20:26:26 | 000,658,064 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc) SRV:64bit: - [2012-09-20 11:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2012-09-20 08:32:59 | 000,169,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2012-09-20 08:32:58 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2012-09-20 08:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2012-07-26 05:17:59 | 000,015,440 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:64bit: - [2012-07-26 05:08:04 | 001,968,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2012-07-26 05:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2012-07-26 05:06:36 | 000,463,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2012-07-26 05:06:00 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2012-07-26 05:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2012-04-20 23:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel® SRV - [2014-09-05 16:34:22 | 003,364,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent) SRV - [2014-09-05 16:23:18 | 000,293,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd) SRV - [2014-03-13 11:42:00 | 000,836,168 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Windows\Temp\0105221412439830mcinst.exe -- (0105221412439830mcinstcleanup) SRV - [2013-03-22 19:30:26 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2013-03-22 19:04:47 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\RfBtnSvc64.exe -- (RfButtonDriverService) SRV - [2012-12-10 10:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService) SRV - [2012-11-10 01:06:26 | 000,231,040 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc) SRV - [2012-11-03 02:36:52 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2012-10-26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe -- (CCDMonitorService) SRV - [2012-10-23 05:37:58 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2012-09-20 10:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-08-15 20:44:50 | 003,943,104 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc) SRV - [2012-07-24 12:00:08 | 002,457,232 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R) SRV - [2012-07-17 11:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-07-17 11:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-07-17 11:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service) SRV - [2012-07-12 06:10:24 | 000,174,160 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service) SRV - [2010-10-12 19:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService) ========== Driver Services (SafeList) ==========

Sorry , maar ik zie nu dat ik het verkeerde scherm heb gebruikt! Hier alsnog het logbestand. [ATTACH]36225[/ATTACH] ZHPDiag.txt