• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

Detecties Avira, internet trager, sporadisch crashes van Windows

Status
Niet open voor verdere reacties.

Juan_007

Gewaardeerd
Lid geworden
19 dec 2007
Berichten
1.221
Waarderingsscore
0
Mn vader kwam naar me toe of ik eens naar zijn computer kon kijken want het deed het zo slecht de laatste tijd.
Tuurlijk pap.
En ik dacht al wel dat ik weer op dit oude vertrouwde en mooie forum terecht zou komen.

Eerste dat ik zag was dat zijn Windows 8 niet volledig up-to-date is. Maar omdat dit misschien info kan geven voor de diagnose heb ik dat eerst maar gelaten.
Hieruit volgen wel mijn eerste vragen, want (a) is de gratis upgrade naar 10 nog toe te passen? En (b) zou dat wel of niet aan te raden zijn?

Dan heeft Avira een setup voor een freeware programma genaamd Freemake Video Converter kortgeleden in quarantaine geplaatst. Zie ook stukje screen hieronder.
Naamloos.png
Pap zegt dat hij dat inderdaad had gedownload en wou installeren, maar dat het niets deed. Hij heeft blijkbaar de detectie van Avira niet opgemerkt.
Hij zei verder dat de problemen die hij ondervindt er al een poosje waren voordat hij Freemake had gedownload. Freemake is overigens een progje waar ik jaren en jaren terug zelf gewoon veilig mee heb kunnen werken. Maar ik vind het nu, zeker met de detecties van Avira en het feit dat de setup maar 1.8 Mb is, heel erg stinken.

De problemen die hij ondervindt:
Computer is in het algeheel trager. Opstarten duurt langer (tijdje, zeg een minuutje, zwart scherm voordat het inlogscherm getoond wordt). Alles op internet laadt veel trager, scrollen gaat niet meer altijd erg vloeiend, pagina's blijven lang doorladen nadat een tabblad geopend wordt.
En hij ervaart soms dat Windows vastloopt. Er komt dan een melding zoals wanneer een programma vastloopt, iets van: 'Het programma reageert niet meer' waarna je op beindigen of annuleren kunt klikken. Alleen gaat het nu niet om software, maar staat er Windows boven en reageert er niets meer behalve dat de muis nog bewogen kan worden. Zijn enige oplossing is dan de stroom eraf halen.
Verder gebeurt het soms dat afsluiten niet correct gaat. In plaats van de computer af te sluiten logged de computer uit naar het inlogscherm in plaats van gewoon af te sluiten waartoe opdracht gegeven was. Eerste keer dacht hij nog dat hij verkeerd geklikt had, maar het is nu een paar keer gebeurt dat hij heel zeker was dat hij afsluiten had geklikt.
Dan heb ik verder nog opgemerkt dat in Google soms de eerste zoekresultaten advertenties zijn. Kon dat ook niet te wijten zijn aan malware?

Eerste wat ik gedaan heb is Avira maar laten scannen (niets gevonden) en Malwarebytes genstalleerd en laten scannen (ook niets gevonden).

Dus toen ben ik hier naartoe gegaan om een logje voor te bereiden en deze post te typen.

Ik hoop van jullie te horen!

PS:
Overigens, juist terwijl ik dit zit te typen krijg ik de volgende popup van Malwarebytes:
Naamloos2.png

PPS:
Ik wil voor de goede orde nog opmerken dat in de sticky over het maken van logjes de links naar hoe je virusscanners moet deaktiveren momenteel niet werken.

---------
Logje en addition:

Scanresultaten van Farbar Recovery Scan Tool (FRST) (x64) Versie: 15-03-2017
Gestart door Mia (Beheerder) op FAMILIELAB (05-04-2017 13:21:31)
Gestart vanaf C:\Users\Mia\Desktop
Geladen Profielen: Mia & (Beschikbare Profielen: UpdatusUser & Mia)
Platform: Windows 8.1 (Update) (X64) Taal: Nederlands (Nederland)
Internet Explorer Versie 11 (Standaardbrowser: FF)
Boot Modus: Normal
Handleiding voor Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processen (gefilterd) =================

(Als een item is opgenomen in de fixlist, het proces zal worden gesloten. Het bestand zal niet worden verplaatst.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Flux Software LLC) C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files (x86)\Acer\Live Updater\updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officec2rclient.exe

==================== Register (gefilterd) ====================

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd. Het bestand zal niet worden verplaatst.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876304 2013-01-18] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [909744 2017-03-28] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-02-22] (Avira Operations GmbH & Co. KG)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-25] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147191\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [Dropbox Update] => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-15] (Dropbox, Inc.)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [Dropbox Update] => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-15] (Dropbox, Inc.)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe"
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt.15.0.dll [2017-03-21] (Dropbox, Inc.)
Startup: C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2017-01-08]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)

==================== Internet (gefilterd) ====================

(Als een item is opgenomen in de fixlist, als het een registry item is wordt verwijderd of hersteld naar de standaard.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{197B914B-0278-4410-BB26-3ACBEFC3EBB8}: [DhcpNameServer] 8.8.8.8 91.239.100.100
Tcpip\..\Interfaces\{BB598874-2463-4445-A617-757F00B6FE6D}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{F5F38D38-D859-47A4-873C-F30D78138474}: [DhcpNameServer] 192.168.2.254

Internet Explorer:
==================
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nu.nl/
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nu.nl/
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
URLSearchHook: [S-1-5-21-2591886327-1950502065-3310486755-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147191] AANDACHT => Standaard URLSearchHook ontbreekt
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://nl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://nl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002 -> DefaultScope {F1D8B87B-D5A2-4F41-9094-5CD8E42D0B89} URL =
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://nl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002 -> {F1D8B87B-D5A2-4F41-9094-5CD8E42D0B89} URL =
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346 -> DefaultScope {F1D8B87B-D5A2-4F41-9094-5CD8E42D0B89} URL =
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://nl.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346 -> {F1D8B87B-D5A2-4F41-9094-5CD8E42D0B89} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25] (Qualcomm Atheros Commnucations)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-29] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-29] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default [2017-04-05]
FF Homepage: Mozilla\Firefox\Profiles\5jjtldpk.default -> hxxp://nu.nl/
FF Extension: (Paywall Pass) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\@paywall-pass.xpi [2016-04-27]
FF Extension: (Flash Video Downloader - YouTube HD Download [4K]) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\artur.dubovoy@gmail.com [2017-02-19]
FF Extension: (InvisibleHand) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\canitbecheaper@trafficbroker.co.uk.xpi [2017-02-14]
FF Extension: (anonymoX) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\client@anonymox.net.xpi [2017-01-30]
FF Extension: (British English Dictionary (Updated)) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\en-gb@flyingtophat.co.uk [2015-07-15] [ niet getekend]
FF Extension: (Disable WebRTC) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\jid1-5Fs7iTLscUaZBgwr@jetpack.xpi [2016-11-02]
FF Extension: (English (GB) Language Pack) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2017-03-16]
FF Extension: (Screen Dimmer) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\screendimmer@screendimmer.com.xpi [2016-11-13]
FF Extension: (Adblock Plus) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF Extension: (Site Deployment Checker) - C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\features\{8b0daa52-3807-4fa7-9670-e7c7b26dbc64}\deployment-checker@mozilla.org.xpi [2017-03-25]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-30] [ niet getekend]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => niet gevonden
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-18] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-07-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2591886327-1950502065-3310486755-1002: vsee.com/VSeeDetection -> C:\Users\Mia\AppData\Roaming\VSeeInstall\npVSeeDetection.dll [2015-06-09] (VSee Lab)
FF Plugin HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346: vsee.com/VSeeDetection -> C:\Users\Mia\AppData\Roaming\VSeeInstall\npVSeeDetection.dll [2015-06-09] (VSee Lab)

Chrome:
=======
CHR Profile: C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default [2017-04-05]
CHR Extension: (Google Presentaties) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-27]
CHR Extension: (Google Documenten) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-27]
CHR Extension: (Google Drive) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-27]
CHR Extension: (YouTube) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-27]
CHR Extension: (Adblock Plus) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-28]
CHR Extension: (OkCupid (for the Non-Mainstream User)) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgdblghohnaeeejaoincmbcdkdnodkei [2016-08-01]
CHR Extension: (DownAlbum) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2017-03-28]
CHR Extension: (Google Search) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-27]
CHR Extension: (Google Spreadsheets) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-27]
CHR Extension: (Offline Documenten) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-01]
CHR Extension: (Advanced Web Scraper) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpolcofcjjiooogejfbaamdgmgfehgff [2017-01-16]
CHR Extension: (Your OKC Match Favorites) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikdcijgklflibmgcocokdeckojpbahdf [2016-08-01]
CHR Extension: (OkCupid Charts) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipbehogdmomjaepigolmjibicncehmom [2016-08-01]
CHR Extension: (Scraper) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbigbapnjcgaffohmbkdlecaccepngjd [2017-01-28]
CHR Extension: (No Paywall) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlejmhjlbojcchfcjcnkojbkpokgjjpg [2016-08-28]
CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-28]
CHR Extension: (Gmail) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-27]
CHR Extension: (Chrome Media Router) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-28]
CHR Extension: (Scraper) - C:\Users\Mia\AppData\Local\Google\Chrome\User Data\Default\Extensions\poegfpiagjgnenagjphgdklmgcpjaofi [2016-08-28]

==================== Services (gefilterd) ====================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1115552 2017-03-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [487432 2017-03-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [487432 2017-03-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1519136 2017-03-28] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-25] (Qualcomm Atheros Commnucations) [Bestand niet getekend]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349560 2017-03-09] (Avira Operations GmbH & Co. KG)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2017-01-17] (Microsoft Corporation)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-16] (Acer Incorporated)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Bestand niet getekend]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-03-15] (Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S4 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37504 2016-05-10] (The OpenVPN Project)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Bestand niet getekend]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-10-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-10-10] (Microsoft Corporation)

===================== Drivers (gefilterd) ======================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [161824 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [163976 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-03-02] (Avira Operations GmbH & Co. KG)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-25] (Qualcomm Atheros)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-04-03] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-04-04] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-04-04] (Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-10-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-10-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-10-10] (Microsoft Corporation)

==================== NetSvcs (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)


==================== Een Maand Aangemaakt bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-05 13:21 - 2017-04-05 13:22 - 00026699 _____ C:\Users\Mia\Desktop\FRST.txt
2017-04-05 13:21 - 2017-04-05 13:21 - 00000000 ____D C:\FRST
2017-04-05 13:18 - 2017-04-05 13:18 - 02424832 _____ (Farbar) C:\Users\Mia\Desktop\FRST64.exe
2017-04-03 19:20 - 2017-04-05 12:34 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-04-03 19:20 - 2017-04-04 17:31 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-04-03 19:20 - 2017-04-04 17:31 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-04-03 19:20 - 2017-04-03 19:20 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-04-03 19:19 - 2017-04-04 17:31 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-03 19:19 - 2017-04-03 19:19 - 00001887 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-03 19:19 - 2017-04-03 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-03 19:19 - 2017-04-03 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-04-03 19:19 - 2017-04-03 19:19 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-03 19:19 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-03 19:18 - 2017-04-03 19:18 - 59272008 _____ (Malwarebytes ) C:\Users\Mia\Downloads\mb3-setup-consumer-3.0.6.1469-1096.exe
2017-04-03 17:14 - 2017-04-03 17:14 - 00000930 _____ C:\Users\Public\Desktop\Avidemux 2.6 - 64 bits.lnk
2017-04-03 15:16 - 2017-04-03 15:17 - 09274608 _____ (Piriform Ltd) C:\Users\Mia\Downloads\ccsetup528.exe
2017-04-03 11:59 - 2017-04-03 22:03 - 00000000 ____D C:\Users\Mia\AppData\Roaming\avidemux
2017-04-03 11:59 - 2017-04-03 17:14 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64 bits
2017-04-03 11:52 - 2017-04-03 11:52 - 20601210 _____ C:\Users\Mia\Downloads\avidemux_2.6.19_win64.exe
2017-03-25 01:46 - 2017-03-25 01:46 - 00000000 ____D C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-20 21:55 - 2017-03-20 21:55 - 00002129 _____ C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2017-03-20 21:55 - 2017-03-20 21:55 - 00000000 ____D C:\Users\Mia\AppData\Local\FluxSoftware
2017-03-20 21:53 - 2017-03-20 21:53 - 00496896 _____ C:\Users\Mia\Downloads\flux-setup.exe
2017-03-20 21:37 - 2017-03-20 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-15 14:56 - 2017-03-15 14:56 - 00001156 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-03-08 18:38 - 2017-03-08 18:38 - 09261616 _____ (Piriform Ltd) C:\Users\Mia\Downloads\ccsetup527.exe

==================== Een Maand Gewijzigd bestanden en mappen ========

(Als een item is opgenomen in de fixlist, het bestand/map wordt verplaatst.)

2017-04-05 13:19 - 2015-05-03 20:41 - 00000000 ____D C:\Users\Mia\AppData\Roaming\MPC-HC
2017-04-05 13:18 - 2016-11-16 19:48 - 00000000 ____D C:\Users\Mia\AppData\LocalLow\Mozilla
2017-04-05 13:03 - 2014-11-21 10:44 - 01823174 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-05 13:03 - 2014-11-21 10:05 - 00806704 _____ C:\WINDOWS\system32\perfh013.dat
2017-04-05 13:03 - 2014-11-21 10:05 - 00162170 _____ C:\WINDOWS\system32\perfc013.dat
2017-04-05 13:03 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-04-05 12:48 - 2015-10-17 19:53 - 00000000 ____D C:\Users\Mia\AppData\Local\Deployment
2017-04-05 12:47 - 2016-11-16 23:55 - 00000000 ____D C:\Users\Mia\AppData\Local\Power Query Telemetry
2017-04-05 12:45 - 2016-01-15 12:25 - 00001038 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002UA.job
2017-04-05 12:45 - 2016-01-15 12:25 - 00000986 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002Core.job
2017-04-05 12:18 - 2014-04-06 21:06 - 00003958 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8AF739FC-CD7E-4842-A65C-3F472F0E9D60}
2017-04-05 12:15 - 2015-10-10 21:04 - 00000000 ___RD C:\Users\Mia\OneDrive
2017-04-05 12:15 - 2015-10-10 21:01 - 00000000 __SHD C:\Users\Mia\IntelGraphicsProfiles
2017-04-05 03:15 - 2015-10-10 20:19 - 00000000 ____D C:\Users\Mia
2017-04-04 18:23 - 2015-10-18 17:33 - 00066048 ___SH C:\Users\Mia\Desktop\Thumbs.db
2017-04-04 17:29 - 2016-05-26 19:09 - 00000000 ____D C:\Users\Mia\AppData\Local\HTC MediaHub
2017-04-04 17:28 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-04 17:01 - 2016-02-02 19:53 - 00000000 ____D C:\Users\Mia\Documents\Hans
2017-04-04 14:36 - 2014-04-05 16:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-04 01:12 - 2016-05-04 13:11 - 00000000 ____D C:\Users\Mia\AppData\Roaming\Skype
2017-04-03 23:50 - 2013-07-11 16:30 - 00000000 ____D C:\Users\Mia\AppData\Local\Packages
2017-04-03 21:30 - 2013-07-16 20:59 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2591886327-1950502065-3310486755-1002
2017-04-03 18:56 - 2016-12-17 04:04 - 00014848 ___SH C:\Users\Mia\Downloads\Thumbs.db
2017-04-03 15:22 - 2013-07-13 00:10 - 00000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-02 01:12 - 2015-07-25 17:57 - 00000000 ____D C:\Users\Mia\.qgis2
2017-04-02 01:12 - 2015-07-25 17:57 - 00000000 ____D C:\Users\Mia\.matplotlib
2017-03-30 18:02 - 2016-11-16 15:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-26 14:41 - 2017-01-29 01:19 - 00000000 ____D C:\Users\Mia\AppData\Local\OpenRefine
2017-03-25 01:47 - 2014-06-01 12:34 - 00000000 ____D C:\Users\Mia\AppData\Roaming\Dropbox
2017-03-23 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-23 16:48 - 2015-06-28 12:19 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-20 21:37 - 2016-05-04 13:11 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-20 21:37 - 2016-05-04 13:11 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-20 21:37 - 2016-05-04 13:11 - 00000000 ____D C:\ProgramData\Skype
2017-03-20 21:36 - 2015-04-09 13:32 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-18 15:17 - 2014-09-01 19:57 - 00000000 ____D C:\Users\Mia\AppData\Local\Adobe
2017-03-18 15:14 - 2014-04-05 16:11 - 00004398 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-18 15:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-03-18 15:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-03-15 15:03 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-15 15:03 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-15 14:56 - 2013-07-12 23:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

==================== Bestanden in de root van sommige mappen =======

2013-07-16 16:32 - 2013-07-16 16:32 - 128252774 _____ () C:\Program Files (x86)\openoffice1.cab
2013-07-16 16:30 - 2013-07-16 16:30 - 2265088 _____ () C:\Program Files (x86)\openoffice400.msi
2013-07-16 16:30 - 2013-07-16 16:30 - 0475136 _____ () C:\Program Files (x86)\setup.exe
2013-07-16 16:30 - 2013-07-16 16:30 - 0000279 _____ () C:\Program Files (x86)\setup.ini
2013-06-17 22:16 - 2013-06-17 22:16 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Er is geen automatische fix voor bestanden die de verificatie niet doorkomen.)

C:\WINDOWS\system32\winlogon.exe => Bestand is getekend
C:\WINDOWS\system32\wininit.exe => Bestand is getekend
C:\WINDOWS\explorer.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\explorer.exe => Bestand is getekend
C:\WINDOWS\system32\svchost.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\svchost.exe => Bestand is getekend
C:\WINDOWS\system32\services.exe => Bestand is getekend
C:\WINDOWS\system32\User32.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\User32.dll => Bestand is getekend
C:\WINDOWS\system32\userinit.exe => Bestand is getekend
C:\WINDOWS\SysWOW64\userinit.exe => Bestand is getekend
C:\WINDOWS\system32\rpcss.dll => Bestand is getekend
C:\WINDOWS\system32\dnsapi.dll => Bestand is getekend
C:\WINDOWS\SysWOW64\dnsapi.dll => Bestand is getekend
C:\WINDOWS\system32\Drivers\volsnap.sys => Bestand is getekend

LastRegBack: 2017-04-04 17:48

==================== Eind van FRST.txt ============================

Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 15-03-2017
Gestart door Mia (05-04-2017 13:22:22)
Gestart vanaf C:\Users\Mia\Desktop
Windows 8.1 (Update) (X64) (2015-10-10 19:00:37)
Boot Modus: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2591886327-1950502065-3310486755-500 - Administrator - Disabled)
Gast (S-1-5-21-2591886327-1950502065-3310486755-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2591886327-1950502065-3310486755-1004 - Limited - Enabled)
Mia (S-1-5-21-2591886327-1950502065-3310486755-1002 - Administrator - Enabled) => C:\Users\Mia
UpdatusUser (S-1-5-21-2591886327-1950502065-3310486755-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(Als een item is opgenomen in de fixlist, zal het worden verwijderd.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Genstalleerde programma's ======================

(Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.)

Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{81C6F800-A69B-4E70-9DC0-74732F8B00E7}) (Version: 1.00.3015 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3003 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
Acer USB Charge Manager (HKLM\...\{07E867C5-0C48-40FF-A013-DDAF4565AD47}) (Version: 2.00.3003 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.19.170329 - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{7b509672-8eb5-466b-b85a-482e26ccc500}) (Version: 1.2.81.30631 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
C2 (HKLM-x32\...\{20C07D8C-B482-420C-BC1E-2493678C7E14}) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated)
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Dropbox) (Version: 22.4.24 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Dropbox) (Version: 22.4.24 - Dropbox, Inc.)
ETDWare PS/2-X64 11.6.19.204_WHQL (HKLM\...\Elantech) (Version: 11.6.19.204 - ELAN Microelectronic Corp.)
f.lux (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Flux) (Version: - )
f.lux (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Flux) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - Uw bedrijfsnaam)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.77.0 - HTC)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3010 - Acer Incorporated)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4911.1002 - Microsoft Corporation)
Microsoft Office Proofing Tools 2013 - Nederlands (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Power Query for Excel (HKLM-x32\...\{9D8A8779-B1F0-4A09-8760-B9C2EA6AC165}) (Version: 2.38.4491.181 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 52.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 nl)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
NVIDIA Grafisch stuurprogramma 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer)
OpenOffice 4.0.0 (HKLM-x32\...\{EB29A33D-3425-486D-B602-E464ADE4D71C}) (Version: 4.00.9702 - Apache Software Foundation)
OpenVPN 2.3.11-I601 (HKLM\...\OpenVPN) (Version: 2.3.11-I601 - )
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
QGIS Wien 2.8.2 Wien (HKLM\...\QGIS Wien) (Version: - QGIS Development Team)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.39 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.28130 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.1091 - RStudio)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
UiPath Studio Community (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\UiPath) (Version: 2016.2.6192.32151 - UiPath)
UiPath Studio Community (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\UiPath) (Version: 2016.2.6192.32151 - UiPath)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Vittalia Installer (HKLM-x32\...\Vittalia) (Version: 1.0 - nl.fileprogram.net) <==== AANDACHT
VSee (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\VSee) (Version: 15.0.0.505 - VSee Lab Inc)
VSee (HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\VSee) (Version: 15.0.0.505 - VSee Lab Inc)
WinRAR 5.30 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.2 - win.rar GmbH)

==================== Aangepaste CLSID (gefilterd): ==========================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2591886327-1950502065-3310486755-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Mia\AppData\Roaming\Dropbox\bin\DropboxExt64.15.0.dll (Dropbox, Inc.)

==================== Geplande Taken (gefilterd) =============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

Task: {048EDF98-5395-4B4A-A4AE-0C01C2AD25C5} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-02-08] ()
Task: {07A4F6F6-BE52-4457-AF47-174C211CD340} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {0DB334BF-6987-4E2B-96BE-3EBC5CB50E24} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2013-02-08] (CyberLink)
Task: {1EE80834-8A8E-4E54-847F-D0E40556B74F} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.)
Task: {24919701-21CD-441E-A06C-AADC063089EA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {2856565B-2AB3-4850-A829-FE779E602414} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {543F6193-75F3-40EF-A612-9B3378C9CB30} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27] (Google Inc.)
Task: {621C0994-AD2F-423E-827D-83F4A110D6F7} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {68B21D71-BE0A-412A-8878-341020EF3076} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {821453E6-0E72-4560-8BE6-D7FF27264BA9} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-02-08] ()
Task: {8BA83C57-C4D1-4A8C-BAE1-30269F9C0146} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {8F2B5D50-FC49-4F37-99F2-E4CA803398A2} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {90E8AB1F-DD49-4B9D-B433-69C34FA3A7BE} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002UA => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-01-15] (Dropbox, Inc.)
Task: {972E839B-849C-4E34-9B06-255B9ACFA0DE} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-03-15] (Acer Incorporate)
Task: {9CA52167-7EE9-4496-92B2-8F8967E4989A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {B9372ED0-9E03-461A-90A8-666C123684C4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {C71FE35A-539D-4E0E-971C-51425DE06E5A} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-16] (Acer Incorporated)
Task: {D3C9DB00-DDEA-4242-A674-4807172CB77A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-18] (Adobe Systems Incorporated)
Task: {E0016269-49ED-4B59-9C2E-237CEE23361A} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {E44DCCF2-C4C1-45F9-BAD9-E8D7BF0E5A34} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27] (Google Inc.)
Task: {E68DD0EE-DCCA-4D41-AC76-BD9F73EF84DA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002Core => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-01-15] (Dropbox, Inc.)

(Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002Core.job => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2591886327-1950502065-3310486755-1002UA.job => C:\Users\Mia\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Snelkoppelingen =============================

(De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.)

Shortcut: C:\Users\Mia\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com

ShortcutWithArgument: C:\Users\Mia\Desktop\GRASS GIS 6.4.3.lnk -> C:\Program Files\QGIS Wien\bin\nircmd.exe (NirSoft) -> exec hide C:\PROGRA~1\QGISWI~1\bin\grass64.bat -wx
ShortcutWithArgument: C:\Users\Mia\Desktop\QGIS Desktop 2.8.2.lnk -> C:\Program Files\QGIS Wien\bin\nircmd.exe (NirSoft) -> exec hide C:\PROGRA~1\QGISWI~1\bin\qgis.bat
ShortcutWithArgument: C:\Users\Mia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\c3d70a768e320f6a\Scraper.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=mbigbapnjcgaffohmbkdlecaccepngjd
ShortcutWithArgument: C:\Users\Public\Desktop\SAGA GIS (2.1.2).lnk -> C:\Program Files\QGIS Wien\bin\nircmd.exe (NirSoft) -> exec hide C:\PROGRA~1\QGISWI~1\bin\saga_gui.bat

==================== Geladen Modules (gefilterd) ==============

2015-07-23 11:07 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2017-04-03 19:19 - 2017-03-24 04:09 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2013-09-05 02:36 - 2013-09-05 02:36 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2017-03-22 17:28 - 2017-01-31 14:34 - 08909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2015-10-13 09:40 - 2015-10-13 09:40 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-01-25 09:09 - 2013-01-25 09:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-25 09:05 - 2013-01-25 09:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-25 09:12 - 2013-01-25 09:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-02-08 23:24 - 2013-02-08 23:24 - 00025672 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2013-02-08 23:24 - 2013-02-08 23:24 - 00044616 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2013-03-13 17:52 - 2013-03-13 17:52 - 04149832 _____ () C:\Program Files (x86)\Acer\Live Updater\updater.exe
2016-03-09 12:58 - 2016-03-09 12:58 - 00030720 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2016-10-21 10:06 - 2016-10-21 10:06 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2016-03-09 12:58 - 2016-03-09 12:58 - 00059392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2016-03-09 12:58 - 2016-03-09 12:58 - 00035864 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2016-03-09 12:58 - 2016-03-09 12:58 - 00079888 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2016-03-09 12:59 - 2016-03-09 12:59 - 00129016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2016-03-09 13:00 - 2016-03-09 13:00 - 00223240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2013-06-17 22:12 - 2013-01-23 09:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (gefilterd) =========

(Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.)


==================== Veilige Modus (gefilterd) ===================

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Bestandskoppeling (gefilterd) ===============

(Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.)


==================== Internet Explorer vertrouwde/beperkte toegang ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.)


==================== Hosts inhoud: ===============================

(Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere gebieden ============================

(Momenteel is er geen automatische fix voor dit onderdeel.)

HKU\S-1-5-21-2591886327-1950502065-3310486755-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147191\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg
DNS Servers: 192.168.2.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is ingeschakeld.

==================== MSCONFIG/TASK MANAGER Uitgeschakelde items ==

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: OpenVPNService => 3
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"

==================== Firewall regels (gefilterd) ===============

(Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8C04588B-6E05-4415-B443-EED0CF7DAFBA}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [UDP Query User{EB84F8C0-8DCA-4409-90F0-939B840D6437}C:\users\mia\appdata\roaming\vseeinstall\vsee.exe] => (Allow) C:\users\mia\appdata\roaming\vseeinstall\vsee.exe
FirewallRules: [TCP Query User{2988312D-ED2E-4475-B188-FEBD704345FD}C:\users\mia\appdata\roaming\vseeinstall\vsee.exe] => (Allow) C:\users\mia\appdata\roaming\vseeinstall\vsee.exe
FirewallRules: [UDP Query User{E8D1A23D-D52F-449E-9AB9-A78112018BDE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{EBB4F4F9-51BA-4D54-B958-904B62B38778}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{94C1FB82-3A7D-469B-B167-3D2E9805547F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E442E05A-E049-4076-BB94-F4BB7FB766B3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{F574EC28-9FBE-4235-8FF2-360BF5B66225}C:\users\mia\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\mia\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{B1D32975-BB5E-4CF7-964F-75CFC488E189}C:\users\mia\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\mia\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{B78992D1-BA5A-4ABC-923E-9B3FDFAF4B15}] => (Allow) C:\Users\Mia\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D3D16553-9255-49C3-B85B-E0214889C2E0}] => (Allow) C:\Users\Mia\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{43B9CAF1-1284-4EEA-A479-EAA6B50CE795}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{9699DF78-5246-460F-BAF9-D4A9B888C190}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{F2D95962-85B6-4198-B15B-5D0599FF8451}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{253CDC1B-C994-4686-B2F3-21D80CEFFF5C}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{F9937615-CC3F-4388-A9EE-D2A802649E74}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{D35717D3-5B45-431F-91D1-E1EF61F0226C}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{BFF0E7A7-2820-43F4-BC94-49587341FC35}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{19A53F89-DECA-4B3B-8527-B7F04937CBF7}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{C8FB45EF-7A09-4E11-A4B4-C7C5EB4A0332}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{3F86DE6C-67B3-4969-BBA1-12DC78255C2E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{C21E7812-F5A6-4730-98F8-B96900C64603}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{6CF4A8C0-0939-4DFB-83C9-C644C434D277}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{3DD8622F-A625-4A02-9B50-DC62334CCDD7}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{AE8E9CC7-21BF-4FDF-8C50-C9ED14A69871}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{E8A989BD-F234-461B-AA10-E1E35E766F6D}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{91DD0BE4-E827-4B71-A204-23C7643A68A8}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{B03B1D8A-C67A-46AE-9291-9189D36667E9}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{2B47E45F-B0E8-4D82-AC83-949A76786CEA}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{E8935206-2854-4D34-B211-27B07703416A}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{07A2956A-EFD7-4E2B-9EE1-0DB4A71BC7FF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{4A3BDB30-FB54-413F-8CC9-66204767DC7F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{A1BB9B59-879B-4EEE-98CE-F9F8216228A2}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{7DA8A1D5-94A4-4BF0-9A11-07CFB414DB9A}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{7BDD96A5-5554-4B75-ABFE-F61B8F9FB8DC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A7D222DD-F3FC-4278-8340-576C0823895D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7C608D84-E091-4A9E-A022-07CE31E04B81}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{6DBD20C3-60A2-4C45-B48C-E42085886448}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{83232CC4-325D-4AC5-A3BA-1EC399E5D4F9}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{1E3B88E0-93EE-48CA-BCCD-DDDFDB8F0A6E}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [TCP Query User{A9CD87B3-9368-4342-B490-895DCC254963}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{14C58565-957D-4CD6-AC6C-DF24D31E4B89}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{6582D785-7E02-4605-B581-4EED3078B14A}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [TCP Query User{F43080BB-7D11-4377-A831-89B456D41A27}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{17B5537C-0E52-4802-9913-18E82D532CE5}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{8622E412-E79F-4E2F-99D1-B71E1D3300BF}C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe] => (Block) C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe
FirewallRules: [UDP Query User{6DA6B3AC-A810-4886-8FE2-A209BBA445A8}C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe] => (Block) C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe
FirewallRules: [{DC685D1F-B4CB-43A9-9E3C-96E8C4BE2C0B}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{40A61D4B-019B-485F-88DB-E1E837CAD719}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{9C4379E2-04A3-487D-B57C-42D09DB5ED9F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Herstelpunten =========================

04-04-2017 15:27:02 Gepland controlepunt

==================== Defecte Apparaatbeheer Apparaten =============

Name: Qualcomm Atheros AR5BWB222 Wireless-netwerkadapter
Description: Qualcomm Atheros AR5BWB222 Wireless-netwerkadapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Eventlog fouten: =========================

Applicatiefouten:
==================
Error: (04/03/2017 08:43:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma LiveComm.exe, versie 17.5.9600.20911 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 19f0

Starttijd: 01d2aca980669f5e

Eindtijd: 4294967295

Toepassingspad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Rapport-id: 748c837f-189d-11e7-bf4b-bc8556c8291a

Volledige pakketnaam met fout: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Relatieve toepassings-id van pakket met fout: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2017 03:21:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Naam van toepassing met fout: plugin-container.exe, versie: 52.0.2.6291, tijdstempel: 0x58d41e88
Naam van module met fout: mozglue.dll, versie: 52.0.2.6291, tijdstempel: 0x58d41a1f
Uitzonderingscode: 0x80000003
Foutmarge: 0x0000f73b
Id van proces met fout: 0x2e78
Starttijd van toepassing met fout: 0x01d2ac7c89f63d37
Pad naar toepassing met fout: C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Pad naar module met fout: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
Rapport-id: 645ddf60-1870-11e7-bf4b-bc8556c8291a
Volledige pakketnaam met fout:
Relatieve toepassings-id van pakket met fout:

Error: (04/03/2017 03:21:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma firefox.exe, versie 52.0.2.6291 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 336c

Starttijd: 01d2ac7c6ab50f11

Eindtijd: 48

Toepassingspad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Rapport-id: 60034ff7-1870-11e7-bf4b-bc8556c8291a

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/03/2017 03:05:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma CCleaner64.exe, versie 5.27.0.5976 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 27fc

Starttijd: 01d2ac7443250c68

Eindtijd: 109

Toepassingspad: C:\Program Files\CCleaner\CCleaner64.exe

Rapport-id: 1c683162-186e-11e7-bf4b-bc8556c8291a

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/03/2017 03:03:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Het programma LiveComm.exe, versie 17.5.9600.20911 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 3ac4

Starttijd: 01d2ac7a0acebb55

Eindtijd: 4294967295

Toepassingspad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Rapport-id: fedf58e1-186d-11e7-bf4b-bc8556c8291a

Volledige pakketnaam met fout: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Relatieve toepassings-id van pakket met fout: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/03/2017 11:32:55 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL op regel 1.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/02/2017 10:22:22 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL op regel 1.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/01/2017 12:11:32 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL op regel 1.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/01/2017 12:11:22 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (04/01/2017 12:04:26 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Kan activeringscontext voor 'C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest' niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL op regel 1.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.


Systeemfouten:
=============
Error: (04/05/2017 03:15:11 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:11 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:10 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:10 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:05 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:05 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:00 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/05/2017 03:15:00 AM) (Source: DCOM) (EventID: 10010) (User: FAMILIELAB)
Description: De server {4545DEA0-2DFC-4906-A728-6D986BA399A9} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd.

Error: (04/04/2017 05:32:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: De NVIDIA Update Service Daemon-service kan vanwege de volgende fout niet worden gestart:
De service is niet gestart vanwege een aanmeldingsfout.

Error: (04/04/2017 05:32:07 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: De nvUpdatusService-service kan niet als .\UpdatusUser met het huidig ingestelde wachtwoord worden aangemeld vanwege de volgende fout:
De gebruikersnaam of het wachtwoord is onjuist.


Gebruik de module Services in de Microsoft Management Console (MMC) om te controleren of de service juist is geconfigureerd.


==================== Geheugen info ===========================

Processor: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Percentage geheugen in gebruik: 26%
Totaal fysiek RAM-geheugen: 7848.28 MB
Beschikbaar fysiek RAM-geheugen: 5740.24 MB
Totaal Virtueel geheugen: 9064.28 MB
Beschikbaar Virtual geheugen: 6325.09 MB

==================== Schijven ================================

Drive c: (Acer) (Fixed) (Total:909.26 GB) (Free:787.36 GB) NTFS
Drive e: (PHILIPS UFD) (Removable) (Total:14.92 GB) (Free:0.59 GB) FAT32

==================== MBR & Partitietabel ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: DEEBB6BA)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: 78B04E2E)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=0C)

==================== Eind van Addition.txt ============================
 
De logs waren lastig te lezen.
Start kladblok - klik in de menubalk op Opmaak en haal het vinkje weg bij Automatische terugloop.


Waarschuwing: onderstaande bewerking is enkel voor deze computer bedoeld, het toepassen hiervan in een andere computer kan tot schade in Windows leiden.


We gaan
51a5c8edc4692-icon1337952077.png


Farbar Recovery Scan Tool (FRST.exe) opnieuw gebruiken.

Open een nieuw kladblok (of anders: notepad) bestand, via "Start\Alle programmas\Bureau-accessoires\Kladblok (of Notepad)".
Kopieer en plak de tekst in het code-venster in het lege kladblokvenster.

Code:
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Flux Software LLC) C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\Devic eDetector.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files (x86)\Acer\Live Updater\updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officec2rclient.exe

HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe" 
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
Startup: C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Sta rt Menu\Programs\Startup\Send to OneNote.lnk [2017-01-08]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
URLSearchHook: [S-1-5-21-2591886327-1950502065-3310486755-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147191] AANDACHT => Standaard URLSearchHook ontbreekt
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Bestand niet getekend]
C:\Users\Mia\AppData\Local\Power Query Telemetry

cmd: ipconfig /flushdns
cmd: netsh winsock reset

Sla nu dit kladblokbestand in de dezelfde locatie waar ook FRST.exe aanwezig is op als Fixlist.txt

Farbar Recovery Scan Tool (FRST.exe) met de fixlist.txt gebruiken
  • Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op FRST.exe en kies voor "Als Administrator uitvoeren".
  • Als het programma wordt gestart, klik dan op Ja in de popup.
  • Druk op de Fix knop.
  • Na de fix wordt een logbestand - Fixlog.txt - in dezelfde locatie aangemaakt van waaruit FRST.exe is gestart.
  • Post de inhoud van dit logbestand in jouw volgende bericht.
 
Vreemd van het kladblok. Ik weet niet precies wat je bedoelt, of in wat voor manier de leesbaarheid bemoeilijkt wordt, maar dat vinkje was niet aangevinkt.
Heb de log nu via Notepad++ geopend.

Fix resultaat van Farbar Recovery Scan Tool (x64) Versie: 15-03-2017
Gestart door Mia (05-04-2017 15:51:24) Run:1
Gestart vanaf C:\Users\Mia\Desktop
Geladen Profielen: Mia & (Beschikbare Profielen: UpdatusUser & Mia)
Boot Modus: Normal
==============================================

fixlist inhoud:
*****************
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Flux Software LLC) C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\Devic eDetector.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files (x86)\Acer\Live Updater\updater.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officec2rclient.exe

HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe"
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
Startup: C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Sta rt Menu\Programs\Startup\Send to OneNote.lnk [2017-01-08]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
URLSearchHook: [S-1-5-21-2591886327-1950502065-3310486755-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147191] AANDACHT => Standaard URLSearchHook ontbreekt
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Bestand niet getekend]
C:\Users\Mia\AppData\Local\Power Query Telemetry

cmd: ipconfig /flushdns
cmd: netsh winsock reset
*****************

Herstelpunt is succesvol gemaakt.
Proces succesvol afgesloten.
C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe => Kon het proces niet afsluiten
C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe => Kon het proces niet afsluiten
C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe => Kon het proces niet afsluiten
C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe => Geen lopend proces gevonden
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe => Kon het proces niet afsluiten
C:\Program Files\Acer\Acer Launch Manager\LMTray.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe => Geen lopend proces gevonden
C:\Program Files\Elantech\ETDTouch.exe => Kon het proces niet afsluiten
C:\Program Files\Elantech\ETDCtrlHelper.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe => Geen lopend proces gevonden
C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe => Geen lopend proces gevonden
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\Devic eDetector.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe => Geen lopend proces gevonden
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe => Geen lopend proces gevonden
C:\Program Files (x86)\Acer\Live Updater\updater.exe => Geen lopend proces gevonden
C:\Program Files\Microsoft Office 15\ClientX64\officec2rclient.exe => Geen lopend proces gevonden
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => waarde is succesvol verwijderd.
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\Software\Microsoft\Windows\CurrentVersion\Run\\f.lux => waarde is succesvol verwijderd.
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{904cafaf-43be-11e3-be86-7c0507ab3ab6} => sleutel is succesvol verwijderd.
HKCR\CLSID\{904cafaf-43be-11e3-be86-7c0507ab3ab6} => sleutel niet gevonden.
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd) => Fout: Geen automatische fix gevonden voor dit item.
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\Run: [f.lux] => C:\Users\Mia\AppData\Local\FluxSoftware\Flux\flux. exe [1024240 2016-12-06] (Flux Software LLC) => Fout: Geen automatische fix gevonden voor dit item.
HKU\S-1-5-21-2591886327-1950502065-3310486755-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04052017023147346\...\MountPoints2: {904cafaf-43be-11e3-be86-7c0507ab3ab6} - "F:\HTC_Sync_Manager_PC.exe" => Fout: Geen automatische fix gevonden voor dit item.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict) => sleutel is succesvol verwijderd.
HKCR\Wow6432Node\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => sleutel niet gevonden.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress) => sleutel is succesvol verwijderd.
HKCR\Wow6432Node\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => sleutel niet gevonden.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync) => sleutel is succesvol verwijderd.
HKCR\Wow6432Node\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => sleutel niet gevonden.
C:\Users\Mia\AppData\Roaming\Microsoft\Windows\Sta rt Menu\Programs\Startup\Send to OneNote.lnk => niet gevonden.
C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe => is succesvol verplaatst.
Kon niet herstellen Standaard URLSearchHook.
HKLM\System\CurrentControlSet\Services\PassThru Service => sleutel is succesvol verwijderd.
PassThru Service => dienst is succesvol verwijderd.
C:\Users\Mia\AppData\Local\Power Query Telemetry => is succesvol verplaatst.

========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= Eind van CMD: =========


========= netsh winsock reset =========


Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.


========= Eind van CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6870522 B
Java, Flash, Steam htmlcache => 621 B
Windows/system/drivers => 772736 B
Edge => 0 B
Chrome => 250880 B
Firefox => 19567927 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 13090 B
NetworkService => 0 B
UpdatusUser => 0 B
Mia => 9686738 B

RecycleBin => 0 B
EmptyTemp: => 47.4 MB tijdelijke gegevens verwijderd.

================================


Het systeem moest herstart worden.

==== Eind van Fixlog 15:52:10 ====
 
Graag de twee logs in n keer posten - gebruik de tools in de volgorde zoals aangegeven.

Stap 1
Download
51e281a62c183-Junkware_Removal_Tool_icon_Canned_1351185104.png.jpg
Junkware Removal Tool by Thisisu.
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen!
Opmerkingen:
  • Alle openstaande programma's en webpagina's dienen afgesloten te zijn.
  • Het is raadzaam de actieve beveiligingssoftware te de-activeren, zodat mogelijke conflicten met JRT.exe uitgsloten worden.:
  • Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.
  • Dat tijdens de scan van JRT.exe tijdelijk de snelkoppelingen verdwijnen van het bureaublad, is normaal.
Junkware Removal Tool by Thisisu opstarten:
  • Windows 2000 en Windows XP: dubbelklik op JRT.exe.
  • Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op JRT.exe en kies voor "Als Administrator uitvoeren".
  • JRT.exe zal daarna Windows gaan scannen.
  • Deze scan kan afhankelijk van de systeemspecificaties soms vrij lang duren, wees dus geduldig.
  • Indien de scan voltooid is, zal een logje (JRT.txt) op het bureaublad opgeslagen worden en automatisch openen.
  • Post de inhoud van dit log in je volgende bericht.

Stap 2
Download
52186926180a1-adwcleaner_nieuw.png
AdwCleaner by Xplode.
Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen!
Opmerkingen:
  • Alle openstaande programma's en webpagina's dienen afgesloten te zijn.
AdwCleaner opstarten:
  • Windows 2000 en Windows XP: dubbelklik op adwcleaner.exe.
  • Windows Vista, Windows 7, Windows 8 en Windows 10: via rechtsklik op adwcleaner.exe en kies voor "Als Administrator uitvoeren".
AdwCleaner is opgestart:
  • Klik op de knop Scan
  • Is de scan gereed, klik dan op de knop Verwijderen
  • Klik bij AdwCleaner Afsluiting van de programma's op OK
  • Klik bij AdwCleaner Herstarten noodzakelijk op OK
AdwCleaner logbestand:
  • Nadat de PC opnieuw is opgestart, opent een logfile.
  • Ingeval het log niet opent, is dit alsnog terug te vinden in C:\AdwCleaner\AdwCleaner[R0, of 1, of 2].txt
  • Post vervolgens de inhoud van dit log in je volgende bericht.
 
Scans gingen super snel naar mijn idee.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.2 (03.10.2017)
Operating System: Windows 8.1 x64
Ran by Mia (Administrator) on wo 05-04-2017 at 16:53:18.67
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\Mia\AppData\Roaming\Mozilla\Firefox\Profiles\5jjtldpk.default\Invalidprefs.js (File)
Successfully deleted: C:\Program Files (x86)\vittalia (Folder)



Registry: 3

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{F1D8B87B-D5A2-4F41-9094-5CD8E42D0B89} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on wo 05-04-2017 at 16:54:57.27
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v6.045 - Logbestand aangemaakt 05/04/2017 op 16:58:31
# Bijgewerkt op 28/03/2017 door Malwarebytes
# Database : 2017-04-04.2 [Server]
# Besturingssysteem : Windows 8.1 (X64)
# Gebruikersnaam : Mia - FAMILIELAB
# Gestart vanuit : C:\Users\Mia\Desktop\adwcleaner_6.045.exe
# Mode: Verwijderen
# Ondersteuning : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Mappen ] *****



***** [ Bestanden ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Snelkoppelingen ] *****



***** [ Geplande Taken ] *****



***** [ Register ] *****

[-] Sleutel verwijderd: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vittalia
[-] Sleutel verwijderd: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}


***** [ Browsers ] *****



*************************

:: "Tracing" sleutels verwijderd
:: Winsock instellingen gereset

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1003 bytes] - [05/04/2017 16:58:31]
C:\AdwCleaner\AdwCleaner[S0].txt - [1448 bytes] - [05/04/2017 16:57:48]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1149 bytes] ##########
 
Wat nog steeds erg merkbaar is is dat het internet traag gaat. Als ik een link open in een nieuw tabblad opent het meeste van de pagina, in die zin dat de pagina volledig geopend lijkt en functioneel is, maar het duurt dan nog een tijdje, soms zelfs enkele minuten, voor de pagina echt helemaal gestopt is met laden.
De rest van de problemen die er waren kan ik nu nog lastig helemaal beoordelen. Scrollen lijkt wel vloeiender te gaan zodra een pagina maar helemaal is doorgeladen.

Kan ik de bestanden die Avira in quarantaine had geplaatst ook al verwijderen?
 
Wacht daar maar even mee.
Geldt de traagheid voor alle browsers?
 
Chrome en IE lijken ook niet helemaal vloeiend te gaan. Maar zo lang doorladen als Firefox (standaard browser hier) af en toe doet lijkt daar niet aan de orde in wat ik nu zo even uitprobeerde.

HERSTEL:
Chrome deed nu ook ontzettend lang over het laden van de nationaalcomputerforum site.
En IE ook, zelfs zonder dat de pagina meteen helemaal functioneel is zoals ik eerst beschreef.
 
Laatst bewerkt door een moderator:
Dan wil ik nu graag dat jij de Eset Online Scanner op de juiste wijze gaat gebruiken:

Zie daarvoor: Handleiding Eset Online scanner
Aansluitend graag het log ervan in jouw volgende antwoord posten.
 
All right. Dit komt eruit. Maar als ik het zou moeten zeggen is het false positive. Die bestandjes zijn de setups van CCleaner. Dat is het programma dat we binnen mijn familie al een hele tijd gebruiken om onze tijdelijke bestanden op te schonen etc.


C:\Users\Mia\Downloads\ccsetup525.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup526.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup527.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup528.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
 
Dat zijn de meelifters met de download.

Kunnen ook handmatig verwijderd worden.


Download ZHPDiag naar het bureaublad.
Attentie:
  • Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen.

Opmerkingen:
  • Alle openstaande programma's en webpagina's dienen afgesloten te zijn.
  • Schakel de antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met ZHPDiag.
  • Hier en hier vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

ZHPDiag 2015 opstarten:
  • Windows 2000 en Windows XP: dubbelklik op ZHPDiag3.exe.
  • Windows Vista, Windows 7, B]Windows 8[/B] en Windows 10: via rechtsklik op ZHPDiag3.exe en kies voor "Als Administrator uitvoeren".

ZHPDiag 2015 gebruiken:

55ab5f19f2486-ZHPDiad_2015.jpg


  • Klik op de grote knop "Scanner" (Knop met vergrootglas).
  • De scan start en kan even duren, heb dus geduld.
  • Nadat de scan klaar is, klik dan op de grote knop "Rapport" (Knop met letter T) en dat zal dan het scanlog openen.
  • Op het bureaublad vindt u dat zelfde log ook opgeslagen als ZHPDiag.txt

ZHPDiag 2015-Log posten:
  • Post de inhoud van ZHPDiag.txt mee in jouw volgende bericht.
 
Telkens bij 74% gebeurt dit:
Naamloos.png
En met ok sluit het af.

Overigens nog een klein ding tussendoor. Bij een van de vorige handelingen is het proces van 'Flux' eruit gehaald. Dat gebruikt m'n vader zodat het scherm minder hel licht geeft en zijn ogen minder snel uitdrogen, omdat hij vaak 's avonds werkt. Is er iets mis met dit progje? En zijn er dan alternatieven?

De computer houdt zich vandaag slecht. Windows is 3 keer gecrasht.
 
Flux is alleen van opstarten uitgeschakeld - niet verwijderd.


Download de gratis versie versie van WhoCrashed naar het bureaublad of verplaats het bestand daar naar toe.

WhoCrashed introductie

WhoCrashed beschrijving

Download de free home edition van WhoCrashed naar je bureaublad via klik hier
whocrashed32.jpg
en installeer het tool via klikken/dubbelklikken op "whocrashedSetup.exe"

Nadat 'WhoCrashed' is opgestart, klik je op de "Analyze" knop.

Selekteer nu de inhoud van het venster, kopieer dit en post het resultaat in je volgende post.
 
WhoCrashed vond geen crashdumps. Het waren ook geen blue-screens of dat soort dingen. Als het crasht komt er een melding alsof er een programma is vastgelopen met iets als 'het programma reageert niet meer' en kun je op beindigen of annuleren klikken. Alleen heet het programma dan Windows. Vervolgens kan ik nergens op klikken want niets doet het meer, alleen de muis (die de hele tijd het laden icoontje toont) kan nog bewegen.



System Information (local)
--------------------------------------------------------------------------------

Computer name: FAMILIELAB
Windows version: Windows 8.1 , 6.3, build: 9600
Windows dir: C:\WINDOWS
Hardware: Aspire V3-772, Acer, VA70_HW
CPU: GenuineIntel Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz Intel586, level: 6
8 logical processors, active mask: 255
RAM: 8229515264 bytes total




--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\WINDOWS\Minidump

Crash dumps are enabled on your computer.

No valid crash dumps have been found on your computer


--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------

Crash dumps are enabled but no valid crash dumps have been found. In case you are experiencing system crashes, it may be that crash dumps are prevented from being written out. Check out the following article for possible causes: If crash dumps are not written out.
 
Laatste ontwikkelingen:

Geen crashes meer gehad sinds die laatste dag dat ik er 3 meldde.

Internet lijkt eerder trager dan sneller te zijn geworden.

En MBAM had nog deze melding:
Naamloos3.png
 
Dan wil ik nu graag dat jij de Eset Online Scanner op de juiste wijze gaat gebruiken:

Zie daarvoor: Handleiding Eset Online scanner
Aansluitend graag het log ervan in jouw volgende antwoord posten.
 
Zelfde resultaat als eerder:

C:\Users\Mia\Downloads\ccsetup525.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup526.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup527.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Mia\Downloads\ccsetup528.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
 
Download
51ec4de7e6926-MiniToolbox_Canned.png
MiniToolBox en plaats dit tool op jouw bureaublad.

Farbar MiniToolBox gebruiken:
  • Sluit nu eerst alle nog openstaande programmavensters!
    • Windows 2000 en Windows XP: start "MiniToolBox.exe" via dubbelklikken.
    • Windows Vista, Windows 7, Windows 8 en Windows 10: start "MiniToolBox.exe" via rechtsklik Als Administrator uitvoeren.
Vink de volgende onderdelen aan:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices - Only Problems
  • List Users, Partitions and Memory size
  • List Minidump Files
    • Klik nu op de knop "Go".
    • Aansluitend wordt een log aangemaakt (Result.txt) in de zelfde map waar "MiniToolBox.exe" in zit.
    • Kopieer en plak de inhoud van het log in jouw volgende bericht.
Notabene: indien "Reset FF Proxy Settings" gekozen is, dienen de gebruikte webbrowsers afgesloten te zijn!
 
MiniToolBox by Farbar Version: 17-06-2016
Ran by Mia (administrator) on 11-04-2017 at 20:39:04
Running from "C:\Users\Mia\Desktop"
Microsoft Windows 8.1 (X64)
Model: Aspire V3-772 Manufacturer: Acer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Broadcom NetLink (TM) Gigabit Ethernet = Ethernet (Connected)
Qualcomm Atheros AR5BWB222 Wireless-netwerkadapter = Wi-Fi (Hardware not present)
Bluetooth-apparaat (Personal Area Network) = Bluetooth-netwerkverbinding (Media disconnected)
TAP-Windows Adapter V9 = Ethernet 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="LAN-verbinding* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth-netwerkverbinding" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_7" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : familielab
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hogenhuis

Ethernet adapter Ethernet 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Windows Adapter V9
Physical Address. . . . . . . . . : 00-FF-19-7B-91-4B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth-netwerkverbinding:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth-apparaat (Personal Area Network)
Physical Address. . . . . . . . . : BC-85-56-C8-29-1A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

Connection-specific DNS Suffix . : hogenhuis
Description . . . . . . . . . . . : Broadcom NetLink (TM) Gigabit Ethernet
Physical Address. . . . . . . . . : 7C-05-07-AB-3A-B6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9cbc:741e:57e0:662b%4(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.104(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : dinsdag 11 april 2017 13:19:36
Lease Expires . . . . . . . . . . : woensdag 12 april 2017 19:07:41
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 75236615
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-51-22-9D-7C-05-07-AB-3A-B6
DNS Servers . . . . . . . . . . . : 192.168.2.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter LAN-verbinding* 5:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:443:2cd5:3f57:fe97(Preferred)
Link-local IPv6 Address . . . . . : fe80::443:2cd5:3f57:fe97%7(Preferred)
Default Gateway . . . . . . . . . : ::
DHCPv6 IAID . . . . . . . . . . . : 201326592
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-51-22-9D-7C-05-07-AB-3A-B6
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.hogenhuis:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hogenhuis
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dsldevice.lan
Address: 192.168.2.254

Name: google.com
Addresses: 2a00:1450:400e:805::200e
172.217.17.110


Pinging google.com [172.217.17.110] with 32 bytes of data:
Reply from 172.217.17.110: bytes=32 time=7ms TTL=55
Reply from 172.217.17.110: bytes=32 time=7ms TTL=55

Ping statistics for 172.217.17.110:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 7ms, Maximum = 7ms, Average = 7ms
Server: dsldevice.lan
Address: 192.168.2.254

Name: yahoo.com
Addresses: 2001:4998:58:c02::a9
2001:4998:44:204::a7
2001:4998:c:a06::2:4008
98.139.183.24
206.190.36.45
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=146ms TTL=47
Reply from 98.138.253.109: bytes=32 time=118ms TTL=47

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 118ms, Maximum = 146ms, Average = 132ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
9...00 ff 19 7b 91 4b ......TAP-Windows Adapter V9
5...bc 85 56 c8 29 1a ......Bluetooth-apparaat (Personal Area Network)
4...7c 05 07 ab 3a b6 ......Broadcom NetLink (TM) Gigabit Ethernet
1...........................Software Loopback Interface 1
7...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.104 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.104 276
192.168.1.104 255.255.255.255 On-link 192.168.1.104 276
192.168.1.255 255.255.255.255 On-link 192.168.1.104 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.104 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.104 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
7 306 ::/0 On-link
1 306 ::1/128 On-link
7 306 2001::/32 On-link
7 306 2001:0:9d38:90d7:443:2cd5:3f57:fe97/128
On-link
4 276 fe80::/64 On-link
7 306 fe80::/64 On-link
7 306 fe80::443:2cd5:3f57:fe97/128
On-link
4 276 fe80::9cbc:741e:57e0:662b/128
On-link
1 306 ff00::/8 On-link
4 276 ff00::/8 On-link
7 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/11/2017 02:54:27 PM) (Source: Application Hang) (User: )
Description: Het programma LiveComm.exe, versie 17.5.9600.20911 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 1a60

Starttijd: 01d2b2b585138783

Eindtijd: 4294967295

Toepassingspad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Rapport-id: fbdeac24-1eb5-11e7-bf53-bc8556c8291a

Volledige pakketnaam met fout: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Relatieve toepassings-id van pakket met fout: ppleae38af2e007f4358a809ac99a64a67c1

Error: (04/11/2017 12:25:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: FAMILIELAB)
Description: Het activeren van de app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail is mislukt door de fout -2147023170. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie.

Error: (04/10/2017 11:13:29 PM) (Source: Application Error) (User: )
Description: Naam van toepassing met fout: plugin-container.exe, versie: 52.0.2.6291, tijdstempel: 0x58d41e88
Naam van module met fout: mozglue.dll, versie: 52.0.2.6291, tijdstempel: 0x58d41a1f
Uitzonderingscode: 0x80000003
Foutmarge: 0x0000f73b
Id van proces met fout: 0x664
Starttijd van toepassing met fout: 0xplugin-container.exe0
Pad naar toepassing met fout: plugin-container.exe1
Pad naar module met fout: plugin-container.exe2
Rapport-id: plugin-container.exe3
Volledige pakketnaam met fout: plugin-container.exe4
Relatieve toepassings-id van pakket met fout: plugin-container.exe5

Error: (04/10/2017 11:13:29 PM) (Source: Application Hang) (User: )
Description: Het programma firefox.exe, versie 52.0.2.6291 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 20a8

Starttijd: 01d2b1ddc603f97b

Eindtijd: 4294967295

Toepassingspad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Rapport-id: 87e326ea-1e32-11e7-bf53-bc8556c8291a

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/10/2017 11:36:03 AM) (Source: SideBySide) (User: )
Description: Kan activeringscontext voor 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1' niet maken. Fout in manifest of beleidsbestand 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2 op regel UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/09/2017 03:34:04 PM) (Source: Application Hang) (User: )
Description: Het programma AcroRd32.exe, versie 15.23.20070.19033 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 170

Starttijd: 01d2b135e1b05411

Eindtijd: 5

Toepassingspad: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

Rapport-id: 2be9dc29-1d29-11e7-bf53-bc8556c8291a

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/09/2017 02:38:53 PM) (Source: SideBySide) (User: )
Description: Kan activeringscontext voor 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1' niet maken. Fout in manifest of beleidsbestand 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2 op regel UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/08/2017 09:10:26 PM) (Source: SideBySide) (User: )
Description: Kan activeringscontext voor 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1' niet maken. Fout in manifest of beleidsbestand 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2 op regel UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.

Error: (04/07/2017 05:28:07 AM) (Source: Application Hang) (User: )
Description: Het programma firefox.exe, versie 52.0.2.6291 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: 630

Starttijd: 01d2af255b86e62b

Eindtijd: 31

Toepassingspad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Rapport-id: 3289eca0-1b42-11e7-bf53-bc8556c8291a

Volledige pakketnaam met fout:

Relatieve toepassings-id van pakket met fout:

Error: (04/06/2017 02:49:43 PM) (Source: SideBySide) (User: )
Description: Kan activeringscontext voor 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1' niet maken. Fout in manifest of beleidsbestand 'UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2 op regel UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Onderdeel-id in manifest komt niet overeen met de id van het gevraagde onderdeel.
Verwijzing is UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definitie is UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Gebruik sxstrace.exe voor gedetailleerde diagnose.


System errors:
=============
Error: (04/11/2017 01:47:11 PM) (Source: Service Control Manager) (User: )
Description: De eapihdrv-service kan vanwege de volgende fout niet worden gestart:
%%1275 = Het laden van het stuurprogramma wordt geblokkeerd


Error: (04/11/2017 01:47:11 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Mia\AppData\Local\Temp\ehdrv.sys

Error: (04/11/2017 01:47:10 PM) (Source: Service Control Manager) (User: )
Description: De eapihdrv-service kan vanwege de volgende fout niet worden gestart:
%%1275 = Het laden van het stuurprogramma wordt geblokkeerd


Error: (04/11/2017 01:47:10 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Mia\AppData\Local\Temp\ehdrv.sys

Error: (04/11/2017 01:47:10 PM) (Source: Service Control Manager) (User: )
Description: De eapihdrv-service kan vanwege de volgende fout niet worden gestart:
%%1275 = Het laden van het stuurprogramma wordt geblokkeerd


Error: (04/11/2017 01:47:10 PM) (Source: Application Popup) (User: )
Description: \??\C:\Users\Mia\AppData\Local\Temp\ehdrv.sys

Error: (04/09/2017 10:42:36 PM) (Source: DCOM) (User: FAMILIELAB)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (04/09/2017 10:42:36 PM) (Source: DCOM) (User: FAMILIELAB)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (04/09/2017 10:42:35 PM) (Source: DCOM) (User: FAMILIELAB)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}

Error: (04/09/2017 10:42:35 PM) (Source: DCOM) (User: FAMILIELAB)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}


Microsoft Office Sessions:
=========================
Error: (04/11/2017 02:54:27 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.209111a6001d2b2b5851387834294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exefbdeac24-1eb5-11e7-bf53-bc8556c8291amicrosoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (04/11/2017 12:25:22 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: FAMILIELAB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147023170

Error: (04/10/2017 11:13:29 PM) (Source: Application Error)(User: )
Description: plugin-container.exe52.0.2.629158d41e88mozglue.dll52.0.2.629158d41a1f800000030000f73b66401d2b23d2d8e6a8dC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dll8b1c9401-1e32-11e7-bf53-bc8556c8291a

Error: (04/10/2017 11:13:29 PM) (Source: Application Hang)(User: )
Description: firefox.exe52.0.2.629120a801d2b1ddc603f97b4294967295C:\Program Files (x86)\Mozilla Firefox\firefox.exe87e326ea-1e32-11e7-bf53-bc8556c8291a

Error: (04/10/2017 11:36:03 AM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1

Error: (04/09/2017 03:34:04 PM) (Source: Application Hang)(User: )
Description: AcroRd32.exe15.23.20070.1903317001d2b135e1b054115C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe2be9dc29-1d29-11e7-bf53-bc8556c8291a

Error: (04/09/2017 02:38:53 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1

Error: (04/08/2017 09:10:26 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1

Error: (04/07/2017 05:28:07 AM) (Source: Application Hang)(User: )
Description: firefox.exe52.0.2.629163001d2af255b86e62b31C:\Program Files (x86)\Mozilla Firefox\firefox.exe3289eca0-1b42-11e7-bf53-bc8556c8291a

Error: (04/06/2017 02:49:43 PM) (Source: SideBySide)(User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"C:\Program Files\Microsoft Office 15\root\office15\lync.exe.ManifestC:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL1


=========================== Installed Programs ============================

Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{81C6F800-A69B-4E70-9DC0-74732F8B00E7}) (Version: 1.00.3015 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3003 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
Acer USB Charge Manager (HKLM\...\{07E867C5-0C48-40FF-A013-DDAF4565AD47}) (Version: 2.00.3003 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.19.170329 - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{7b509672-8eb5-466b-b85a-482e26ccc500}) (Version: 1.2.81.30631 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{BC5A9829-B67F-4E3A-83EE-0CDBDB6FBA1C}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
C2 (HKLM-x32\...\{20C07D8C-B482-420C-BC1E-2493678C7E14}) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated)
clear.fi SDK - Video 2 (HKLM-x32\...\{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}) (Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (HKLM-x32\...\{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}) (Version: 2.1.2606 - CyberLink Corp.) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKCU\...\Dropbox) (Version: 23.4.18 - Dropbox, Inc.)
ETDWare PS/2-X64 11.6.19.204_WHQL (HKLM\...\Elantech) (Version: 11.6.19.204 - ELAN Microelectronic Corp.)
f.lux (HKCU\...\Flux) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.3 - Google Inc.) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.17.0.001 - Uw bedrijfsnaam)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.77.0 - HTC)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3010 - Acer Incorporated)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4911.1002 - Microsoft Corporation)
Microsoft Office Proofing Tools 2013 - Nederlands (HKLM\...\{90150000-001F-0413-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Power Query for Excel (HKLM-x32\...\{9D8A8779-B1F0-4A09-8760-B9C2EA6AC165}) (Version: 2.38.4491.181 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 52.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 nl)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
NVIDIA Grafisch stuurprogramma 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer)
OpenOffice 4.0.0 (HKLM-x32\...\{EB29A33D-3425-486D-B602-E464ADE4D71C}) (Version: 4.00.9702 - Apache Software Foundation)
OpenVPN 2.3.11-I601 (HKLM\...\OpenVPN) (Version: 2.3.11-I601 - )
Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0003 - Nero AG) Hidden
QGIS Wien 2.8.2 Wien (HKLM\...\QGIS Wien) (Version: - QGIS Development Team)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.39 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.28130 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 0.98.1091 - RStudio)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD) (Version: 10.0.50903 - Microsoft Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
UiPath Studio Community (HKCU\...\UiPath) (Version: 2016.2.6192.32151 - UiPath)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VSee (HKCU\...\VSee) (Version: 15.0.0.505 - VSee Lab Inc)
WhoCrashed 5.53 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
WinRAR 5.30 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.2 - win.rar GmbH)

========================= Devices: ================================

Name: Qualcomm Atheros AR5BWB222 Wireless-netwerkadapter
Description: Qualcomm Atheros AR5BWB222 Wireless-netwerkadapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Device ID: PCI\VEN_168C&DEV_0034&SUBSYS_E052105B&REV_01\4&3080413D&0&00E2
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Device ID: BTHENUM\{61118058-486C-4BB0-B4B8-ACE4DCADEC44}_LOCALMFG&0000\7&23E336C5&0&000000000000_00000000
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Device ID: BTHENUM\{CBECAB40-A2C8-4AB3-ADC1-DE0FE95D8600}_LOCALMFG&0000\7&23E336C5&0&000000000000_00000000
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Device ID: BTHENUM\{DD533152-01F4-435C-ABFE-984BC21A2A65}_LOCALMFG&0000\7&23E336C5&0&000000000000_00000000
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 7848.28 MB
Available physical RAM: 5491.8 MB
Total Virtual: 9064.28 MB
Available Virtual: 6042.63 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:909.26 GB) (Free:779.17 GB) NTFS

========================= Users: ========================================

Gebruikersaccounts voor \\FAMILIELAB

Administrator Gast Mia
UpdatusUser
De opdracht is voltooid.

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan