Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie: 23.08.2018 Gestart door zesley (28-08-2018 10:29:00) Gestart vanaf C:\Users\zesley\Desktop Windows 8.1 (Update) (X64) (2015-12-18 23:56:43) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2719696411-1514045674-2822035422-500 - Administrator - Disabled) Gast (S-1-5-21-2719696411-1514045674-2822035422-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2719696411-1514045674-2822035422-1003 - Limited - Enabled) zesley (S-1-5-21-2719696411-1514045674-2822035422-1001 - Administrator - Enabled) => C:\Users\zesley ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Panda Dome (Enabled - Up to date) {CF440CD9-5435-10B1-04E0-7768B6F10320} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Panda Dome (Enabled - Up to date) {7425ED3D-720F-1F3F-3E50-4C1ACD76499D} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeïnstalleerd worden.) µTorrent (HKU\S-1-5-21-2719696411-1514045674-2822035422-1001\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.) abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated) abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.00.3009 - Acer Incorporated) abMusic (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 3.01.2003.6 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated) Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3008 - Acer Incorporated) Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8109 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8106.0 - Acer Incorporated) Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.01.3018 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8108 - Acer Incorporated) Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.02.3005 - Acer Incorporated) Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.02.3005 - Acer Incorporated) Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2011.1 - Acer Incorporated) Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated) Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated) Aloha TriPeaks (HKLM-x32\...\WTA-0f1385d6-0198-4eff-8e34-35998286f90a) (Version: 2.2.0.98 - WildTangent) Hidden AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated) Bejeweled 2 Deluxe (HKLM-x32\...\WTA-b1b4b04b-8111-4c23-9cd5-75b432c5434c) (Version: 2.2.0.95 - WildTangent) Hidden Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.24.1290 - Bitdefender) Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform) CrystalDiskInfo 5.6.2 Shizuku Edition (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.6.2 - Crystal Dew World) CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5524 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4220 - CyberLink Corp.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4609.02 - CyberLink Corp.) Farm to Fork Collector's Edition (HKLM-x32\...\WTA-6c658b71-c4d3-43fb-83a2-8a4651ff0125) (Version: 3.0.2.59 - WildTangent) Hidden Foxit PhantomPDF (HKLM-x32\...\{D4DF5498-C95C-4A02-9951-725FB2D7BC0D}) (Version: 6.0.121.624 - Foxit Corporation) Freemake Video Converter versie 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation) Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.8.0 - Ellora Assets Corporation) Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 11.0.0.7 - WildTangent, Inc.) Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 11.0.0.7 - WildTangent, Inc.) GemistDownloader (HKLM-x32\...\GemistDownloader) (Version: 2.9.0.7 - BeukemaMedia (HelpdeskWeb.nl)) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.2.1001 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-f9ed0bf5-ba09-4e8b-86e8-50e40d948003) (Version: 3.0.2.59 - WildTangent) Hidden inSSIDer (HKU\S-1-5-21-2719696411-1514045674-2822035422-1001\...\inSSIDer) (Version: 1.2.0 - MetaGeek, LLC) inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC) Intel(R) Chipset Device Software (HKLM-x32\...\{f5d71765-7cd1-4e68-998f-5b379e725da3}) (Version: 10.0.22 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.30.1072 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3939 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.0.1016 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.226.0 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1431.1) (HKLM\...\{302600C1-6BDF-4FD1-1407-148929CC1385}) (Version: 17.1.1407.0480 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{7991b5ae-96d7-4df2-97fb-a605b7cb638b}) (Version: 17.12.0 - Intel Corporation) Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Jewel Match 3 (HKLM-x32\...\WTA-71d26c96-a98c-4b45-88ee-03335d8857f0) (Version: 3.0.2.59 - WildTangent) Hidden King Oddball (HKLM-x32\...\WTA-4d198dd5-3d6e-4670-ba74-d6751b612c4e) (Version: 3.0.2.48 - WildTangent) Hidden Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) LUXOR Evolved (HKLM-x32\...\WTA-e5eb7581-6eea-45fd-9837-4375890b7515) (Version: 2.2.0.98 - WildTangent) Hidden Magic Academy (HKLM-x32\...\WTA-6c675a38-95ca-4fac-9039-44608eb95d6d) (Version: 2.2.0.98 - WildTangent) Hidden Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) MKVToolNix 15.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 15.0.0 - Moritz Bunkus) Mozilla Firefox 45.0.2 (x86 nl) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 nl)) (Version: 45.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2 - Mozilla) NVIDIA Graphics Driver 333.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 333.57 - NVIDIA Corporation) NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) One Touch Backup (HKLM-x32\...\{30F6D299-4990-4622-9FB8-2F95BB5F09FA}) (Version: 1.4.0.1 - ASMedia Technology) Hidden One Touch Backup (HKLM-x32\...\InstallShield_{30F6D299-4990-4622-9FB8-2F95BB5F09FA}) (Version: 1.4.0.1 - ASMedia Technology) Panda Devices Agent (HKLM-x32\...\{3F9548B2-0B34-4453-A92E-35056B053F19}) (Version: 1.08.00 - Panda Security) Hidden Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.08 - Panda Security) Hidden Panda Protection (HKLM\...\{DC22166B-6F26-4E2E-BFDE-CC3578246940}) (Version: 9.14.00 - Panda Security) Hidden Panda Protection (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 18.6.0 - Panda Security) Peggle Nights (HKLM-x32\...\WTA-b4984f64-6802-484a-90d7-944700242996) (Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-79beee5b-6174-4c11-a949-0994180d48b6) (Version: 3.0.2.59 - WildTangent) Hidden PokerStars.be (HKLM-x32\...\PokerStars.be) (Version: - PokerStars.be) Polar Bowler 1st Frame (HKLM-x32\...\WTA-9bee40f3-c178-4e5e-9f24-fb59fcbcb25d) (Version: 3.0.2.59 - WildTangent) Hidden QoQReVerse (HKLM-x32\...\QoQReVerse) (Version: - ) QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7344 - Realtek Semiconductor Corp.) SABnzbd 0.7.20 (HKLM-x32\...\SABnzbd) (Version: 0.7.20 - The SABnzbd Team) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB) Sublight (HKLM-x32\...\{04b62368-e432-4d56-b958-e492abba5b59}) (Version: 5.0 - Sublight Labs) Sublight (HKLM-x32\...\{5CA72C1D-C5EE-4BE4-A749-CFE6210302AA}) (Version: 5.0 - Sublight Labs) Hidden Subtitle Edit 3.5.0 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.5.0.0 - Nikse) The Chronicles of Emerland Solitaire (HKLM-x32\...\WTA-1e07cb93-0617-4679-9f6a-7ff53d3bfc27) (Version: 3.0.2.51 - WildTangent) Hidden Trinklit Supreme (HKLM-x32\...\WTA-bd61d0e0-1063-4003-be59-6954718b5b65) (Version: 2.2.0.98 - WildTangent) Hidden Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.13 - WildTangent) Hidden WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.31 bèta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.1 - win.rar GmbH) Zuma's Revenge (HKLM-x32\...\WTA-793255bc-8dfd-4dc0-bac5-f82323e7cb4c) (Version: 2.2.0.97 - WildTangent) Hidden ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated) ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2014-05-14] (Foxit Corporation) ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2018-05-30] (Panda Security, S.L.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (Alexander Roshal) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Geen bestand ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-11-06] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2014-08-31] (NVIDIA Corporation) ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2018-05-30] (Panda Security, S.L.) ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2018-05-30] (Panda Security, S.L.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-16] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-16] (Alexander Roshal) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {1F57D875-14DC-4D6B-888E-0B373927301C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15] (Adobe Systems Incorporated) Task: {20740F2C-E1C4-436E-A63A-8C0708993365} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [2017-09-28] () Task: {26D731B1-3F8A-4E9B-9278-58AAA0239373} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2014-08-30] () Task: {35A7C6F4-1198-4B56-A02A-EBA797E8D0CE} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [2014-03-05] () Task: {38BA9498-AB21-412E-8521-D8BAC3B43010} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-09-11] (Acer Incorporate) Task: {4F562474-08FB-4777-86C2-AE506F75C16B} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-06-17] (Acer Incorporated) Task: {55522988-275B-4AA6-B881-391E4F590F3E} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2017-09-26] (Acer Incorporated) Task: {55F64B04-AD75-4C4B-ADD1-CB469A604C43} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2014-07-22] (Acer Incorporated) Task: {6236380D-61B4-466B-9C87-120BA3EA8487} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate) Task: {901295A4-841B-4FBD-9A3C-3703002E9C11} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2014-08-30] () Task: {9304E89E-7CF1-4586-B193-1310801BC277} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2017-10-02] (Acer) Task: {9317E5BD-2583-4747-9C2C-EC636FC299B6} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2014-10-17] (Acer Incorporate) Task: {AF82F71A-00A4-49C0-8649-8205B4875EE4} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-07-31] (Bitdefender) Task: {BE40BD69-5167-4C51-975D-24CC9F4F9B55} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-15] (Adobe Systems Incorporated) Task: {BF549524-EA06-44E2-9F54-01988515FB59} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd) Task: {C122C457-3ADF-469C-88DF-3FFDB7494FE9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-18] (Google Inc.) Task: {C322A034-338F-4E9A-BA27-72E10A255235} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-18] (Google Inc.) Task: {D730FB4E-B934-4E49-8F4A-EF4FF64F7DED} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-08-17] (Microsoft Corporation) Task: {E4AF8115-8D96-4AE6-8858-75A7B7ABC6DA} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-08-15] (Adobe Systems Incorporated) Task: {E6E3AAF4-3C61-4B2D-AFD3-83C43B1DAB1E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {EBA96A8D-C41C-4BEE-B135-8AD8A18BD871} - System32\Tasks\update-S-1-5-21-2719696411-1514045674-2822035422-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) (Als een item is opgenomen in de fixlist, wordt de taak (job) bestand verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-2719696411-1514045674-2822035422-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Snelkoppelingen & WMI ======================== (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ShortcutWithArgument: C:\Users\zesley\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a3a1d6b8109861c5\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=nckgahadagoaajjgafhacjanaoiihapd ShortcutWithArgument: C:\Users\Public\Desktop\Dropbox.lnk -> C:\Program Files\Dropbox\StartURL.exe () -> hxxps://www.dropbox.com/partners/acer2014/download ==================== Geladen Modules (gefilterd) ============== 2015-01-24 14:03 - 2014-08-31 15:00 - 000116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-08-29 20:55 - 2012-04-24 12:43 - 000254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe 2014-08-29 21:00 - 2014-07-01 23:13 - 000111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll 2014-11-12 05:20 - 2014-11-06 11:16 - 000456296 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-01-24 14:05 - 2014-03-05 10:49 - 000053248 _____ () C:\Windows\SysWOW64\UMonit64.exe 2015-12-20 09:34 - 2015-12-20 09:36 - 000104960 _____ () C:\Program Files (x86)\SABnzbd\SABnzbd.exe 2018-08-09 09:18 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll 2018-08-09 09:18 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll 2014-11-12 05:20 - 2014-11-06 11:16 - 017341568 _____ () C:\WINDOWS\SYSTEM32\igd11dxva64.dll 2015-12-08 21:25 - 2015-12-08 21:25 - 000065536 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2017-09-28 18:21 - 2017-09-28 18:21 - 001769312 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe 2015-12-15 19:17 - 2015-12-15 19:17 - 000618544 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll 2014-10-10 19:37 - 2014-10-10 19:37 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-12-20 09:35 - 2015-12-20 09:36 - 000053248 _____ () C:\Program Files (x86)\SABnzbd\lib\_socket.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000671744 _____ () C:\Program Files (x86)\SABnzbd\lib\_ssl.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000294912 _____ () C:\Program Files (x86)\SABnzbd\lib\_hashlib.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000102400 _____ () C:\Program Files (x86)\SABnzbd\lib\win32api.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000118784 _____ () C:\Program Files (x86)\SABnzbd\lib\pywintypes25.dll 2015-12-20 09:35 - 2015-12-20 09:36 - 000013824 _____ () C:\Program Files (x86)\SABnzbd\lib\win32event.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000036864 _____ () C:\Program Files (x86)\SABnzbd\lib\win32service.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000057344 _____ () C:\Program Files (x86)\SABnzbd\lib\OpenSSL.crypto.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000007168 _____ () C:\Program Files (x86)\SABnzbd\lib\OpenSSL.rand.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000037888 _____ () C:\Program Files (x86)\SABnzbd\lib\OpenSSL.SSL.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000086016 _____ () C:\Program Files (x86)\SABnzbd\lib\_ctypes.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000049152 _____ () C:\Program Files (x86)\SABnzbd\lib\_sqlite3.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000546205 _____ () C:\Program Files (x86)\SABnzbd\lib\sqlite3.dll 2015-12-20 09:35 - 2015-12-20 09:36 - 000008192 _____ () C:\Program Files (x86)\SABnzbd\lib\select.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000009728 _____ () C:\Program Files (x86)\SABnzbd\lib\_yenc.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000012288 _____ () C:\Program Files (x86)\SABnzbd\lib\Cheetah._namemapper.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000135168 _____ () C:\Program Files (x86)\SABnzbd\lib\pyexpat.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000040960 _____ () C:\Program Files (x86)\SABnzbd\lib\win32process.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000110592 _____ () C:\Program Files (x86)\SABnzbd\lib\win32file.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000014848 _____ () C:\Program Files (x86)\SABnzbd\lib\win32evtlog.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000024576 _____ () C:\Program Files (x86)\SABnzbd\lib\servicemanager.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000019968 _____ () C:\Program Files (x86)\SABnzbd\lib\win32pipe.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000155648 _____ () C:\Program Files (x86)\SABnzbd\lib\win32gui.pyd 2015-12-20 09:35 - 2015-12-20 09:36 - 000176128 _____ () C:\Program Files (x86)\SABnzbd\lib\winxpgui.pyd 2017-09-22 16:14 - 2017-09-22 16:14 - 000202528 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll 2017-09-22 16:17 - 2017-09-22 16:17 - 000654072 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll 2017-09-22 16:17 - 2017-09-22 16:17 - 000641312 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll 2017-09-22 16:16 - 2017-09-22 16:16 - 000119072 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll 2017-11-13 10:17 - 2017-11-13 10:17 - 000015136 _____ () C:\WINDOWS\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll 2017-09-26 13:35 - 2017-09-26 13:35 - 000013088 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll 2017-09-26 13:34 - 2017-09-26 13:34 - 000277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll 2017-10-02 15:56 - 2017-10-02 15:56 - 000202456 _____ () C:\Program Files (x86)\Acer\Acer Portal\curllib.dll 2017-10-02 15:56 - 2017-10-02 15:56 - 000119000 _____ () C:\Program Files (x86)\Acer\Acer Portal\OpenLDAP.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, wordt alleen de ADS verwijderd.) ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. De waarde van "AlternateShell" wordt hersteld.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service" ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, zal het registeritem worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd.) ==================== Hosts inhoud: =============================== (Indien nodig kan Hosts:-opdracht worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2018-02-05 10:23 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2719696411-1514045674-2822035422-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\acer01.jpg DNS Servers: 195.130.130.5 - 195.130.131.5 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == HKU\S-1-5-21-2719696411-1514045674-2822035422-1001\...\StartupApproved\Run: => "Spotify Web Helper" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt het uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [{3458DD54-E0FF-4F06-BB29-EF4CB149B028}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{DB3BE63B-6FCD-4057-A6AF-2596A11BA895}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{96D89B5C-58D3-4755-AD8B-91EEA9E706C8}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{A4F8DA0F-6AE5-451E-AA84-E0EED01AC04D}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{4BB4B980-4B2D-45A2-AF75-6A91021BA3B7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{549E3BB0-DE9A-4F7D-B47E-282EB7EEEF71}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{068FAEF0-419C-42F8-9935-E7A12CE7DD2B}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{CEDB11DA-08F7-4AB2-B54D-09BBBC28445C}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{F5D0EC4F-CEA6-489B-95B9-C40F7EA8DC3A}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{9207F252-04ED-4939-B58F-C579558FEAD4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{13EA15BC-7129-4491-836E-796F4DA76CCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{FA58BFD6-515B-4D93-966F-9648C982217D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{00A0B12F-EB10-4B29-A46C-1D28F62165C4}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{F6AB95FA-0094-40E2-AC7D-713A7D7EACFB}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{D5DCD0FC-0D60-4EA7-9E66-D23EA3610F11}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{2BE5EF27-05DD-4727-A280-1CFBB066DD83}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{C4E7A64D-8574-4113-BA1C-01F67FC81757}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe FirewallRules: [{8252AAB3-4B3F-4DC8-9B54-072C04864BEC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe FirewallRules: [{AD492FC2-68D3-4353-AD4C-C9761AFC2B5A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe FirewallRules: [{E53748CE-E918-4AA2-8742-2262DBCFF378}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{ED44F4B5-0F99-4808-B6E2-9E89E516F3C2}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{AF7BDC90-CAE8-4E50-8A75-2CD2385305B5}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{144E1DD8-A562-4B89-A76E-33C93ECE92DB}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3B347060-3AA5-4D1A-90A1-BC60803F2999}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A3F2FEBD-0B4A-40D4-84D2-5E738D0186D6}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C2CDB23D-071D-4D4D-A288-E68C11259D11}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B450E14A-7F70-4222-A8EB-305F2E870468}] => (Allow) C:\Users\zesley\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D6FE9D16-D9E1-44B3-A1D3-19C1F1C7C2EF}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{4CE9653F-45C7-499B-A2A3-7207836D3F5F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{569D6A6D-CB74-4831-9EB7-E0F71406551F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{869F56AB-D48E-40E7-A943-0D7304C2C6DD}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{16202C3F-7F35-43D6-A0BF-701F1184BCFA}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{086B323C-10F1-4239-8D2F-276D794AB848}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{92B49779-F709-4B3D-885A-9AE1123B2D38}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{63ECADD7-9220-42F9-BE3A-209B0F5E4221}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{7DD482A4-D858-492E-9912-236412FAE6C6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7861368D-C5B7-4142-8A1E-193008DD5552}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{98A77FD2-10ED-42C4-95C5-C4CF891C57BF}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{06A5FBA8-C1DD-4FD5-903A-DCAB7180E1FB}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{90C03782-ABF0-4BE8-85D8-936C3A8A52F3}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{4103A7D0-8AB7-4BE8-BC4B-8778F748C32A}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{8BC48D62-465E-433A-8945-903EE7A4C973}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{2BC4A95A-EB57-4BCF-A439-A5DF367E69AA}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{D74B6A5E-B9D1-40E1-A98F-1ACCAF16D47E}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{BD9B4DC4-4B87-4BE1-B1BA-1F2D0E3EE2AE}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{9F44ECB3-6F92-4B40-B6E9-EEB958A3FC12}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{47EDCEBE-4BD5-4FF3-BA3E-AEB2CC4D5127}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{7BD47664-5039-43B4-9DB0-F0DC6809597F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{6363FA2D-7B59-471E-9042-5FAEA1ADBD29}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{8257B337-6D87-43C5-BD61-0212D3FA6636}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{E09ED968-477E-47D5-B206-F42FCE1C825E}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{26DFDAA5-26B4-4267-890D-D9923292747F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{B0E9DED1-951E-41BD-82A0-1CC915A2883E}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{495E2B98-11F2-4031-9D9E-989C7F0F76C2}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{192E8024-6BA2-4008-9C23-C8C0931EB601}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{5662291B-9A0E-4BE0-A078-3C5E340DB458}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{C5257419-0A48-4157-B3E2-DFAFB7A31B82}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{6C9FB95D-F9E9-4BD8-86A4-D9A7DC622577}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{390A7953-5DCC-4402-978A-77660988418C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{1EFD6993-49BD-4A11-B4AF-81C8DB9F8E37}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{87463DF5-2E54-47B2-BD8A-E5EBB067F781}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe FirewallRules: [{51B7975C-E045-48AF-BA12-3EA673C92F42}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{7F604F24-C284-4351-97DB-E2C4F56F97EC}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe FirewallRules: [{036D1A7A-E312-4FF5-948B-8942B73C7ACB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{005F3DA9-091C-466E-88A5-CF5B6D0872F3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{844653BA-E97F-4E36-BD5D-44407028D940}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{F1A787B4-5142-42C2-8FE8-32CDEDF5892E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe FirewallRules: [{8B6B75A6-1FFD-43DD-8403-7781C289FFD0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe ==================== Herstelpunten ========================= 17-08-2018 08:59:38 Windows Update 24-08-2018 13:28:26 Installed inSSIDer Home 24-08-2018 14:36:51 Removed Bonjour ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (08/28/2018 10:16:22 AM) (Source: MsiInstaller) (EventID: 11907) (User: NT AUTHORITY) Description: Product: Panda Dome -- Fout 1907. Kan lettertype niet registreren. Controleer of u voldoende rechten hebt voor het installeren van lettertypen en of dit lettertype door het systeem wordt ondersteund. Error: (08/28/2018 10:15:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: utilman.exe, versie: 6.3.9600.17415, tijdstempel: 0x54504b3b Naam van module met fout: DUI70.dll, versie: 6.3.9600.17415, tijdstempel: 0x54503e18 Uitzonderingscode: 0xc0000005 Foutmarge: 0x0000000000003173 Id van proces met fout: 0xb50 Starttijd van toepassing met fout: 0x01d43ea6a1c054ec Pad naar toepassing met fout: C:\WINDOWS\system32\utilman.exe Pad naar module met fout: C:\WINDOWS\system32\DUI70.dll Rapport-id: 800a7bbf-aa9a-11e8-8326-2c600c554f7b Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (08/27/2018 11:43:57 AM) (Source: MsiInstaller) (EventID: 11907) (User: NT AUTHORITY) Description: Product: Panda Dome -- Fout 1907. Kan lettertype niet registreren. Controleer of u voldoende rechten hebt voor het installeren van lettertypen en of dit lettertype door het systeem wordt ondersteund. Error: (08/27/2018 11:39:26 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: utilman.exe, versie: 6.3.9600.17415, tijdstempel: 0x54504b3b Naam van module met fout: DUI70.dll, versie: 6.3.9600.17415, tijdstempel: 0x54503e18 Uitzonderingscode: 0xc0000005 Foutmarge: 0x0000000000006b06 Id van proces met fout: 0xbc0 Starttijd van toepassing met fout: 0x01d43de97684f4e9 Pad naar toepassing met fout: C:\WINDOWS\system32\utilman.exe Pad naar module met fout: C:\WINDOWS\system32\DUI70.dll Rapport-id: 15ac0540-a9dd-11e8-8323-2c600c554f7b Volledige pakketnaam met fout: Relatieve toepassings-id van pakket met fout: Error: (08/27/2018 11:02:39 AM) (Source: MsiInstaller) (EventID: 11907) (User: NT AUTHORITY) Description: Product: Panda Dome -- Fout 1907. Kan lettertype niet registreren. Controleer of u voldoende rechten hebt voor het installeren van lettertypen en of dit lettertype door het systeem wordt ondersteund. Error: (08/27/2018 10:25:00 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider $Core heeft geprobeerd query select * from __TimerEvent te registreren, waarvan doelklasse __TimerEvent in naamruimte //./ROOT/SecurityCenter niet bestaat. De query wordt genegeerd. Error: (08/27/2018 10:25:00 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider $Core heeft geprobeerd query select * from __SystemEvent te registreren, waarvan doelklasse __SystemEvent in naamruimte //./ROOT/SecurityCenter niet bestaat. De query wordt genegeerd. Error: (08/27/2018 10:25:00 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY) Description: Gebeurtenisprovider $Core heeft geprobeerd query select * from __NamespaceOperationEvent te registreren, waarvan doelklasse __NamespaceOperationEvent in naamruimte //./ROOT/SecurityCenter niet bestaat. De query wordt genegeerd. Systeemfouten: ============= Error: (08/28/2018 10:25:11 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x80070643: Definitie-update voor Windows Defender Antivirus - KB2267602 (definitie 1.275.300.0). Error: (08/28/2018 10:25:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Windows Defender Service-service kan vanwege de volgende fout niet worden gestart: Kan de digitale handtekening voor dit bestand niet controleren. Door een recente wijziging in software of hardware is mogelijk een bestand geïnstalleerd dat onjuist is ondertekend of beschadigd is, of dat mogelijk schadelijke software van een onbekende bron is. Error: (08/28/2018 10:14:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: De Windows Defender Service-service kan vanwege de volgende fout niet worden gestart: Kan de digitale handtekening voor dit bestand niet controleren. Door een recente wijziging in software of hardware is mogelijk een bestand geïnstalleerd dat onjuist is ondertekend of beschadigd is, of dat mogelijk schadelijke software van een onbekende bron is. Error: (08/28/2018 10:14:38 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (08/28/2018 10:12:38 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Error: (08/28/2018 10:10:18 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY) Description: Er is een beschadiging ontdekt in de bestandssysteemstructuur op het volume K:. De exacte beschadiging is onbekend. De bestandssysteemstructuren moeten online worden gescand. Error: (08/28/2018 10:10:22 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: De vorige afsluiting van het systeem om 10:06:56 op ‎28/‎08/‎2018 is onverwacht gebeurd. Error: (08/28/2018 10:08:57 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: De server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} heeft zich niet binnen de vereiste termijn bij DCOM geregistreerd. Windows Defender: =================================== Date: 2017-02-01 09:30:14.174 Description: Windows Defender heeft een fout aangetroffen bij het laden van handtekeningen en probeert terug te keren naar een juiste set handtekeningen. Geprobeerde handtekeningen: Huidig Foutcode: 0x80073aba Foutbeschrijving: De bron is te oud om compatibel te kunnen zijn. Handtekeningversie: 1.177.229.0;1.177.229.0 Engineversie: 1.1.10701.0 CodeIntegrity: =================================== Date: 2018-08-28 10:25:00.200 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-28 10:14:53.045 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-27 11:39:06.296 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-27 11:23:00.200 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-27 10:58:00.920 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-27 10:24:47.348 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-27 08:35:30.801 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-26 10:22:06.940 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Percentage geheugen in gebruik: 42% Totaal fysiek RAM-geheugen: 8107.32 MB Beschikbaar fysiek RAM-geheugen: 4694.48 MB Totaal Virtueel geheugen: 16299.32 MB Beschikbaar Virtueel geheugen: 12317.7 MB ==================== Schijven ================================ Drive c: (Acer) (Fixed) (Total:448.4 GB) (Free:163.97 GB) NTFS Drive e: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.18 GB) NTFS Drive h: (OS) (Fixed) (Total:447.69 GB) (Free:101.36 GB) NTFS Drive i: (RECOVERY) (Fixed) (Total:17.78 GB) (Free:17.7 GB) NTFS Drive j: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.1 GB) FAT32 Drive k: (USB2) (Removable) (Total:14.91 GB) (Free:4.7 GB) NTFS \\?\Volume{b0640906-017e-4e12-8b1a-9bfd69d0bc9a}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.26 GB) NTFS \\?\Volume{354b4d7d-fdb7-4667-92ef-5a4a8d1c8747}\ (Push Button Reset) (Fixed) (Total:16.36 GB) (Free:1.7 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: E0A352FA) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: C3072E18) Partition 1: (Not Active) - (Size=14.9 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 465.8 GB) (Disk ID: C209C1BA) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=447.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=17.8 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=103 MB) - (Type=0C) ==================== Eind van Addition.txt ============================