Welkom op ons forum!

Heb je een computerprobleem of een algemene vraag? Registreer een account op het forum, wij helpen je dan graag verder om het probleem vakkundig op te lossen.

Gebruikersavatar
Meanannie
Lid
Berichten: 14
Lid geworden op: 02 feb 2007 20:07

(Deel 2)


Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD5000BPVT-22A1YT0
Partitions: 4
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Removable Media
Interface type:
Media Type: Removable Media
Model: SDHC Card
Partitions: 1
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 400,00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 300,00MB
Starting Offset: 420478976
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 444,00GB
Starting Offset: 869269504
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 21,00GB
Starting Offset: 477558210560
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Unknown
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 7,00GB
Starting Offset: 4194304
Hidden sectors: 0


< %SYSTEMDRIVE%\*.exe >

< %SYSTEMDRIVE%\*.* >
[2013-01-11 13:11:47 | 000,001,024 | ---- | M] () -- C:\.rnd
[2013-02-26 10:02:11 | 000,003,451 | ---- | M] () -- C:\AdwCleaner[S1].txt
[2012-06-02 15:30:55 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
[2013-02-26 10:22:46 | 3281,846,272 | -HS- | M] () -- C:\hiberfil.sys
[2013-02-26 10:22:53 | 738,197,504 | -HS- | M] () -- C:\pagefile.sys
[2013-02-26 10:22:53 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.sys /90 >

< %systemroot%\system32\*.dll /lockedfiles >
[2012-10-11 06:06:08 | 000,550,912 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FirewallAPI.dll
[2013-01-10 00:26:23 | 017,560,576 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\shell32.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\system32\*.exe /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %PROGRAMFILES%\* >
[2012-07-26 09:11:35 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

< %USERPROFILE%\..|smtmp;true;true;true /FP >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files (x86)\Mozilla Firefox\firefox.exe [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --make-default-browser [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --hide-icons [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --show-icons [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012-12-20 03:27:37 | 000,775,128 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012-12-20 03:27:37 | 000,775,128 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2013-01-05 15:40:07 | 000,866,472 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2013-01-05 04:43:57 | 000,917,552 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --MAKE-DEFAULT-BROWSER [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --HIDE-ICONS [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --SHOW-ICONS [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" [2013-02-21 06:23:46 | 001,274,320 | ---- | M] (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2012-12-20 01:29:29 | 000,050,688 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2012-12-20 01:29:29 | 000,050,688 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2012-12-20 01:29:29 | 000,050,688 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2012-12-20 03:27:37 | 000,775,128 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE [2012-12-20 03:27:37 | 000,775,128 | ---- | M] (Microsoft Corporation)

< End of report >
C'est le Ton qui fait la musique!
Gebruikersavatar
Meanannie
Lid
Berichten: 14
Lid geworden op: 02 feb 2007 20:07

OTL Extras logfile created on: 26-2-2013 13:43:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\DutchWoolDiva\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16484)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

3,82 Gb Total Physical Memory | 2,72 Gb Available Physical Memory | 71,14% Memory free
4,51 Gb Paging File | 3,27 Gb Available in Paging File | 72,56% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 443,95 Gb Total Space | 366,18 Gb Free Space | 82,48% Space Free | Partition Type: NTFS
Drive E: | 7,40 Gb Total Space | 7,25 Gb Free Space | 98,00% Space Free | Partition Type: FAT32

Computer Name: DWD-PC | User Name: DutchWoolDiva | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" (Macromedia, Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Browse with Paint Shop Pro 9] -- "C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\\Paint Shop Pro 9.exe" "/Browse" "%L" (Jasc Software, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
jsfile [edit] -- "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" (Macromedia, Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Browse with Paint Shop Pro 9] -- "C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\\Paint Shop Pro 9.exe" "/Browse" "%L" (Jasc Software, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04ED0FAB-A1AA-4C95-8874-E64BEB30C985}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{05772061-581B-4639-98F2-32426C542125}" = rport=139 | protocol=6 | dir=out | app=system |
"{1B5153D0-7457-4921-A024-8CBA97DE5891}" = rport=445 | protocol=6 | dir=out | app=system |
"{270F26BB-47EF-43BE-8B2D-8DD6E4C9C975}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{29149A94-9AB1-4130-904C-47643524A6C5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3041C372-926E-4105-8D56-FF5592838EBC}" = rport=137 | protocol=17 | dir=out | app=system |
"{3124D7EC-CEEF-4342-922D-0D62CC4C122A}" = lport=139 | protocol=6 | dir=in | app=system |
"{3630997E-28E2-4645-82DC-D747B1E21556}" = lport=10243 | protocol=6 | dir=in | app=system |
"{484B3E4B-CD6F-4FCF-AF98-F6F4517A330A}" = lport=137 | protocol=17 | dir=in | app=system |
"{4DDF22DB-1F56-4452-AB5E-502E76B576C4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5FDE1171-F270-4E7C-AA40-EFBEF7F1165D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6BAB79EB-84E0-490A-AED5-DB0DEC9CD57A}" = lport=138 | protocol=17 | dir=in | app=system |
"{6C4046B8-4612-449F-B570-A2D71AF59BEA}" = lport=445 | protocol=6 | dir=in | app=system |
"{701B2578-6722-4D6C-84A3-B99B72FE0E69}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8DACD90F-3797-4B7E-A0ED-BC7DEB14EAF5}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{9078019F-C34F-4FCA-9766-0ED4AA295AEE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{95176391-BEE5-4329-B5C0-A91481206A74}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{9C991E34-5FD5-4F50-9A1C-0FECCE1569D6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A28EAC70-F7D4-4BC8-AB9D-CF3C265866DF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C39E89C1-064F-4D7C-940C-0F176F434B64}" = rport=138 | protocol=17 | dir=out | app=system |
"{D2F6454D-07AF-4439-8C14-8D8E9521557F}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D85F6DD6-68B0-49AD-80AF-6E5D1DCF1DAA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F11CCE97-DE01-4727-A0B5-F4F7C0EC1152}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{009777F9-BE61-4761-A124-A7D233CCD3F3}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{00C1B829-BF13-4BF7-A0FD-D9AE319BB445}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{02B0FDC1-C68C-42FC-89B9-2E13CB52931C}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe |
"{03BBC966-3336-4159-9B6E-EE4D3B5AAE3D}" = dir=in | name=kindle |
"{06CCFD9E-A37D-4B53-A40B-6D4EFFF69C17}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{087A6990-EF3B-45DA-B4B3-70C7359D3858}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{0AFB9982-8790-4AB4-929F-FFC11D5EE839}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{0B58C10D-F17C-4B82-8BDB-CAA610A6ACB5}" = dir=out | name=windows_ie_ac_001 |
"{1838BBA4-9868-487F-A165-D63F829E0E83}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1937E545-296B-4EFD-A17D-331906F09D46}" = protocol=17 | dir=in | app=c:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe |
"{218FE545-FC08-46DC-8338-6D306231ADF0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{22CD2F9A-7FF3-4EDC-9339-DCDB0B172F41}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\backupmanager.exe |
"{2472D044-FB94-4B70-95AC-D56D8D6402E5}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{29C33793-EC2F-4660-A0A5-7030882BC328}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe |
"{2CC0B96B-586E-4D48-B4BF-52CA82B0286A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2D7F607B-848A-4F58-B2F8-BCA6FDAF6A74}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe |
"{2EDB7DF3-49D9-4A74-8208-E2462D110EB7}" = dir=out | name=evernote |
"{2FA60ECA-13F6-4F23-9E7D-F1E874DC482F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{32598268-C7E5-4119-A03B-E767490C357A}" = dir=out | name=pinball fx2 |
"{36ABDBB0-AED5-4E17-8B2E-F972CAD9AF02}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{391F55A6-9BB3-49CA-8450-C8C1EC8365D7}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{3AF1C509-73FD-4812-9607-786481DDA5E4}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{3BD0C6FF-559E-4F2A-AF97-C0AFABEA87A1}" = dir=out | name=cut the rope |
"{3D35D429-0FF9-4DB6-B7BB-12FEDFEAF3CF}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe |
"{40B6E18D-6A25-4022-B9A9-9F09A98BDC4D}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\video\videoplayer.exe |
"{439C5DA6-8618-4C86-A383-227C89DE2521}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{46129DEF-2A63-44A0-997F-32B9E4743EF3}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{46602CC5-BDBF-4BB4-BCC1-623DAFC73C05}" = dir=out | name=newsxpresso metro |
"{49ADAB43-0428-4FA9-BEE7-89D8CA603F95}" = dir=out | name=acer explorer |
"{4B94C4E6-DB58-4F0E-A635-8B8C0505642B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4CBF768E-5FB2-4881-B187-0EE094322047}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe |
"{4DEF5689-78B4-4185-A588-18FE9C7A414F}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe |
"{5201C9F4-E839-4F5C-B6EB-35CEBEE1DB96}" = dir=out | name=kindle |
"{55255724-0A9A-4C2C-B946-FCF12E38D3ED}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{554A9B34-A045-4F77-8BBF-31B886DF4369}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\ischedulesvc.exe |
"{5588C54C-92BA-41D0-8B39-98BECA0A44F5}" = dir=out | name=taptiles |
"{576C0EDD-FF26-4ABF-8B5D-6956FAEE2356}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe |
"{57D0BE3A-2EE6-490D-B134-983600F49309}" = dir=out | name=social jogger |
"{5883389C-856F-495E-9730-F4DDF529FA85}" = dir=out | name=wordament |
"{59AB8C66-C0F9-4D7D-955D-1E25ABE25D40}" = dir=in | name=pinball fx2 |
"{5C7C3207-C645-4106-A50D-CC94DED1CB51}" = dir=out | name=microsoft solitaire collection |
"{6076F51E-23B7-4513-B93E-27691D308705}" = dir=out | name=skitch |
"{60E39372-0037-4427-B1A9-2AAEC3E0E9B8}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{62B01177-E37D-4735-84A6-996B4F31AC6F}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe |
"{64EE0E62-A318-4ACF-829F-8520678B0DB5}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe |
"{66883004-1448-4FE3-A828-73F042EE23B8}" = dir=out | name=currency converter |
"{6874A126-68D0-45F9-8B6F-A29AE56FBA79}" = dir=in | name=skype |
"{6AD3EB9E-FCF2-481B-9212-84BB539C6681}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{7011778B-0E8E-466B-878D-464EDF1B127A}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{727C44C1-5D89-4CD9-839A-55CBD9AC44E6}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{74371E7A-D5DA-4210-9DCD-1424A4564D78}" = protocol=17 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"{750E7A98-05D4-412C-8350-29BF40C66BDF}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{76CC9E20-F6F4-4B46-9F36-DA4B31D838C1}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{7BA224A8-EBAF-45CA-8D78-E8D3A7ED4469}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{7DDEE159-BFDE-4DE1-BE28-AF6289A0A990}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\video\musicplayer.exe |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{89CE8415-43AE-4118-894F-6C6CF7095A58}" = dir=in | name=currency converter |
"{8F263E94-60CD-4568-A798-86308B41B3F5}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{92E49D4A-B198-42C7-8492-C116F22540A1}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{9EB072DA-2CBD-4C04-92B8-61F85AF1FB2F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9F5C8D4D-0141-48D4-95DD-2D6DD8A3C941}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe |
"{9F8F485D-26E7-4878-BC7B-1F7C36446712}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A096ECD5-081E-409D-8191-0730EE14199A}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{A0DE000E-1F79-4FD5-95D1-1035F6DDC15A}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{A11DB08B-C417-4543-A986-D3FE938CD805}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A313134F-86E9-4E27-9067-C70206F1A86D}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{A3CAC76B-E4B8-4A55-A6C6-1241FB9E071E}" = protocol=6 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"{A7519901-6068-4317-B857-67AB816A0C31}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A99D3ED8-6BF1-4FA6-9038-8509AEDD4286}" = protocol=6 | dir=out | app=system |
"{AC4C6EE3-D580-4A37-8568-62DB8932145F}" = dir=out | name=7digital music store |
"{AF6236E4-C501-43FB-AF55-B4636A8B9CBD}" = dir=out | name=microsoft mahjong |
"{B2BCF856-1540-487A-A463-A95C3B298C1B}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{B42B0721-EC56-4D23-ABD2-FFA08C352EE2}" = dir=out | name=adera |
"{B788E4F3-7DD9-4E1B-8AB9-6CB401F49C79}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BC1EE3A1-D342-4161-A5C5-462EA3AB9CA9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{C2F95B3F-1FC3-4A09-A1A6-7D9E1F2A6A84}" = protocol=6 | dir=in | app=c:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe |
"{C44F4001-5117-4E3F-972D-06FD998E2275}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\fileexplorer.exe |
"{CED46399-0562-4E81-A1F1-7B2F6D49D550}" = dir=in | name=evernote |
"{D0129041-3A93-478F-A41C-08063652A421}" = dir=out | name=tunein radio |
"{D7A0E220-0FA2-4346-8542-F166D672B260}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{DBDD9B2D-201F-4FC0-B4C2-987D5822CC1C}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\movie\playmovie.exe |
"{DC4B0F87-5A7D-4D5E-98C5-BB519B9BB953}" = dir=out | name=skype |
"{DDCC9DB1-4A8C-4B49-A847-9B8EFFF7C164}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{DF202505-CF76-444F-A4E7-D6C98CF1A07F}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{E326B242-1803-44F0-8EEA-791864CF1056}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E99E6864-B55B-4385-B380-2483EAEAB4D0}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{EB7829DE-C704-4DBD-8BEA-02AC0524B656}" = dir=out | name=weatherbug |
"{EC0E6E3C-F03B-4072-9E07-46DBE1333CAD}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{F1588E64-CDD9-44BA-8A70-3A9C479877E2}" = dir=out | name=acer crystal eye |
"{F1D20A0E-AF7D-47FF-969E-8A259279B05C}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"TCP Query User{7197ABEF-AADF-44F7-96A6-CE967DADFE68}C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe |
"TCP Query User{C43FA525-45BF-4405-9C81-6DD37039A8EF}C:\program files (x86)\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files (x86)\emule\emule.exe |
"TCP Query User{C9A46AA3-2F8B-4E65-B219-DAE46BC27D2D}C:\users\dutchwooldiva\desktop\utorrent.exe" = protocol=6 | dir=in | app=c:\users\dutchwooldiva\desktop\utorrent.exe |
"TCP Query User{EFD8C3CA-45D6-4DCC-B790-9F53B9E8F475}C:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{653EE934-559E-4C19-8497-097EC68F5F36}C:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\dutchwooldiva\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{8AD9E587-2E5C-4A50-AF36-6A8E3848AB89}C:\users\dutchwooldiva\desktop\utorrent.exe" = protocol=17 | dir=in | app=c:\users\dutchwooldiva\desktop\utorrent.exe |
"UDP Query User{8D511E54-7F63-46CE-9D0E-E6C6364DAF1C}C:\program files (x86)\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files (x86)\emule\emule.exe |
"UDP Query User{CCFF4BDE-50DE-41FD-B250-47FC0AD0E3E9}C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}" = Acer Recovery Management
"{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
"{26A24AE4-039D-4CA4-87B4-2F86417011FF}" = Java 7 Update 11 (64-bit)
"{27EF252D-800C-ED42-9904-459FE0046225}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
"{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}" = Acer Device Fast-lane
"{3FA063D7-EDC1-AFA8-54AF-0563C7DEE070}" = Windows App Certification Kit Native Components
"{5FB4C443-6BD6-1514-2717-3827D65AE6FB}" = Windows Software Development Kit DirectX x64 Remote
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{7346C35D-942D-3CCE-94CB-7008BA8D63CB}" = Application Verifier x64 External Package
"{8215A318-CC27-435E-B3EA-2E3443C8998C}" = Acer Instant Update Service
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{91F52DE4-B789-42B0-9311-A349F10E5479}" = Acer Power Management
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"Bullzip PDF Printer_is1" = Bullzip PDF Printer 9.3.0.1516
"Pen Tablet Driver" = Bamboo

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00180409-78E1-11D2-B60F-006097C998E7}" = Microsoft Access 2000 Runtime
"{02213A81-CB13-7262-5ABE-1FFA2C75559F}" = Windows App Certification Kit x64
"{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform
"{07A540AB-D785-11D5-8E89-0090275862A0}" = Corel Graphics Suite 11
"{0837A661-FEC3-48B3-876C-91E7D32048A9}" = Macromedia Dreamweaver 8
"{15EB20D6-5F13-41D0-BEF9-C9C44D6AC620}" = SDFormatter
"{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{23176E97-26CB-C72A-19EB-BFB21AC1D15A}" = Windows Software Development Kit DirectX x86 Remote
"{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros WiFi Driver Installation
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}" = clear.fi SDK- Movie 2
"{363a2c1e-637f-45ce-933b-5a5463efd945}" = Windows Software Development Kit
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
"{3D9CB654-99AD-4301-89C6-0D12A790767C}" = Identity Card
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{42F61556-29ED-8122-F39E-6F04EA5FF279}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA2A466-8031-403A-8236-5301B4E391FB}" = Windows Live UX Platform Language Pack
"{4AE57014-05C4-4864-A13D-86517A7E1BA4}" = Microsoft .NET Framework 4.5 SDK
"{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform
"{512957F0-B211-C50A-C1FC-6867FC3348A1}" = Windows Software Development Kit Redistributables
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}" = Windows Software Development Kit
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform
"{6D2BBE1D-E600-4695-BA37-0B0E605542CC}" = Office Addin
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{743FD554-A73F-4FE8-BE7B-C283D16297F9}" = Photo Common
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{95140000-00AF-0413-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{986EABFC-92F6-CECD-9E5A-B13CAC40BB1D}" = WPTx64
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Backup Manager v4
"{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}" = AcerCloud
"{A5D42D71-4036-5F88-5085-657C9DF9F1DD}" = WPT Redistributables
"{A694AF57-9891-4D62-824C-7E55A1361A14}" = eBay Worldwide
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1043-7B44-AB0000000001}" = Adobe Reader XI (11.0.01) - Nederlands
"{AE8044B5-FCA3-4EBE-AC78-0FB3A6E8DC76}" = Movie Maker
"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4
"{B5AD89F2-03D3-4206-8487-018298007DD0}" = clear.fi Photo
"{B7F31B9C-8775-4500-8E9D-6ABE9AE17CF4}" = Windows Live Essentials
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C169BD5F-00C1-437C-8162-88FA6BE495D5}" = OpenOffice.org 3.4.1
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
"{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common
"{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}" = AcerCloud Docs
"{D11F66FF-82B3-DDB8-1146-525370552BE1}" = Windows Software Development Kit for Windows Store Apps
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{D4F102C5-EEA1-CAE1-8E67-1A7FCE27F673}" = Windows Software Development Kit EULA
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E14DDED2-919B-FCCB-84AC-5ABB6D182D46}" = Kits Configuration Installer
"{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5
"{E63A3353-003C-E4C2-230B-F155212D1479}" = SDK Debuggers
"{E9AF1707-3F3A-49E2-8345-4F2D629D0876}" = clear.fi Media
"{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}" = clear.fi SDK - Video 2
"{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker
"{EE26E302-876A-48D9-9058-3129E5B99999}" = Live Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F67CA22C-C11F-4573-8406-57F75BA06B51}" = Photo Gallery
"{F843C6A3-224D-4615-94F8-3C461BD9AEA0}" = Jasc Paint Shop Pro 9
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"avast" = avast! Free Antivirus
"Bluefish" = Bluefish 2.2.1
"eMule" = eMule
"Google Chrome" = Google Chrome
"InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}" = CorelDRAW Graphics Suite 11
"InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Acer Backup Manager
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5
"IrfanView" = IrfanView (remove only)
"Knit Visualizer Demo 2.1" = Knit Visualizer Demo 2.1
"LManager" = Launch Manager
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Visual Studio 2005 Tools for Office Second Edition Runtime
"Mozilla Firefox 18.0 (x86 nl)" = Mozilla Firefox 18.0 (x86 nl)
"Mozilla Thunderbird 17.0.3 (x86 nl)" = Mozilla Thunderbird 17.0.3 (x86 nl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"ODEUNST #1" = Unit 4 Vastlegging Financieel 2.2
"OpenSSL Light_is1" = OpenSSL 0.9.8i Light
"uTorrent" = µTorrent
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
"Wacom WebTabletPlugin for Internet Explorer and Netscape" = WebTablet FB Plugin
"Wacom WebTabletPlugin for Netscape" = WebTablet Netscape Plugin
"WildTangent wildgames Master Uninstall" = WildTangent Games
"WinLiveSuite" = Windows Live Essentials
"WTA-07b9d720-69c9-46e6-8be5-0b5df514ff1c" = Zuma's Revenge
"WTA-09180a15-ecf4-4cf0-b190-49c8d48ec7ab" = Penguins!
"WTA-0d73e6b9-7605-4967-9241-6d31a66c59e3" = Delicious: Emily's True Love Premium Edition
"WTA-1aa9cdfb-031d-42d3-95b9-f3d4238574f5" = Magic Academy
"WTA-2fbdc90c-ea08-4cdb-a114-0579e7ca5b84" = John Deere Drive Green
"WTA-7bd0d6a5-7ea6-4128-94e4-f23bcbb5b747" = Island Tribe
"WTA-821d3b11-2944-40a3-9330-f79bb6888d40" = Agatha Christie - Death on the Nile
"WTA-903138d6-c938-405f-85b5-99c32c29f39c" = Plants vs. Zombies - Game of the Year
"WTA-913ef5ff-89c2-4a21-9001-b70d1642da99" = Tales of Lagoona
"WTA-98738a97-f6d5-455a-9d22-02dbd629a990" = Bejeweled 3
"WTA-9df68d2d-fff3-402f-8466-c38971097b3f" = Polar Bowler
"WTA-acc4604f-e512-44fb-b4d5-6a92a82cb098" = Jewel Match 3
"WTA-b4e8a6a5-cecd-4c3d-8607-06bb57bfedb2" = Governor of Poker 2 Premium Edition
"WTA-b9ee9910-759b-4749-9e7c-e77c4027d44b" = Aloha TriPeaks

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3556543903-515671045-477291241-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox

========== Last 20 Event Log Errors ==========

[ System Events ]
Error - 26-2-2013 05:22:53 | Computer Name = DWD-PC | Source = Win32k | ID = 253
Description =


< End of report >
C'est le Ton qui fait la musique!
Gebruikersavatar
Abraham54
Collega Helper
Berichten: 2755
Lid geworden op: 15 feb 2010 21:00
Contacteer: Website

Het Extra's log is niet compleet gepost.
Ik mis o.a. alle systeemfoutmeldingen!

Sluit voordat OTL de fix gaat doen, eerst alle andere openstaande vensters!
  • Windows 2000 en Windows XP: dubbelklik op OTL.exe.
  • Windows Vista, Windows 7 en Windows 8: via rechtsklik op OTL.exe en kies voor "Als Administrator uitvoeren".
    • Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het kader onder Afbeelding

:OTL
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL File not found
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL File not found
O2:64bit: - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
O2 - BHO: (no name) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [LManager] File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.


:Services


:Reg


:Files
ipconfig /flushdns /c

:Commands
[purity]
[emptytemp]
[emptyjava]
[emptyflash]
[createrestorepoint]
[reboot]


  • Klik daarna bovenaan op Afbeelding
  • Laat het programma ongestoord zijn werk doen.
  • OTL zal na de scan melden dat de PC opnieuw opgestart gaat worden. Sta dat dus toe.
  • Klik op OK
  • Na het opnieuw opstarten wordt enkel een nieuw log geopend.
  • Post via kopiëren en plakken de inhoud van dat OTL-scanlog.
Domheid is ook een gave God's, maar men mag haar niet misbruiken.
Gebruikersavatar
Meanannie
Lid
Berichten: 14
Lid geworden op: 02 feb 2007 20:07

Geen idee waar de rest is? Dit is alles wat ik heb..
De internetconnectie is trouwens weer enorm onstabiel :(

Het logje na het fixen:

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mcafee.com/MSC,version=10\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mcafee.com/MSC,version=10\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\LManager deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\DutchWoolDiva\Desktop\cmd.bat deleted successfully.
C:\Users\DutchWoolDiva\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: DutchWoolDiva
->Temp folder emptied: 100966520 bytes
->Temporary Internet Files folder emptied: 24076618 bytes
->Java cache emptied: 1949 bytes
->FireFox cache emptied: 26316380 bytes
->Google Chrome cache emptied: 136591895 bytes
->Flash cache emptied: 1090 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 155638382 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 10691188 bytes

Total Files Cleaned = 433,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: DefaultAppPool

User: DutchWoolDiva
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: DefaultAppPool

User: DutchWoolDiva
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 02262013_161347

Files\Folders moved on Reboot...
C:\Users\DutchWoolDiva\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\lm\DutchWoolDiva\aipflib.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\lm\DutchWoolDiva\LMutilps32.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\lm\dsiwmis.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
C'est le Ton qui fait la musique!
Gebruikersavatar
Abraham54
Collega Helper
Berichten: 2755
Lid geworden op: 15 feb 2010 21:00
Contacteer: Website

Installeer de WLAN-driver nogmaals en doe dat dan met Administratorrechten (dus via rechtsklik kiezen voor "Als administrator uitvoeren").
Domheid is ook een gave God's, maar men mag haar niet misbruiken.
Gebruikersavatar
Meanannie
Lid
Berichten: 14
Lid geworden op: 02 feb 2007 20:07

Ik heb het even een aantal dagen aangezien en het ziet er naar uit dat ik weer een normale verbinding met de wifi heb. :D

Nog andere dingen die ik moet doen?
C'est le Ton qui fait la musique!
Gebruikersavatar
Abraham54
Collega Helper
Berichten: 2755
Lid geworden op: 15 feb 2010 21:00
Contacteer: Website

Welnu, je mag OTL gaan opruimen!
Start OTL en klik dan op de knop CleanUp.
  • OTL zal onderzoeken welke tools en/of logs opgeruimd kunnen worden.
  • Na een reboot is dan OTL ook opgeruimd.
Mooi ook dat je weer ongehinderd internet hebt.
Surf safe.
Domheid is ook een gave God's, maar men mag haar niet misbruiken.
Gebruikersavatar
Meanannie
Lid
Berichten: 14
Lid geworden op: 02 feb 2007 20:07

Bedankt voor je hulp! :)
C'est le Ton qui fait la musique!
Gebruikersavatar
Abraham54
Collega Helper
Berichten: 2755
Lid geworden op: 15 feb 2010 21:00
Contacteer: Website

Graag gedaan en een fijn weekend toegewenst.
Domheid is ook een gave God's, maar men mag haar niet misbruiken.

Terug naar “Internet en Netwerken”