Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Online Armor werkt niet

Abraham54
12 antwoorden
  • De betaalde versie van Online Armor aangeschaft.
    Deze werkt echter niet goed.
    Contact gehad met helpdesk.
    Deze adviseerde om de backup terug te zetten.
    Deze had ik echter niet dus program opnieuw geinstalleerd en backup gemaakt.
    Hierna heeft OA een dag goed gewerkt.
    Nu dus weer geen internet; in netwerkcentrum staat alles goed en wanneer ik OA uitschakel kan ik via Firefox gewoon op internet.
    De gemaakte backup terug gezet maar ook dit hielp niet.
    Kan het zijn dat er malware in de laptop zit en dat deze de goede werking van OA ondermijnt?????
    MBAM-log:
    Malwarebytes Anti-Malware 1.62.0.1300
    www.malwarebytes.org

    Databaseversie: v2012.07.14.01

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    Gebruiker :: GEBRUIKER-PC [administrator]

    14-7-2012 8:18:36
    mbam-log-2012-07-14 (08-18-36).txt

    Scantype: Snelle scan
    Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
    Uitgeschakelde scanopties: P2P
    Objecten gescand: 210855
    Verstreken tijd: 2 minuut/minuten, 26 seconde(n)

    Geheugenprocessen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Geheugenmodulen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registersleutels gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerwaarden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerdata gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Mappen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Bestanden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    (einde)
  • Ik denk eerder dat bij jou OnlineArmor een conflict heeft met de Windows Firewall!

    Controleer dat dus; daarvoor ga je naar Start\Uitvoeren en de opdracht luidt: [b:62d3d3112f]services.msc[/b:62d3d3112f].
    Klik op de knop OK.
    N.B.: Uitvoeren kan ook gestart worden door gelijktijdig de "Windowstoets + R-toets" in te drukken.

    In het venster Services scroll je naar [b:62d3d3112f]Windows Firewall[/color:62d3d3112f][/b:62d3d3112f].
    Dubbelklikk op die vermelding, bij "Opstarttype" zet je de instelling op "Gedeaktiveerd".

    Klik nu eerst op de knop [b:62d3d3112f]Toepassen[/b:62d3d3112f]; vervolgens klik je op de knop [b:62d3d3112f]Stoppen[/b:62d3d3112f], wacht even en klik uiteindelijk op [b:62d3d3112f]OK[/b:62d3d3112f].

    Doe daarna onderstaande:

    [b:62d3d3112f]Welk programma[/b:62d3d3112f]: [b:62d3d3112f]OTL.com[/b:62d3d3112f][/color:62d3d3112f]
    [b:62d3d3112f]Waarvoor/waarom[/b:62d3d3112f]: multifunktioneel tool - analyse en fix
    [b:62d3d3112f]Moeilijkheidsgraad[/b:62d3d3112f]: geen.
    [b:62d3d3112f]Download[/b:62d3d3112f]: [b:62d3d3112f]OTL[/color:62d3d3112f][/b:62d3d3112f] en plaats het bestand op het bureaublad.

    [b:62d3d3112f]OTL.com[/color:62d3d3112f] gebruiken[/b:62d3d3112f]:
    [list:62d3d3112f][*:62d3d3112f] [b:62d3d3112f]Sluit nu eerst alle nog openstaande programmavensters![/color:62d3d3112f][/b:62d3d3112f]
    [list:62d3d3112f][*:62d3d3112f]Dubblklik op [img:62d3d3112f]http://www.imgdumper.nl/uploads5/4f91108799372/4f91108798ba0-OTL-1.png[/img:62d3d3112f]
    [/list:u:62d3d3112f][/list:u:62d3d3112f]
    [list:62d3d3112f][*:62d3d3112f]Zet een vinkje bij [b:62d3d3112f]Scan All Users[/b:62d3d3112f][/color:62d3d3112f].
    [*:62d3d3112f]Klik op [img:62d3d3112f]http://www.imgdumper.nl/uploads5/4f9112fd1172c/4f9112fd11340-OTL-3.png[/img:62d3d3112f].
    [*:62d3d3112f]Verander verder geen andere instellingen in OTL, alleen tenzij ik hiervoor specifiek instructies geef.
    [*:62d3d3112f]De scan zal niet heel erg lang duren.
    [list:62d3d3112f][*:62d3d3112f]Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is: [b:62d3d3112f]OTL.Txt[/b:62d3d3112f] en [b:62d3d3112f]Extras.txt[/b:62d3d3112f].
    [*:62d3d3112f]Kopieer vervolgens de inhoud van zowel OTL.txt alsmede Extras.txt en plak die gegevens in je volgende bericht.[/list:u:62d3d3112f]
    [*:62d3d3112f][b:62d3d3112f]Notabene:[/b:62d3d3112f][/color:62d3d3112f] indien het log niet in één bericht past, spreidt het dan over twee of meer berichten.[/list:u:62d3d3112f]
  • Windows Firewall was al uitgeschakeld!
    Avast gaf problemen –> tijdelijk uitgeschakeld.
    Hierbij de OTL.Txt:

    OTL logfile created on: 14-7-2012 10:06:47 - Run 1
    OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Gebruiker\Desktop
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

    3,00 Gb Total Physical Memory | 1,83 Gb Available Physical Memory | 61,13% Memory free
    5,99 Gb Paging File | 4,80 Gb Available in Paging File | 80,07% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 93,06 Gb Total Space | 14,35 Gb Free Space | 15,42% Space Free | Partition Type: NTFS

    Computer Name: GEBRUIKER-PC | User Name: Gebruiker | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========[/color:77967f0d88]

    PRC - [2012-07-14 10:03:20 | 000,596,480 | —- | M] (OldTimer Tools) – C:\Users\Gebruiker\Desktop\OTL.com
    PRC - [2012-07-12 06:03:24 | 000,210,920 | —- | M] (Emsi Software GmbH) – C:\Program Files (x86)\Online Armor\oacat.exe
    PRC - [2012-07-03 18:21:30 | 004,273,976 | —- | M] (AVAST Software) – C:\Program Files\AVAST Software\Avast\AvastUI.exe
    PRC - [2012-07-03 18:21:29 | 000,044,808 | —- | M] (AVAST Software) – C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    PRC - [2012-04-04 07:53:50 | 000,063,928 | —- | M] (Adobe Systems Incorporated) – C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    PRC - [2011-09-15 12:06:04 | 000,088,576 | —- | M] () – C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
    PRC - [2011-04-19 08:44:40 | 000,399,416 | —- | M] (Secunia) – C:\Program Files (x86)\Secunia\PSI\sua.exe


    ========== Modules (No Company Name) ==========[/color:77967f0d88]


    ========== Win32 Services (SafeList) ==========[/color:77967f0d88]

    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - File not found [Disabled | Unknown] – C:\Program Files\AVAST Software\Avast\afwServ.exe – (avast! Firewall)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:29 | 000,044,808 | —- | M] (AVAST Software) [Auto | Running] – C:\Program Files\AVAST Software\Avast\AvastSvc.exe – (avast! Antivirus)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-03 10:57:04 | 001,085,216 | —- | M] (Broadcom Corporation.) [Disabled | Stopped] – c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe – (btwdins)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-01-25 11:45:08 | 003,051,848 | —- | M] (O&O Software GmbH) [Auto | Running] – C:\Program Files\OO Software\Defrag\oodag.exe – (OODefragAgent)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-11-20 15:25:18 | 000,049,664 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysNative\snmp.exe – (SNMP)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-01-19 17:26:58 | 001,420,560 | —- | M] (Intel(R) Corporation) [Auto | Running] – C:\Program Files\Intel\WiFi\bin\EvtEng.exe – (EvtEng) Intel(R)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-01-19 17:05:22 | 000,831,760 | —- | M] (Intel(R) Corporation) [Auto | Running] – C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe – (RegSrvc) Intel(R)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:41:27 | 001,011,712 | —- | M] (Microsoft Corporation) [Disabled | Stopped] – C:\Program Files\Windows Defender\MpSvc.dll – (WinDefend)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:41:10 | 000,035,328 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysNative\iprip.dll – (iprip)
    SRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:39:47 | 000,010,240 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysNative\TCPSVCS.EXE – (simptcp)
    SRV - [2012-07-12 07:14:13 | 000,250,056 | —- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] – C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe – (AdobeFlashPlayerUpdateSvc)
    SRV - [2012-07-12 06:04:46 | 004,382,968 | —- | M] (Emsi Software GmbH) [Auto | Stopped] – C:\Program Files (x86)\Online Armor\OAsrv.exe – (SvcOnlineArmor)
    SRV - [2012-07-12 06:03:24 | 000,210,920 | —- | M] (Emsi Software GmbH) [Auto | Running] – C:\Program Files (x86)\Online Armor\oacat.exe – (OAcat)
    SRV - [2012-06-16 18:14:10 | 000,113,120 | —- | M] (Mozilla Foundation) [On_Demand | Stopped] – C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe – (MozillaMaintenance)
    SRV - [2012-04-04 07:53:50 | 000,063,928 | —- | M] (Adobe Systems Incorporated) [Auto | Running] – C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe – (AdobeARMservice)
    SRV - [2011-09-15 12:06:04 | 000,088,576 | —- | M] () [Auto | Running] – C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe – (PassThru Service)
    SRV - [2011-04-19 08:44:40 | 000,993,848 | —- | M] (Secunia) [On_Demand | Stopped] – C:\Program Files (x86)\Secunia\PSI\psia.exe – (Secunia PSI Agent)
    SRV - [2011-04-19 08:44:40 | 000,399,416 | —- | M] (Secunia) [Auto | Running] – C:\Program Files (x86)\Secunia\PSI\sua.exe – (Secunia Update Agent)
    SRV - [2010-11-20 14:19:20 | 000,397,824 | —- | M] (Microsoft Corporation) [On_Demand | Running] – C:\Windows\SysWOW64\inetsrv\iisw3adm.dll – (WAS)
    SRV - [2010-11-20 14:19:20 | 000,397,824 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysWOW64\inetsrv\iisw3adm.dll – (W3SVC)
    SRV - [2010-11-20 14:18:03 | 000,061,440 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysWOW64\inetsrv\apphostsvc.dll – (AppHostSvc)
    SRV - [2010-11-20 14:17:42 | 000,047,616 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysWOW64\snmp.exe – (SNMP)
    SRV - [2010-03-18 13:16:28 | 000,130,384 | —- | M] (Microsoft Corporation) [Auto | Stopped] – C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe – (clr_optimization_v4.0.30319_32)
    SRV - [2009-07-14 03:14:42 | 000,009,216 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Windows\SysWOW64\TCPSVCS.EXE – (simptcp)
    SRV - [2009-06-10 23:23:09 | 000,066,384 | —- | M] (Microsoft Corporation) [Disabled | Stopped] – C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe – (clr_optimization_v2.0.50727_32)


    ========== Driver Services (SafeList) ==========[/color:77967f0d88]

    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-12 06:05:46 | 000,035,368 | —- | M] (Emsisoft) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\OAnet.sys – (OAnet)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:52 | 000,958,400 | —- | M] (AVAST Software) [File_System | System | Running] – C:\Windows\SysNative\drivers\aswSnx.sys – (aswSnx)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:52 | 000,355,856 | —- | M] (AVAST Software) [Kernel | System | Running] – C:\Windows\SysNative\drivers\aswSP.sys – (aswSP)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:52 | 000,071,064 | —- | M] (AVAST Software) [File_System | Auto | Running] – C:\Windows\SysNative\drivers\aswMonFlt.sys – (aswMonFlt)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:52 | 000,059,728 | —- | M] (AVAST Software) [Kernel | System | Running] – C:\Windows\SysNative\drivers\aswTdi.sys – (aswTdi)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:52 | 000,054,072 | —- | M] (AVAST Software) [Kernel | System | Running] – C:\Windows\SysNative\drivers\aswRdr2.sys – (aswRdr)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-07-03 18:21:51 | 000,025,232 | —- | M] (AVAST Software) [File_System | Auto | Running] – C:\Windows\SysNative\drivers\aswFsBlk.sys – (aswFsBlk)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-03-07 02:02:45 | 000,028,504 | —- | M] (AVAST Software) [Kernel | System | Running] – C:\Windows\SysNative\drivers\aswKbd.sys – (aswKbd)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-03-01 08:46:16 | 000,023,408 | —- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] – C:\Windows\SysNative\drivers\fs_rec.sys – (Fs_Rec)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2012-02-15 12:01:50 | 000,052,736 | —- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\usbaapl64.sys – (USBAAPL64)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:50 | 000,620,072 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwampfl.sys – (btwampfl)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:50 | 000,089,640 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwdpan.sys – (BTWDPAN)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:44 | 000,178,728 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwavdt.sys – (btwavdt)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:44 | 000,167,976 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwaudio.sys – (btwaudio)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:44 | 000,039,976 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwl2cap.sys – (btwl2cap)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-08-04 19:19:44 | 000,021,544 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\btwrchid.sys – (btwrchid)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-06-10 06:34:52 | 000,539,240 | —- | M] (Realtek ) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\Rt64win7.sys – (RTL8167)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-03-11 08:41:12 | 000,107,904 | —- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\amdsata.sys – (amdsata)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2011-03-11 08:41:12 | 000,027,008 | —- | M] (Advanced Micro Devices) [Kernel | Boot | Running] – C:\Windows\SysNative\drivers\amdxata.sys – (amdxata)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-11-20 15:33:35 | 000,078,720 | —- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\HpSAMD.sys – (HpSAMD)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-11-20 13:07:05 | 000,059,392 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\TsUsbFlt.sys – (TsUsbFlt)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-11-20 11:37:42 | 000,109,056 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\sdbus.sys – (sdbus)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-09-01 10:30:58 | 000,017,976 | —- | M] (Secunia) [File_System | On_Demand | Stopped] – C:\Windows\SysNative\drivers\psi_mf.sys – (PSI)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-06-25 16:08:10 | 000,036,928 | —- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\htcnprot.sys – (htcnprot)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2010-01-13 08:30:30 | 007,520,256 | —- | M] (Intel Corporation) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\NETw5v64.sys – (netw5v64) Intel(R)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-11-02 18:16:50 | 000,033,736 | —- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\ANDROIDUSB.sys – (HTCAND64)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:52:20 | 000,194,128 | —- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\amdsbs.sys – (amdsbs)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:48:04 | 000,065,600 | —- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\lsi_sas2.sys – (LSI_SAS2)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 03:45:55 | 000,024,656 | —- | M] (Promise Technology) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\stexstor.sys – (stexstor)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-07-14 01:21:48 | 000,038,400 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\tpm.sys – (TPM)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-06-10 23:01:06 | 001,146,880 | —- | M] (LSI Corp) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\agrsm64.sys – (AgereSoftModem)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-06-10 22:34:33 | 003,286,016 | —- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\evbda.sys – (ebdrv)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-06-10 22:34:28 | 000,468,480 | —- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\bxvbda.sys – (b06bdrv)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-06-10 22:34:23 | 000,270,848 | —- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\b57nd60a.sys – (b57nd60a)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-06-10 22:31:59 | 000,031,232 | —- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] – C:\Windows\SysNative\drivers\hcw85cir.sys – (hcw85cir)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-05-18 13:17:08 | 000,034,152 | —- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\GEARAspiWDM.sys – (GEARAspiWDM)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2009-01-09 19:44:30 | 000,223,792 | —- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\Apfiltr.sys – (ApfiltrService)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2008-02-13 12:35:46 | 012,379,136 | —- | M] () [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\snp2sxp.sys – (SNP2STD) USB2.0 PC Camera (SNP2STD)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2007-08-28 15:46:46 | 000,217,088 | —- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\atswpdrv.sys – (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2007-08-16 05:20:22 | 000,088,064 | —- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\EMS7SK.sys – (EMSCR)
    DRV:[b:77967f0d88]64bit:[/b:77967f0d88] - [2007-08-16 05:20:06 | 000,059,392 | —- | M] (ENE Technology Inc.) [Kernel | On_Demand | Running] – C:\Windows\SysNative\drivers\ESD7SK.sys – (ESDCR)
    DRV - [2012-07-12 06:05:46 | 000,040,512 | —- | M] (Emsisoft) [Kernel | System | Running] – C:\Windows\SysWOW64\drivers\OAmon.sys – (OAmon)
    DRV - [2012-07-12 06:05:45 | 000,061,624 | —- | M] () [File_System | System | Running] – C:\Windows\SysWOW64\drivers\OADriver.sys – (OADevice)
    DRV - [2012-07-12 06:04:00 | 000,061,624 | —- | M] () [Kernel | System | Stopped] – C:\Windows\SysWOW64\drivers\oahlp64.sys – (oahlpXX)
    DRV - [2009-07-14 03:19:10 | 000,019,008 | —- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] – C:\Windows\SysWOW64\drivers\wimmount.sys – (WIMMount)
    DRV - [2008-02-13 12:34:50 | 012,067,328 | —- | M] () [Kernel | On_Demand | Running] – C:\Windows\SysWOW64\drivers\snp2sxp.sys – (SNP2STD) USB2.0 PC Camera (SNP2STD)


    ========== Standard Registry (SafeList) ==========[/color:77967f0d88]


    ========== Internet Explorer ==========[/color:77967f0d88]

    IE:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
    IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?hl=nl&t=0
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 65 66 B5 FE 4A 32 CC 01 [binary data]
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    ========== FireFox ==========[/color:77967f0d88]

    FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig?source=gama&hl=nl"
    FF - user.js - File not found

    FF:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_265.dll File not found
    FF:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0
    pctrl.dll ( Microsoft Corporation)
    FF:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director
    p32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins
    pitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3
    pPicasa3.dll (Google, Inc.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0
    pctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR
    ppdf32.dll (Adobe Systems Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-07-14 07:37:11 | 000,000,000 | —D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-06-16 18:14:10 | 000,000,000 | —D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-06-16 18:14:10 | 000,000,000 | —D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
    FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-06-16 18:14:10 | 000,000,000 | —D | M]
    FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

    [2011-09-16 06:36:59 | 000,000,000 | —D | M] (No name found) – C:\Users\Gebruiker\AppData\Roaming\mozilla\Extensions
    [2012-06-03 08:56:36 | 000,000,000 | —D | M] (No name found) – C:\Users\Gebruiker\AppData\Roaming\mozilla\Firefox\Profiles\c37ppq9a.default\extensions
    [2012-06-15 12:58:16 | 000,000,000 | —D | M] (No name found) – C:\Program Files (x86)\Mozilla Firefox\extensions
    [2012-06-16 18:14:10 | 000,085,472 | —- | M] (Mozilla Foundation) – C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
    [2012-06-01 17:39:16 | 000,002,252 | —- | M] () – C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
    [2012-06-01 17:39:16 | 000,002,040 | —- | M] () – C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

    ========== Chrome ==========[/color:77967f0d88]

    CHR - homepage: http://www.google.com
    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
    CHR - homepage: http://www.google.com
    CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.47\pdf.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.47\gcswf32.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll
    CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser
    ppdf32.dll
    CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
    CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
    CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3
    pPicasa3.dll
    CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111
    pGoogleUpdate3.dll
    CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins
    pitunes.dll
    CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director
    p32dsw.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0
    pctrl.dll
    CHR - Extension: YouTube = C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
    CHR - Extension: Google Zoeken = C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
    CHR - Extension: avast! WebRep = C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
    CHR - Extension: Gmail = C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

    O1 HOSTS File: ([2011-10-02 21:57:46 | 000,000,027 | —- | M]) - C:\Windows\SysNative\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2:[b:77967f0d88]64bit:[/b:77967f0d88] - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    O2:[b:77967f0d88]64bit:[/b:77967f0d88] - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    O3:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    O4:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files (x86)\Online Armor\oaui.exe (Emsi Software GmbH)
    O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
    O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O7 - HKU\S-1-5-21-3085547568-1381025367-4261561674-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O8:[b:77967f0d88]64bit:[/b:77967f0d88] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
    O8:[b:77967f0d88]64bit:[/b:77967f0d88] - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
    O8:[b:77967f0d88]64bit:[/b:77967f0d88] - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
    O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
    O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9:[b:77967f0d88]64bit:[/b:77967f0d88] - Extra Button: @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9:[b:77967f0d88]64bit:[/b:77967f0d88] - Extra 'Tools' menuitem : @c:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9 - Extra Button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : Verzenden naar &Bluetooth-apparaat… - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O10:[b:77967f0d88]64bit:[/b:77967f0d88] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
    O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} http://foto.hema.nl/ips-opdata/layout/hema/objects/jordan.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.109.104.104 194.109.6.66
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB0814EA-BB8B-4E53-A0A5-E546798FDC2A}: DhcpNameServer = 194.109.104.104 194.109.6.66
    O18:[b:77967f0d88]64bit:[/b:77967f0d88] - Protocol\Handler\ms-help - No CLSID value found
    O20:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O32 - HKLM CDRom: AutoRun - 1
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\..comfile [open] – "%1" %*
    O35:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\..exefile [open] – "%1" %*
    O35 - HKLM\..comfile [open] – "%1" %*
    O35 - HKLM\..exefile [open] – "%1" %*
    O37:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\…com [@ = comfile] – "%1" %*
    O37:[b:77967f0d88]64bit:[/b:77967f0d88] - HKLM\…exe [@ = exefile] – "%1" %*
    O37 - HKLM\…com [@ = comfile] – "%1" %*
    O37 - HKLM\…exe [@ = exefile] – "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
    O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

    ========== Files/Folders - Created Within 30 Days ==========[/color:77967f0d88]

    [2012-07-14 10:03:11 | 000,596,480 | —- | C] (OldTimer Tools) – C:\Users\Gebruiker\Desktop\OTL.com
    [2012-07-12 06:11:45 | 000,000,000 | —D | C] – C:\Users\Gebruiker\Documents\Backup_Online_
    [2012-07-11 16:10:25 | 000,000,000 | —D | C] – C:\Users\Gebruiker\AppData\Roaming\OnlineArmor
    [2012-07-11 16:10:25 | 000,000,000 | —D | C] – C:\ProgramData\OnlineArmor
    [2012-07-11 16:08:50 | 000,040,512 | —- | C] (Emsisoft) – C:\Windows\SysWow64\drivers\OAmon.sys
    [2012-07-11 16:08:50 | 000,035,368 | —- | C] (Emsisoft) – C:\Windows\SysNative\drivers\OAnet.sys
    [2012-07-11 16:08:50 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Armor
    [2012-07-11 16:08:41 | 000,000,000 | —D | C] – C:\Program Files (x86)\Online Armor
    [2012-06-24 04:16:51 | 000,000,000 | —D | C] – C:\Users\Gebruiker\AppData\Roaming\Outlook
    [2012-06-24 04:09:06 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTC Sync
    [2012-06-16 05:39:05 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
    [2012-06-16 05:39:04 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
    [2012-06-16 05:37:36 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft Synchronization Services
    [2012-06-16 05:37:03 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft Sync Framework
    [2012-06-16 05:37:03 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft SQL Server Compact Edition
    [2012-06-16 05:13:58 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft Visual Studio 8
    [2012-06-16 05:12:06 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft Analysis Services
    [2012-06-16 05:11:52 | 000,000,000 | —D | C] – C:\Windows\SHELLNEW
    [2012-06-16 05:11:08 | 000,000,000 | —D | C] – C:\Program Files (x86)\Microsoft Office
    [2012-06-16 05:10:54 | 000,000,000 | RH-D | C] – C:\MSOCache
    [2012-06-15 20:23:02 | 000,000,000 | —D | C] – C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    [2012-06-15 20:22:18 | 000,000,000 | —D | C] – C:\Program Files\iPod
    [2012-06-15 20:22:17 | 000,000,000 | —D | C] – C:\Program Files\iTunes
    [2012-06-15 20:22:17 | 000,000,000 | —D | C] – C:\Program Files (x86)\iTunes
    [2012-06-15 20:10:03 | 000,000,000 | —D | C] – C:\Program Files (x86)\Common Files\Adobe AIR
    [2012-06-15 12:58:23 | 000,000,000 | —D | C] – C:\Program Files (x86)\Mozilla Maintenance Service
    [2012-06-15 12:58:14 | 000,000,000 | —D | C] – C:\Program Files (x86)\Mozilla Firefox
    [2012-06-15 10:12:09 | 000,000,000 | —D | C] – C:\Users\Gebruiker\AppData\Local\Macromedia

    ========== Files - Modified Within 30 Days ==========[/color:77967f0d88]

    [2012-07-14 10:03:20 | 000,596,480 | —- | M] (OldTimer Tools) – C:\Users\Gebruiker\Desktop\OTL.com
    [2012-07-14 09:13:00 | 000,000,940 | —- | M] () – C:\Windows\tasks\Adobe Flash Player Updater.job
    [2012-07-14 08:33:57 | 000,000,000 | —- | M] () – C:\Windows\SysWow64\config.nt
    [2012-07-14 08:00:46 | 000,067,584 | –S- | M] () – C:\Windows\bootstat.dat
    [2012-07-14 08:00:37 | 2414,436,352 | -HS- | M] () – C:\hiberfil.sys
    [2012-07-14 07:46:21 | 000,013,440 | -H– | M] () – C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    [2012-07-14 07:46:21 | 000,013,440 | -H– | M] () – C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    [2012-07-13 10:35:15 | 001,743,760 | —- | M] () – C:\Windows\SysNative\PerfStringBackup.INI
    [2012-07-13 10:35:15 | 000,775,754 | —- | M] () – C:\Windows\SysNative\perfh013.dat
    [2012-07-13 10:35:15 | 000,678,648 | —- | M] () – C:\Windows\SysNative\perfh009.dat
    [2012-07-13 10:35:15 | 000,164,648 | —- | M] () – C:\Windows\SysNative\perfc013.dat
    [2012-07-13 10:35:15 | 000,129,696 | —- | M] () – C:\Windows\SysNative\perfc009.dat
    [2012-07-12 06:05:46 | 000,040,512 | —- | M] (Emsisoft) – C:\Windows\SysWow64\drivers\OAmon.sys
    [2012-07-12 06:05:46 | 000,035,368 | —- | M] (Emsisoft) – C:\Windows\SysNative\drivers\OAnet.sys
    [2012-07-12 06:05:45 | 000,061,624 | —- | M] () – C:\Windows\SysWow64\drivers\OADriver.sys
    [2012-07-12 06:04:00 | 000,061,624 | —- | M] () – C:\Windows\SysWow64\drivers\oahlp64.sys
    [2012-07-11 06:11:33 | 000,440,968 | —- | M] () – C:\Windows\SysNative\FNTCACHE.DAT
    [2012-07-07 07:30:13 | 000,004,343 | —- | M] () – C:\WirelessDiagLog.csv
    [2012-07-03 18:21:52 | 000,958,400 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswSnx.sys
    [2012-07-03 18:21:52 | 000,355,856 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswSP.sys
    [2012-07-03 18:21:52 | 000,071,064 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswMonFlt.sys
    [2012-07-03 18:21:52 | 000,059,728 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswTdi.sys
    [2012-07-03 18:21:52 | 000,054,072 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswRdr2.sys
    [2012-07-03 18:21:51 | 000,025,232 | —- | M] (AVAST Software) – C:\Windows\SysNative\drivers\aswFsBlk.sys
    [2012-07-03 18:21:32 | 000,041,224 | —- | M] (AVAST Software) – C:\Windows\avastSS.scr
    [2012-07-03 18:21:28 | 000,227,648 | —- | M] (AVAST Software) – C:\Windows\SysWow64\aswBoot.exe
    [2012-07-03 18:21:18 | 000,285,328 | —- | M] (AVAST Software) – C:\Windows\SysNative\aswBoot.exe
    [2012-07-03 13:46:44 | 000,024,904 | —- | M] (Malwarebytes Corporation) – C:\Windows\SysNative\drivers\mbam.sys

    ========== Files Created - No Company Name ==========[/color:77967f0d88]

    [2012-07-11 16:08:50 | 000,061,624 | —- | C] () – C:\Windows\SysWow64\drivers\oahlp64.sys
    [2012-07-11 16:08:50 | 000,061,624 | —- | C] () – C:\Windows\SysWow64\drivers\OADriver.sys
    [2012-02-11 08:50:14 | 000,015,497 | —- | C] () – C:\Windows\snp2std.ini
    [2012-02-11 08:50:13 | 000,025,472 | —- | C] () – C:\Windows\SysWow64\drivers\sncamd.sys
    [2012-02-11 08:50:12 | 012,067,328 | —- | C] () – C:\Windows\SysWow64\drivers\snp2sxp.sys
    [2012-02-11 08:50:12 | 000,151,552 | —- | C] ( ) – C:\Windows\SysWow64\rsnp2std.dll
    [2011-12-26 09:29:02 | 000,004,608 | —- | C] () – C:\Users\Gebruiker\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-11-11 09:51:45 | 001,764,134 | —- | C] () – C:\Windows\SysWow64\PerfStringBackup.INI
    [2011-07-02 09:08:58 | 000,007,668 | —- | C] () – C:\Users\Gebruiker\AppData\Local\resmon.resmoncfg
    [2011-06-25 11:41:41 | 000,356,352 | —- | C] () – C:\Windows\EMCRI.dll
    [2011-06-24 10:40:41 | 001,572,864 | -HS- | C] () – C:\Users\Gebruiker\NTUSER.bak

    ========== LOP Check ==========[/color:77967f0d88]

    [2011-09-24 06:45:59 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\aignes
    [2011-06-26 10:03:17 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\Auslogics
    [2011-10-10 06:32:52 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\AutoSizer
    [2012-04-30 10:17:01 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\HTC
    [2012-04-30 10:27:43 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
    [2012-07-11 16:10:32 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\OnlineArmor
    [2011-07-17 15:36:10 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\OpenOffice.org
    [2012-06-24 04:16:51 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\Outlook
    [2012-04-06 07:02:11 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\PCToolsFirewallPlus
    [2012-02-27 11:00:08 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\TP
    [2011-09-17 09:06:43 | 000,000,000 | —D | M] – C:\Users\Gebruiker\AppData\Roaming\WinBatch
    [2011-12-23 08:40:40 | 000,032,554 | —- | M] () – C:\Windows\Tasks\SCHEDLGU.TXT

    ========== Purity Check ==========[/color:77967f0d88]



    ========== Alternate Data Streams ==========[/color:77967f0d88]

    @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:C31F31E6

    < End of report >
  • En hierbij de Extra's txt:

    OTL Extras logfile created on: 14-7-2012 10:06:48 - Run 1
    OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Gebruiker\Desktop
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

    3,00 Gb Total Physical Memory | 1,83 Gb Available Physical Memory | 61,13% Memory free
    5,99 Gb Paging File | 4,80 Gb Available in Paging File | 80,07% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 93,06 Gb Total Space | 14,35 Gb Free Space | 15,42% Space Free | Partition Type: NTFS

    Computer Name: GEBRUIKER-PC | User Name: Gebruiker | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========[/color:095e3ec1d6]


    ========== File Associations ==========[/color:095e3ec1d6]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .html[@ = ChromeHTML] – Reg Error: Key error. File not found
    .url[@ = InternetShortcut] – C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] – C:\Windows\SysWow64\control.exe (Microsoft Corporation)
    .html [@ = ChromeHTML] – Reg Error: Key error. File not found

    [HKEY_USERS\S-1-5-21-3085547568-1381025367-4261561674-1000\SOFTWARE\Classes\<extension>]
    .html [@ = FirefoxHTML] – C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

    ========== Shell Spawning ==========[/color:095e3ec1d6]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] – "%1" %*
    cmdfile [open] – "%1" %*
    comfile [open] – "%1" %*
    exefile [open] – "%1" %*
    helpfile [open] – Reg Error: Key error.
    htmlfile [edit] – Reg Error: Key error.
    htmlfile [open] – Reg Error: Key error.
    htmlfile [opennew] – Reg Error: Key error.
    htmlfile [print] – rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
    http [open] – Reg Error: Key error.
    https [open] – Reg Error: Key error.
    inffile [install] – %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
    InternetShortcut [open] – "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
    InternetShortcut [print] – "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
    piffile [open] – "%1" %*
    regfile [merge] – Reg Error: Key error.
    scrfile [config] – "%1"
    scrfile [install] – rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] – "%1" /S
    txtfile [edit] – Reg Error: Key error.
    Unknown [openas] – %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] – cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] – Reg Error: Value error.
    Drive [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Applications\iexplore.exe [open] – Reg Error: Key error.
    CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] – Reg Error: Key error.

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] – "%1" %*
    cmdfile [open] – "%1" %*
    comfile [open] – "%1" %*
    cplfile [cplopen] – %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] – "%1" %*
    helpfile [open] – Reg Error: Key error.
    htmlfile [edit] – Reg Error: Key error.
    htmlfile [open] – Reg Error: Key error.
    htmlfile [opennew] – Reg Error: Key error.
    http [open] – Reg Error: Key error.
    https [open] – Reg Error: Key error.
    piffile [open] – "%1" %*
    regfile [merge] – Reg Error: Key error.
    scrfile [config] – "%1"
    scrfile [install] – rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] – "%1" /S
    txtfile [edit] – Reg Error: Key error.
    Unknown [openas] – %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] – cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [explore] – Reg Error: Value error.
    Drive [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Applications\iexplore.exe [open] – Reg Error: Key error.
    CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] – Reg Error: Key error.

    ========== Security Center Settings ==========[/color:095e3ec1d6]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirewallDisableNotify" = 0
    "AntiVirusDisableNotify" = 0
    "UpdatesDisableNotify" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

    ========== System Restore Settings ==========[/color:095e3ec1d6]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    ========== Firewall Settings ==========[/color:095e3ec1d6]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    [b:095e3ec1d6]64bit:[/b:095e3ec1d6] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    ========== Authorized Applications List ==========[/color:095e3ec1d6]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


    ========== Vista Active Open Ports Exception List ==========[/color:095e3ec1d6]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{095F233E-7912-4B5B-B3B9-3CEBF68C0761}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
    "{10110771-0F6D-4363-AE7A-4D71C8437163}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
    "{16C807E4-3152-4411-AD52-F1420543614D}" = lport=138 | protocol=17 | dir=in | app=system |
    "{2C881D0B-F124-4503-A5DC-CC90B3FD1B0F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
    "{2DD1AAA8-0451-496C-B7AD-8ABA0578AE28}" = lport=10243 | protocol=6 | dir=in | app=system |
    "{49455B77-BF89-42F7-BFD8-58B9D5F33411}" = rport=138 | protocol=17 | dir=out | app=system |
    "{5F71762C-D068-4D09-A2B1-830651C6B5B1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
    "{71D34AAC-A16B-44B8-AFE2-F35F3470ABF1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
    "{7494A506-BE70-46E9-A038-1870E1E89171}" = lport=139 | protocol=6 | dir=in | app=system |
    "{76E8AFAB-963B-48B7-9B6C-E735650897F3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
    "{7E3EB504-B8CC-445F-A7E8-660A6D864B70}" = rport=445 | protocol=6 | dir=out | app=system |
    "{8609BB52-2AF2-4505-BF50-F844DD769A11}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
    "{8B5824CB-0E43-480E-9950-4DFC0BDBA194}" = lport=2869 | protocol=6 | dir=in | app=system |
    "{911B2588-DDBD-4EFC-91A9-17E92E35A3DF}" = lport=137 | protocol=17 | dir=in | app=system |
    "{9288EB76-8A85-4B0D-A8C1-28A87B49E129}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
    "{928D9FB6-F213-4E2C-B280-1BBA959E0B4D}" = rport=137 | protocol=17 | dir=out | app=system |
    "{AB9C67E8-C388-4043-A7AF-4018716C87D2}" = lport=445 | protocol=6 | dir=in | app=system |
    "{B97A74A3-A5DE-4B7E-B222-088BFC99C287}" = rport=139 | protocol=6 | dir=out | app=system |
    "{D8711E85-7A0E-4AAA-B8EB-2D97CD6CDBF1}" = rport=10243 | protocol=6 | dir=out | app=system |
    "{E9A6B277-0AA9-4E57-B2A0-94244D8B7F88}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
    "{F1727AD7-EAEA-4D30-BC70-B3A0748A1A7C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

    ========== Vista Active Application Exception List ==========[/color:095e3ec1d6]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{0494C2C6-22F4-4C38-B779-63B3EE0A5936}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
    "{1565F6FF-AF87-4EBD-87A8-AD84B1926CD3}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
    "{18153C6E-16F3-4E10-BCBE-F46A5AC63CE6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
    "{2222CA80-2056-46CA-B6D3-1B30614FF79E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
    "{26FDECB5-EC03-4641-AE93-2797711EF300}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
    "{3232F57B-E089-4BF7-9887-F5E87C953319}" = protocol=6 | dir=out | app=system |
    "{42B8261E-532B-494D-89D4-D48C8BAE6A8C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
    "{692CD322-6991-4F98-BF5D-3A40E0F37503}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
    "{6CB43AD5-70B6-4B16-903E-1AE63A720BA6}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
    "{6F0061F6-08A3-4A3F-90B4-61E602E4E5AC}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
    "{83CFD8B4-55F8-4DC3-B7AC-71BC00E260F3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
    "{889FFDDF-FE6B-41E3-84D9-6FD0E097DF2B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
    "{8F5AB8BD-CD19-4197-B9AA-FB474504F41C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
    "{9C6BE48C-93FA-4265-8951-FB93FAC69C76}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
    "{9F424FAA-DAC5-4DF3-85A7-90FCF41636EC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
    "{AEE3D08B-F0C9-41C7-BD84-2D81C747C1C9}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
    "{D8533722-554D-454C-A0F0-657DCC4922D8}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
    "{DCFF8890-EA90-4CDF-A583-2E689FCCCE03}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
    "{E651C73E-EF54-4245-8B5D-510735126C50}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |

    ========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color:095e3ec1d6]

    64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
    "{4567EA14-6BCA-3EF9-859B-92CE48B1D704}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack
    "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
    "{57DD35E9-D9BB-4089-BB05-EF933C586CB3}" = Broadcom InConcert Maestro
    "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    "{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support
    "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
    "{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}" = Broadcom Bluetooth Software
    "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    "{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
    "{90140000-002A-0413-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Dutch) 2010
    "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
    "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
    "{B90E5EBE-DF18-44D5-9D18-689ADEE9DA6C}" = Intel(R) PROSet/Wireless WiFi-software
    "{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}" = O&O Defrag Free Edition
    "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
    "CCleaner" = CCleaner
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
    "NVIDIA Drivers" = NVIDIA Drivers
    "ProInst" = Intel PROSet Wireless

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
    "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
    "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    "{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
    "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
    "{65CB4C08-C47B-4A7E-A6A4-50C06ADA5FC6}" = Adobe AIR
    "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
    "{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
    "{75438C0E-9925-412E-AD85-D0E71C6CE2ED}" = USB2.0 PC Camera (SN9C201&202)
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7F362F06-A9A3-440F-8B19-6A01A72723C4}" = AuthenTec Fingerprint Sensor Minimum Install
    "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
    "{90140000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2010
    "{90140000-0015-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2010
    "{90140000-0016-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2010
    "{90140000-0018-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2010
    "{90140000-0019-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2010
    "{90140000-001A-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2010
    "{90140000-001B-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
    "{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
    "{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
    "{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2010
    "{90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{5072FEA2-862C-4BF0-9654-CB0DCBE2BE28}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002A-0413-1000-0000000FF1CE}_Office14.PROPLUSR_{B9427E36-0B0A-48F4-8A51-1C178708A28E}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2010
    "{90140000-002C-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{D3B92058-CF96-445F-A297-F7ED19C4E841}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-0044-0413-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Dutch) 2010
    "{90140000-0044-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2010
    "{90140000-006E-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{260407D0-98A1-4D9A-A956-3D1DEDDDF3B9}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2010
    "{90140000-00A1-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{90140000-00BA-0413-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Dutch) 2010
    "{90140000-00BA-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{7A6AD1A3-6EC6-4840-8A29-4CCD27A21069}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
    "{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{AB77DFDE-9949-4AEF-B180-BE322C3E65D0}" = HTC Sync
    "{AC76BA86-7AD7-1043-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Nederlands
    "{D1BA1F1C-D88B-405D-953F-D7074B65453D}" = LifeView DTV
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
    "Adobe Shockwave Player" = Adobe Shockwave Player 11.6
    "avast" = avast! Free Antivirus
    "CrystalDiskInfo_is1" = CrystalDiskInfo 4.1.3
    "FileHippo.com" = FileHippo.com Update Checker
    "InstallShield_{D1BA1F1C-D88B-405D-953F-D7074B65453D}" = LifeView DTV
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versie 1.62.0.1300
    "Mozilla Firefox 13.0.1 (x86 en-US)" = Mozilla Firefox 13.0.1 (x86 en-US)
    "MozillaMaintenanceService" = Mozilla Maintenance Service
    "Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
    "OnlineArmor_is1" = Online Armor 5.5
    "Picasa 3" = Picasa 3
    "Secunia PSI" = Secunia PSI (2.0.0.3003)

    ========== Last 20 Event Log Errors ==========[/color:095e3ec1d6]

    [ Application Events ]
    Error - 15-6-2012 9:44:50 | Computer Name = Gebruiker-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
    Description = De service Cryptografische services is mislukt tijdens het verwerken
    van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles:
    Unable to back up image of binary Sftfs. System Error: Het systeem kan het opgegeven
    bestand niet vinden. .

    Error - 15-6-2012 9:44:50 | Computer Name = Gebruiker-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
    Description = De service Cryptografische services is mislukt tijdens het verwerken
    van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles:
    Unable to back up image of binary Sftplay. System Error: Het systeem kan het opgegeven
    bestand niet vinden. .

    Error - 15-6-2012 9:44:50 | Computer Name = Gebruiker-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
    Description = De service Cryptografische services is mislukt tijdens het verwerken
    van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles:
    Unable to back up image of binary Sftvol. System Error: Het systeem kan het opgegeven
    bestand niet vinden. .

    Error - 15-6-2012 14:13:22 | Computer Name = Gebruiker-PC | Source = MsiInstaller | ID = 10005
    Description =

    Error - 15-6-2012 14:14:25 | Computer Name = Gebruiker-PC | Source = MsiInstaller | ID = 10005
    Description =

    Error - 15-6-2012 14:15:24 | Computer Name = Gebruiker-PC | Source = MsiInstaller | ID = 10005
    Description =

    Error - 23-6-2012 22:08:29 | Computer Name = Gebruiker-PC | Source = Microsoft-Windows-RestartManager | ID = 10006
    Description = Kan toepassing of service 'adb.exe' niet afsluiten.

    Error - 24-6-2012 7:50:44 | Computer Name = Gebruiker-PC | Source = Application Error | ID = 1000
    Description = Naam van toepassing met fout: htcUPCTLoader.exe, versie: 1.0.2.34,
    tijdstempel: 0x4f8cde22 Naam van module met fout: HtcDetect.dll_unloaded, versie:
    0.0.0.0, tijdstempel: 0x4f8cccb6 Uitzonderingscode: 0xc0000005 Foutoffset: 0x0a76f27d
    Id
    van proces met fout: 0xeec Starttijd van toepassing met fout: 0x01cd51ae5a59e06e
    Pad
    naar toepassing met fout: C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
    Pad
    naar module met fout: HtcDetect.dll Rapport-id: d3ec5473-bdf2-11e1-a861-0016cff7fe29

    Error - 24-6-2012 7:50:48 | Computer Name = Gebruiker-PC | Source = Application Error | ID = 1000
    Description = Naam van toepassing met fout: htcUPCTLoader.exe, versie: 1.0.2.34,
    tijdstempel: 0x4f8cde22 Naam van module met fout: HtcDetect.dll_unloaded, versie:
    0.0.0.0, tijdstempel: 0x4f8cccb6 Uitzonderingscode: 0xc0000005 Foutoffset: 0x0a752f2e
    Id
    van proces met fout: 0xeec Starttijd van toepassing met fout: 0x01cd51ae5a59e06e
    Pad
    naar toepassing met fout: C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
    Pad
    naar module met fout: HtcDetect.dll Rapport-id: d68df9e0-bdf2-11e1-a861-0016cff7fe29

    Error - 11-7-2012 9:54:53 | Computer Name = Gebruiker-PC | Source = Application Error | ID = 1000
    Description = Naam van toepassing met fout: services.exe, versie: 6.1.7600.16385,
    tijdstempel: 0x4a5bc10e Naam van module met fout: ntdll.dll, versie: 6.1.7601.17725,
    tijdstempel: 0x4ec4aa8e Uitzonderingscode: 0xc0000005 Foutoffset: 0x0000000000020a4a
    Id
    van proces met fout: 0x24c Starttijd van toepassing met fout: 0x01cd5f6b2767b6e0
    Pad
    naar toepassing met fout: C:\Windows\system32\services.exe Pad naar module met fout:
    C:\Windows\SYSTEM32
    tdll.dll Rapport-id: fd0e5d89-cb5f-11e1-bad1-0016cff7fe29

    [ Media Center Events ]
    Error - 18-1-2012 23:17:31 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 4:17:30 - Fout bij verbinden met internet. 4:17:30 - Kan geen contact
    maken met server..

    Error - 19-1-2012 0:17:36 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 5:17:36 - Fout bij verbinden met internet. 5:17:36 - Kan geen contact
    maken met server..

    Error - 19-1-2012 0:17:42 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 5:17:41 - Fout bij verbinden met internet. 5:17:41 - Kan geen contact
    maken met server..

    Error - 19-1-2012 1:17:47 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 6:17:47 - Fout bij verbinden met internet. 6:17:47 - Kan geen contact
    maken met server..

    Error - 19-1-2012 1:17:54 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 6:17:52 - Fout bij verbinden met internet. 6:17:52 - Kan geen contact
    maken met server..

    Error - 31-3-2012 1:12:27 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 7:12:27 - Fout bij verbinden met internet. 7:12:27 - Kan geen contact
    maken met server..

    Error - 31-3-2012 1:12:33 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 7:12:32 - Fout bij verbinden met internet. 7:12:32 - Kan geen contact
    maken met server..

    Error - 19-6-2012 13:18:32 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 19:18:24 - Fout bij verbinden met internet. 19:18:24 - Kan geen
    contact maken met server..

    Error - 30-6-2012 1:16:30 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 7:16:30 - Fout bij verbinden met internet. 7:16:30 - Kan geen contact
    maken met server..

    Error - 30-6-2012 1:17:06 | Computer Name = Gebruiker-PC | Source = MCUpdate | ID = 0
    Description = 7:17:00 - Fout bij verbinden met internet. 7:17:00 - Kan geen contact
    maken met server..

    [ System Events ]
    Error - 9-5-2012 11:23:34 | Computer Name = Gebruiker-PC | Source = Service Control Manager | ID = 7024
    Description = De HomeGroup Listener-service is gestopt met de specifieke servicefout
    %%-2147023143.

    Error - 9-5-2012 11:41:00 | Computer Name = Gebruiker-PC | Source = SNMP | ID = 16713180
    Description = De SNMP-service heeft een fout vastgesteld tijdens een poging toegang
    te krijgen tot de registersleutel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

    Error - 9-5-2012 11:41:35 | Computer Name = Gebruiker-PC | Source = DCOM | ID = 10010
    Description =

    Error - 9-5-2012 11:41:34 | Computer Name = Gebruiker-PC | Source = Service Control Manager | ID = 7024
    Description = De HomeGroup Listener-service is gestopt met de specifieke servicefout
    %%-2147023143.

    Error - 9-5-2012 12:01:55 | Computer Name = Gebruiker-PC | Source = bowser | ID = 8003
    Description =

    Error - 12-5-2012 0:37:57 | Computer Name = Gebruiker-PC | Source = Service Control Manager | ID = 7034
    Description = De Online Armor Helper Service-service is onverwacht beëindigd. Dit
    is nu 1 keer gebeurd.

    Error - 12-5-2012 0:40:06 | Computer Name = Gebruiker-PC | Source = SNMP | ID = 16713180
    Description = De SNMP-service heeft een fout vastgesteld tijdens een poging toegang
    te krijgen tot de registersleutel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

    Error - 12-5-2012 0:40:43 | Computer Name = Gebruiker-PC | Source = DCOM | ID = 10010
    Description =

    Error - 12-5-2012 0:41:51 | Computer Name = Gebruiker-PC | Source = Service Control Manager | ID = 7024
    Description = De HomeGroup Listener-service is gestopt met de specifieke servicefout
    %%-2147023143.

    Error - 12-5-2012 1:47:26 | Computer Name = Gebruiker-PC | Source = Service Control Manager | ID = 7000
    Description = De Adobe Flash Player Update Service-service kan vanwege de volgende
    fout niet worden gestart: %%5


    < End of report >
  • Er is schijnbaar nog een andere Firewall aktief: die van PCTools!

    Kijk nu eerst in Configuratiescherm\[b:9c808b4214]Programma's en onderdelen[/b:9c808b4214] of daar nog PCTools firewall staat!

    Zoja: verwijderen en dan een herstart doen!
  • In het configuratiescherm\Programma's en onderdelen staat geen PCTools firewall.
    Hoe kan ik die firewall wel verwijderen?
  • [b:85ad0cdaab]Sluit voordat OTL[/color:85ad0cdaab] de fix laat doen, eerst alle andere openstaande vensters![/b:85ad0cdaab]

    [list:85ad0cdaab][*:85ad0cdaab]Dubblklik op [img:85ad0cdaab]http://www.imgdumper.nl/uploads5/4f91108799372/4f91108798ba0-OTL-1.png[/img:85ad0cdaab]
    [*:85ad0cdaab]Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het kader onder [img:85ad0cdaab]http://www.imgdumper.nl/uploads5/4f9111a6d2e57/4f9111a6d2a6c-OTL-2.png[/img:85ad0cdaab]

    [b:85ad0cdaab]
    :OTL


    :Services


    :Reg


    :Files
    ipconfig /flushdns /c

    C:\Users\Gebruiker\AppData\Roaming\PCToolsFirewallPlus

    :Commands
    [purity]
    [emptytemp]
    [resethosts]
    [emptyjava]
    [emptyflash]
    [createrestorepoint]
    [reboot][/color:85ad0cdaab][/b:85ad0cdaab]


    [*:85ad0cdaab]Klik daarna bovenaan op [img:85ad0cdaab]http://www.imgdumper.nl/uploads5/4f911cee9de47/4f911cee9da59-OTL-4.png[/img:85ad0cdaab]
    [*:85ad0cdaab]Laat het programma ongestoord zijn werk doen.
    [*:85ad0cdaab][b:85ad0cdaab]OTL zal na de scan melden dat de PC opnieuw opgestart gaat worden. Sta dat dus toe.[/b:85ad0cdaab][/color:85ad0cdaab]
    [*:85ad0cdaab]Klik op [b:85ad0cdaab]OK[/b:85ad0cdaab]
    [*:85ad0cdaab]Na het opnieuw opstarten wordt enkel een nieuw log geopend.
    [*:85ad0cdaab]Post via kopiëren en plakken de inhoud van dat OTL-scanlog.[/list:u:85ad0cdaab]
  • Online Armor werd na opnieuw opstarten geactiveerd maar werkt nog niet.
    Ik moest OA dus afsluiten voordat ik verbinding kon maken met dit forum.
    Tevens werd het logbestand niet weergegeven maar vond ik deze via de verkenner in de C:\OTL directory.
    Ook kreeg ik nog een berichtje van de helpdesk van Emsisoft (Online Armor) met de volgende tekst:

    Heeft u in Online Armor aangegeven dat Online Armor niet hoeft te controleren wat Avast doet, en heeft u in Avast aangegeven dat Avast niet hoeft te controleren wat Online Armor doet?

    In Online Armor kunt u bij; Opties > Uitzonderingen een map toevoegen. Wanneer u daar de map toevoegt waarin Avast is geïnstalleerd zal Online Armor in het vervolg niet controleren wat Avast doet en kan Online Armor ook niets blokkeren van Avast.

    In Avast kunt u aangeven dat Avast niet hoeft te controleren wat Online Armor doet. Hoe dit precies moet zult u in de handleiding van Avast op moeten zoeken.

    Sommige Online Armor gebruikers meldden dat het Gedragsschild van Avast voor problemen kan zorgen. U kunt eens proberen of het (tijdelijk) uitschakelen van dit gedragsschild het probleem verhelpt.

    Hierbij het logbestand van OTL na de fix:

    All processes killed
    ========== OTL ==========
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    ========== FILES ==========
    < ipconfig /flushdns /c >[/color:c335d5e3d5]
    Windows IP-configuratie
    De DNS-omzettingscache is leeggemaakt.
    C:\Users\Gebruiker\Desktop\cmd.bat deleted successfully.
    C:\Users\Gebruiker\Desktop\cmd.txt deleted successfully.
    C:\Users\Gebruiker\AppData\Roaming\PCToolsFirewallPlus folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: Gebruiker
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 4278858 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 71959856 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Flash cache emptied: 1183 bytes

    User: Public
    ->Temp folder emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 0 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 73,00 mb

    C:\Windows\System32\drivers\etc\Hosts moved successfully.
    HOSTS file reset successfully

    [EMPTYJAVA]

    User: All Users

    User: Default

    User: Default User

    User: Gebruiker
    ->Java cache emptied: 0 bytes

    User: Public

    Total Java Files Cleaned = 0,00 mb


    [EMPTYFLASH]

    User: All Users

    User: Default
    ->Flash cache emptied: 0 bytes

    User: Default User
    ->Flash cache emptied: 0 bytes

    User: Gebruiker
    ->Flash cache emptied: 0 bytes

    User: Public

    Total Flash Files Cleaned = 0,00 mb

    Restore point Set: OTL Restore Point

    OTL by OldTimer - Version 3.2.54.0 log created on 07142012_132209
  • Even een stukje ervaring mijnerzijds.

    Online Armor draait in mijn Windows nog in de volledige demo-mode.
    Verleden week na een poosje de MSE Prerelease gebruikt te hebben, had ik de nieuwste versie van Avast 7 2012 geïnstalleerd.

    Firefox liet zich daarna niet meer of anders alleen nog met administratorrechten opstarten.
    Ook een reboot bracht geen soelaas.

    Na Avast weer verwijderd en Avira Antivir geïnstalleerd te hebben waren de problemen verdwenen.
    Ik vermoed inderdaad dat onderdelen van Avast collideren met die van Online Armor.

    Nu weet ik echter niet of dit voor jou ook een optie is.
    Online Armor en AVG 2012 Free gaat ook goed.
    Maar zelf ben ik niet weg van AVG.
  • Ga toch maar Avast verwijderen en Avira Antivir installeren.
    Zijn de resten van de PCTools firewall wel allemaal verwijderd?
    Hoe kan ik Avira het best verwijderen, via Configuratiescherm –> programma's en onderdelen?
    Ik hoop dat als er door deze wijziging problemen ontstaan ik op jouw een beroep mag doen?
    Tot zover reuze bedankt!!!!
  • Ja hoor - dat heb ik ook gedaan en Avast had zich netjes kompleet verwijderd.
    PC-Tools moet inderdaad verdwenen zijn.

    Avira Nederlands: - downloadlink

    Kies bij installatie de geavanceerde weg, dan kan je de de websanner van Avira uitvinken - die werkt met de ASK-toolbar.
    Teneinde webveiligheid te hebben: installeer daarna ook nog WOT (Web of Trust - http://www.mywot.com/ )
  • Avira en WOT geinstalleerd.
    Firefox is nu een stuk sneller!!!!
    Tot dusver werkt de combinatie Avira <—> Online Armor goed.
    Dank voor je adviezen en tot een volgend keer!!
    P.s. de gebruikte prog's om de PCTools firewall definitief te verwijderen heb ik verwijderd en tevens TFC zijn werk laten doen.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.