vancobrother
-
Items
7 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door vancobrother
-
-
Beste,
ik krijg sinds gisteren steeds de melding dat ik mogelijk de dupe geworden ben van softwarevervalsing en dat mijn exemplaar van Windows niet als legitieme Windows-software gevalideerd is. Nochtans is mijn laptop aangekocht met gevalideerde software en dat reeds zeven jaar. Ook is mijn afbeelding op het bureaublad plots verdwenen en krijg ik nog enkel snelkoppelingen te zien.
Als ik op internet wil ben ik verplicht om via volgende link verbinding te maken http://www.microsoft.com/genuine/validate/ValidationResult.aspx?displaylang=nl&cCode=NLD&Error=3&PartnerID=107&PageName=validate Doe ik dat niet dan krijg ik gewoonweg geen toegang meer tot internet en moet ik mijn laptop heropstarten.
Helaas werkt mijn laptop ook nog traag en met voorgaande beschrijving heb ik uiteindelijk meer problemen dan voordien. HELP!!!!!
Zoek.exe v5.0.0.0 Updated 02-March-2014
Tool run by user on ma 03/03/2014 at 12:08:45,59.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\H1NIAOKI\zoek[1].exe [scan all users] [script inserted]
==== System Restore Info ======================
3/03/2014 12:14:19 Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\csrss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\System32\SCardSvr.exe
E:\Program Files\Java\jre7\bin\jqs.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\WINDOWS\system32\HPZipm12.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\WgaTray.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\System32\alg.exe
E:\Program Files\Belgium Identity Card\beid35gui.exe
E:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\OpenOffice.org 3\program\soffice.exe
E:\Program Files\OpenOffice.org 3\program\soffice.bin
E:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\H1NIAOKI\zoek[1].exe
E:\WINDOWS\system32\msfeedssync.exe
E:\WINDOWS\System32\svchost.exe -k netsvcs
E:\WINDOWS\system32\svchost.exe -k LocalService
E:\WINDOWS\system32\svchost.exe -k LocalService
E:\WINDOWS\system32\svchost.exe -k imgsvc
E:\WINDOWS\System32\svchost.exe -k HTTPFilter
==== Deleting Services ======================
==== System Specs ======================
Windows: Windows XP Professional Service Pack 3 (Build 2600)
Memory (RAM): 895 MB
CPU Info: Intel® Celeron® M CPU 410 @ 1.46GHz
CPU Speed: 1457,6 MHz
Sound Card: Realtek HD Audio output |
Display Adapters: ATI RADEON XPRESS 200M Series | ATI RADEON XPRESS 200M Series | NetMeeting driver | RDPDD Chained DD
Monitors: 1x; Plug en Play-monitor | Plug en Play-monitor |
Screen Resolution: 1280 X 800 - 32 bit
Network: Network Present
Network Adapters: Ralink Wireless LAN Card V2 - Pakketplanner-minipoort | Realtek RTL8139 Family PCI Fast Ethernet NIC - Pakketplanner-minipoort
CD / DVD Drives: 1x (D: | ) D: Optiarc DVD RW AD-5540A
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C: 133,4GB | E: 15,6GB
Hard Disks - Free: C: 117,5GB | E: 1,0GB
Manufacturer *: Packard Bell
BIOS Info: AT/AT COMPATIBLE | 11/15/06 | PKBQCI - 6040000
Time Zone: West-Europa (standaardtijd)
Motherboard *: Packard Bell BV EasyNote MZ35
Country: Belgi‰
Language: NLB
==== System Specs (Software) ======================
Anti-Virus: Norton Internet Security On-access scanning disabled (Updated)
Firewall: Norton Internet Security disabled
Internet Explorer version: 8.0.6001.18702
Google Chrome version: 33.0.1750.117
Adobe Reader version: 8.3.1.289
Sun Java version: 1.7.0_51 (32-bit)
Flash Player version: 12.0.0.70
==== Files Recently Created / Modified ======================
====== E:\WINDOWS ====
====== E:\DOCUME~1\user\LOCALS~1\Temp ====
====== Java Cache =====
====== E:\WINDOWS\system32 =====
2014-02-27 19:27:02 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- E:\WINDOWS\System32\javacpl.cpl
2014-02-27 19:27:02 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\WINDOWS\System32\javaws.exe
2014-02-27 19:26:49 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- E:\WINDOWS\System32\WindowsAccessBridge.dll
2014-02-27 19:26:49 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\WINDOWS\System32\javaw.exe
2014-02-27 19:26:49 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\WINDOWS\System32\java.exe
====== E:\WINDOWS\system32\drivers =====
====== E:\WINDOWS\Tasks ======
====== E:\WINDOWS\Temp ======
======= E:\Program Files =====
2014-02-27 19:26:23 -------- d-----w- E:\Program Files\Java
2014-02-27 19:11:37 -------- d-----w- E:\Program Files\Common Files\Java
2014-02-25 19:02:42 -------- d-----w- E:\Program Files\trend micro
2014-02-24 16:47:37 -------- d-----w- E:\Program Files\Speccy
======= E: =====
====== E:\Documents and Settings\user\Application Data ======
2014-02-28 21:20:49 -------- d-----w- E:\Documents and Settings\user\Application Data\WinRAR
2014-02-27 19:15:54 -------- d-----w- E:\Documents and Settings\user\Local Settings\Application Data\Sun
====== E:\Documents and Settings\user ======
2014-02-28 21:49:38 -------- d--h--r- E:\Documents and Settings\user\Onlangs geopend
2014-02-07 15:49:24 -------- d-----w- E:\Documents and Settings\user\restore
====== E: exe-files ==
2014-02-27 19:27:02 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\WINDOWS\system32\javaws.exe
2014-02-27 19:26:49 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\WINDOWS\system32\javaw.exe
2014-02-27 19:26:49 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\WINDOWS\system32\java.exe
2014-02-27 19:26:31 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- E:\Program Files\Java\jre7\bin\pack200.exe
2014-02-27 19:26:31 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- E:\Program Files\Java\jre7\bin\ktab.exe
2014-02-27 19:26:31 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- E:\Program Files\Java\jre7\bin\servertool.exe
2014-02-27 19:26:31 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- E:\Program Files\Java\jre7\bin\unpack200.exe
2014-02-27 19:26:31 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- E:\Program Files\Java\jre7\bin\ssvagent.exe
2014-02-27 19:26:31 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- E:\Program Files\Java\jre7\bin\klist.exe
2014-02-27 19:26:31 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- E:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-02-27 19:26:31 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- E:\Program Files\Java\jre7\bin\rmid.exe
2014-02-27 19:26:31 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- E:\Program Files\Java\jre7\bin\policytool.exe
2014-02-27 19:26:31 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- E:\Program Files\Java\jre7\bin\orbd.exe
2014-02-27 19:26:31 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- E:\Program Files\Java\jre7\bin\tnameserv.exe
2014-02-27 19:26:30 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- E:\Program Files\Java\jre7\bin\jqs.exe
2014-02-27 19:26:30 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- E:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-02-27 19:26:30 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- E:\Program Files\Java\jre7\bin\keytool.exe
2014-02-27 19:26:30 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- E:\Program Files\Java\jre7\bin\kinit.exe
2014-02-27 19:26:29 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- E:\Program Files\Java\jre7\bin\jabswitch.exe
2014-02-27 19:26:29 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- E:\Program Files\Java\jre7\bin\javacpl.exe
2014-02-27 19:26:29 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\Program Files\Java\jre7\bin\javaw.exe
2014-02-27 19:26:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\Program Files\Java\jre7\bin\javaws.exe
2014-02-27 19:26:29 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\Program Files\Java\jre7\bin\java.exe
2014-02-27 19:26:29 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- E:\Program Files\Java\jre7\bin\java-rmi.exe
2014-02-27 19:25:51 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- E:\Documents and Settings\user\Application Data\Sun\Java\jre1.7.0_51\lzma.exe
2014-02-25 19:02:44 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- E:\Program Files\trend micro\user.exe
=== E: other files ==
2014-02-27 19:26:32 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- E:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe"
"Google Update"="E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"beid"="E:\Program Files\Belgium Identity Card\beid35gui.exe /startup"
"QuickTime Task"="E:\Program Files\QuickTime\qttask.exe -atboottime"
"Adobe Reader Speed Launcher"="E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"Adobe ARM"="E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="E:\Program Files\Common Files\Java\Java Update\jusched.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe"
"Google Update"="E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c"
==== Startup Registry Disabled ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKLM"
"command"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeARM"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Reader_sl"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Alcmtr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ALCMTR"
"hkey"="HKLM"
"command"="ALCMTR.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ATIPTA]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="atiptaxx"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ctfmon"
"hkey"="HKCU"
"command"="E:\\WINDOWS\\system32\\ctfmon.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HPWuSchd2"
"hkey"="HKLM"
"command"="E:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroFilterCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="E:\\WINDOWS\\system32\\NeroCheck.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDCPL]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RTHDCPL"
"hkey"="HKLM"
"command"="RTHDCPL.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SkyTel]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SkyTel"
"hkey"="HKLM"
"command"="SkyTel.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]
"path"="E:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\HP Digital Imaging Monitor.lnk"
"backup"="E:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"
"command"="E:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Photosmart Premier Snelstart.lnk]
"path"="E:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\HP Photosmart Premier Snelstart.lnk"
"backup"="E:\\WINDOWS\\pss\\HP Photosmart Premier Snelstart.lnkCommon Startup"
"command"="E:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe -s"
"item"="HP Photosmart Premier Snelstart"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^user^Menu Start^Programma's^Opstarten^OpenOffice.org 3.0 .lnk]
"path"="E:\\Documents and Settings\\user\\Menu Start\\Programma's\\Opstarten\\OpenOffice.org 3.0 .lnk"
"backup"="E:\\WINDOWS\\pss\\OpenOffice.org 3.0 .lnkStartup"
"command"="E:\\PROGRA~1\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "
"item"="OpenOffice.org 3.0 "
==== Startup Folders ======================
2011-02-27 11:28:56 864 ----a-w- E:\Documents and Settings\user\Menu Start\Programma's\Opstarten\OpenOffice.org 3.0 .lnk
2011-03-08 19:40:08 864 ----a-w- E:\Documents and Settings\user\Menu Start\Programma's\Opstarten\OpenOffice.org 3.3 .lnk
==== Task Scheduler Jobs ======================
E:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [22/02/2014 09:06]
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003Core.job --a------ E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [08/05/2012 22:16]
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003UA.job --a------ E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [08/05/2012 22:16]
E:\WINDOWS\tasks\User_Feed_Synchronization-{F0A4EADB-E0DC-459B-AF7B-0780EB9E49F7}.job --ah----- E:\WINDOWS\system32\msfeedssync.exe [08/03/2009 03:31]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\coFFPlgn" [03/03/2014 11:44]
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
mkfokfffehpeedafpekjeddnmnjhmcmk - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\Exts\Chrome.crx[07/03/2013 12:43]
nppllibpnmahfaklnpggkibhkapjkeob - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\Exts\Chrome.crx[31/05/2013 02:49]
YouTube - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Norton Identity Protection - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Google Wallet - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Norton Identity Protection - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob
Gmail - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="Google"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="Google"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{2F4A51D0-BB13-4A10-A72B-AE68D386CDD5}"
{2F4A51D0-BB13-4A10-A72B-AE68D386CDD5} Bing Url="{searchTerms} - Bing"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"
==== HijackThis Entries ======================
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O4 - HKLM\..\Run: [beid] "E:\Program Files\Belgium Identity Card\beid35gui.exe" /startup
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "E:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Search - http://tbedits.fromdoctopdf.com/one-toolbaredits/menusearch.jhtml?s=207743773&p2=^Y6^xdm010^YY^be&si=CLqD7bm41LYCFUzHtAodJXUASQ&a=7A1348A1-45D6-4697-9DD3-400ECB2E8267&n=2013041810&cv=1
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://ideefixx.dyndns.tv:811/activex/AMC.cab
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - E:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
==== Empty IE Cache ======================
E:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\H1NIAOKI will be deleted at reboot
E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
E:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== E:\zoek_backup content ======================
E:\zoek_backup (files=350 folders=58 34332417 bytes)
==== Empty Temp Folders ======================
E:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
E:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
E:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
E:\Documents and Settings\user\Local Settings\Temp will be emptied at reboot
E:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
E:\WINDOWS\Temp successfully emptied
E:\DOCUME~1\user\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
E:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\H1NIAOKI" not found
==== EOF on ma 03/03/2014 at 12:36:26,82 ======================
-
Zoek.exe v5.0.0.0 Updated 19-February-2014
Tool run by user on vr 28/02/2014 at 22:19:42,57.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\42XGG1ZV\zoek[1].exe [scan all users] [script inserted]
==== Older Logs ======================
E:\zoek-results2014-02-27-204054.log 50486 bytes
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\CDF {67EA19A0-CCEF-11d0-8024-00C04FD75D13} %SystemRoot%\system32\shdocvw.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\MyDocuments {ECF03A33-103D-11d2-854D-006008059367} %SystemRoot%\system32\mydocs.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"RDReminder"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RDReminder"=-
==== Folders in E:\DOCUME~1\ALLUSE~1\APPLIC~1 0-6 Months Old ======================
2014-02-07 15:45:34 -------- d-----w- E:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
2014-02-07 15:45:35 -------- d-----w- E:\DOCUME~1\ALLUSE~1\APPLIC~1\tmp
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\FromDocToPDF_65bar Uninstall deleted successfully
==== E:\zoek_backup content ======================
E:\zoek_backup (files=350 folders=58 34332417 bytes)
==== EOF on vr 28/02/2014 at 22:25:05,21 ======================
-
Beste,
alvast voor de reeds geboden hulp. Hieronder de log.
Zoek.exe v5.0.0.0 Updated 19-February-2014
Tool run by user on do 27/02/2014 at 21:09:52,42.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\A7ELYJ04\zoek[1].exe [scan all users] [script inserted] [Checkboxes used]
==== Running Processes ======================
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
E:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Belgium Identity Card\beid35gui.exe
E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe
E:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\OpenOffice.org 3\program\soffice.exe
E:\Program Files\OpenOffice.org 3\program\soffice.bin
svchost.exe
E:\Program Files\Java\jre7\bin\jqs.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\WINDOWS\system32\HPZipm12.exe
E:\WINDOWS\system32\svchost.exe -k imgsvc
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\WINDOWS\System32\svchost.exe -k HTTPFilter
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\A7ELYJ04\zoek[1].exe
==== System Restore Info ======================
27/02/2014 21:12:58 Zoek.exe System Restore Point Created Succesfully.
==== Empty Folders Check ======================
E:\Documents and Settings\user\Application Data\Lite deleted successfully
E:\Documents and Settings\user\Application Data\Systweak deleted successfully
E:\Documents and Settings\user\Application Data\WinRAR deleted successfully
E:\Documents and Settings\user\Local Settings\Application Data\WMTools Downloaded Files deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4c60e5ab-5c68-4c59-abaa-885010b24b32} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a235e1e3-6296-4710-af39-104a7faa6c7c} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a235e1e3-6296-4710-af39-104a7faa6c7c} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f236ca79-3123-4afb-9f74-e98117ad5625} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f236ca79-3123-4afb-9f74-e98117ad5625} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c66a678d-5e6c-4af9-8f57-c6192f42cf74} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c66a678d-5e6c-4af9-8f57-c6192f42cf74} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{9a216821-0ec5-49a3-85ac-fb72ae79a1e8} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{4c60e5ab-5c68-4c59-abaa-885010b24b32} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{a235e1e3-6296-4710-af39-104a7faa6c7c} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{f236ca79-3123-4afb-9f74-e98117ad5625} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f236ca79-3123-4afb-9f74-e98117ad5625} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{c66a678d-5e6c-4af9-8f57-c6192f42cf74} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{4c60e5ab-5c68-4c59-abaa-885010b24b32} deleted successfully
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{c66a678d-5e6c-4af9-8f57-c6192f42cf74} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{c66a678d-5e6c-4af9-8f57-c6192f42cf74} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{F04D2D30-776C-4d02-8627-8E4385ECA58D} deleted successfully
==== Installed Programs ======================
Adobe AIR
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Reader 8.3.1 - Nederlands
AiO_Scan_CDA
AiOSoftwareNPI
ATI-configuratiescherm
ATI Display Driver
AXIS Media Control Embedded
Belgium e-ID middleware 3.5.1 (build 5075)
Beveiligingsupdate for Windows XP (KB941569)
Beveiligingsupdate voor Microsoft Windows (KB2564958)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB938127-v2)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB963027)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2183461)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2360131)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2416400)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2482017)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2497640)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2530548)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2544521)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2559049)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2586448)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2618444)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2647516)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2675157)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2699988)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2722913)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2744842)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2761465)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2792100)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2797052)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2799329)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2809289)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2817183)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2829530)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2838727)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2846071)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2847204)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2862772)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2870699)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2879017)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2888505)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2898785)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2909210)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2909921)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381)
Beveiligingsupdate voor Windows Media Player (KB2378111)
Beveiligingsupdate voor Windows Media Player (KB2834904-v2)
Beveiligingsupdate voor Windows Media Player (KB2834904)
Beveiligingsupdate voor Windows Media Player (KB952069)
Beveiligingsupdate voor Windows Media Player (KB954155)
Beveiligingsupdate voor Windows Media Player (KB968816)
Beveiligingsupdate voor Windows Media Player (KB973540)
Beveiligingsupdate voor Windows Media Player (KB975558)
Beveiligingsupdate voor Windows Media Player (KB978695)
Beveiligingsupdate voor Windows Media Player 11 (KB936782)
Beveiligingsupdate voor Windows Media Player 11 (KB954154)
Beveiligingsupdate voor Windows XP (KB2079403)
Beveiligingsupdate voor Windows XP (KB2115168)
Beveiligingsupdate voor Windows XP (KB2121546)
Beveiligingsupdate voor Windows XP (KB2160329)
Beveiligingsupdate voor Windows XP (KB2229593)
Beveiligingsupdate voor Windows XP (KB2259922)
Beveiligingsupdate voor Windows XP (KB2279986)
Beveiligingsupdate voor Windows XP (KB2286198)
Beveiligingsupdate voor Windows XP (KB2296011)
Beveiligingsupdate voor Windows XP (KB2296199)
Beveiligingsupdate voor Windows XP (KB2347290)
Beveiligingsupdate voor Windows XP (KB2360937)
Beveiligingsupdate voor Windows XP (KB2387149)
Beveiligingsupdate voor Windows XP (KB2393802)
Beveiligingsupdate voor Windows XP (KB2412687)
Beveiligingsupdate voor Windows XP (KB2419632)
Beveiligingsupdate voor Windows XP (KB2423089)
Beveiligingsupdate voor Windows XP (KB2436673)
Beveiligingsupdate voor Windows XP (KB2440591)
Beveiligingsupdate voor Windows XP (KB2443105)
Beveiligingsupdate voor Windows XP (KB2476490)
Beveiligingsupdate voor Windows XP (KB2476687)
Beveiligingsupdate voor Windows XP (KB2478960)
Beveiligingsupdate voor Windows XP (KB2478971)
Beveiligingsupdate voor Windows XP (KB2479628)
Beveiligingsupdate voor Windows XP (KB2479943)
Beveiligingsupdate voor Windows XP (KB2481109)
Beveiligingsupdate voor Windows XP (KB2483185)
Beveiligingsupdate voor Windows XP (KB2485376)
Beveiligingsupdate voor Windows XP (KB2485663)
Beveiligingsupdate voor Windows XP (KB2503658)
Beveiligingsupdate voor Windows XP (KB2503665)
Beveiligingsupdate voor Windows XP (KB2506212)
Beveiligingsupdate voor Windows XP (KB2506223)
Beveiligingsupdate voor Windows XP (KB2507618)
Beveiligingsupdate voor Windows XP (KB2507938)
Beveiligingsupdate voor Windows XP (KB2508272)
Beveiligingsupdate voor Windows XP (KB2508429)
Beveiligingsupdate voor Windows XP (KB2509553)
Beveiligingsupdate voor Windows XP (KB2511455)
Beveiligingsupdate voor Windows XP (KB2524375)
Beveiligingsupdate voor Windows XP (KB2535512)
Beveiligingsupdate voor Windows XP (KB2536276-v2)
Beveiligingsupdate voor Windows XP (KB2536276)
Beveiligingsupdate voor Windows XP (KB2544893-v2)
Beveiligingsupdate voor Windows XP (KB2544893)
Beveiligingsupdate voor Windows XP (KB2555917)
Beveiligingsupdate voor Windows XP (KB2562937)
Beveiligingsupdate voor Windows XP (KB2566454)
Beveiligingsupdate voor Windows XP (KB2567053)
Beveiligingsupdate voor Windows XP (KB2567680)
Beveiligingsupdate voor Windows XP (KB2570222)
Beveiligingsupdate voor Windows XP (KB2570947)
Beveiligingsupdate voor Windows XP (KB2584146)
Beveiligingsupdate voor Windows XP (KB2585542)
Beveiligingsupdate voor Windows XP (KB2592799)
Beveiligingsupdate voor Windows XP (KB2598479)
Beveiligingsupdate voor Windows XP (KB2603381)
Beveiligingsupdate voor Windows XP (KB2618451)
Beveiligingsupdate voor Windows XP (KB2619339)
Beveiligingsupdate voor Windows XP (KB2620712)
Beveiligingsupdate voor Windows XP (KB2621440)
Beveiligingsupdate voor Windows XP (KB2624667)
Beveiligingsupdate voor Windows XP (KB2631813)
Beveiligingsupdate voor Windows XP (KB2633171)
Beveiligingsupdate voor Windows XP (KB2639417)
Beveiligingsupdate voor Windows XP (KB2641653)
Beveiligingsupdate voor Windows XP (KB2646524)
Beveiligingsupdate voor Windows XP (KB2647518)
Beveiligingsupdate voor Windows XP (KB2653956)
Beveiligingsupdate voor Windows XP (KB2655992)
Beveiligingsupdate voor Windows XP (KB2659262)
Beveiligingsupdate voor Windows XP (KB2660465)
Beveiligingsupdate voor Windows XP (KB2661637)
Beveiligingsupdate voor Windows XP (KB2676562)
Beveiligingsupdate voor Windows XP (KB2685939)
Beveiligingsupdate voor Windows XP (KB2686509)
Beveiligingsupdate voor Windows XP (KB2691442)
Beveiligingsupdate voor Windows XP (KB2695962)
Beveiligingsupdate voor Windows XP (KB2698365)
Beveiligingsupdate voor Windows XP (KB2705219)
Beveiligingsupdate voor Windows XP (KB2707511)
Beveiligingsupdate voor Windows XP (KB2709162)
Beveiligingsupdate voor Windows XP (KB2712808)
Beveiligingsupdate voor Windows XP (KB2718523)
Beveiligingsupdate voor Windows XP (KB2719985)
Beveiligingsupdate voor Windows XP (KB2723135)
Beveiligingsupdate voor Windows XP (KB2724197)
Beveiligingsupdate voor Windows XP (KB2727528)
Beveiligingsupdate voor Windows XP (KB2731847)
Beveiligingsupdate voor Windows XP (KB2753842-v2)
Beveiligingsupdate voor Windows XP (KB2753842)
Beveiligingsupdate voor Windows XP (KB2757638)
Beveiligingsupdate voor Windows XP (KB2758857)
Beveiligingsupdate voor Windows XP (KB2761226)
Beveiligingsupdate voor Windows XP (KB2770660)
Beveiligingsupdate voor Windows XP (KB2778344)
Beveiligingsupdate voor Windows XP (KB2779030)
Beveiligingsupdate voor Windows XP (KB2780091)
Beveiligingsupdate voor Windows XP (KB2799494)
Beveiligingsupdate voor Windows XP (KB2802968)
Beveiligingsupdate voor Windows XP (KB2807986)
Beveiligingsupdate voor Windows XP (KB2808735)
Beveiligingsupdate voor Windows XP (KB2813170)
Beveiligingsupdate voor Windows XP (KB2813345)
Beveiligingsupdate voor Windows XP (KB2820197)
Beveiligingsupdate voor Windows XP (KB2820917)
Beveiligingsupdate voor Windows XP (KB2829361)
Beveiligingsupdate voor Windows XP (KB2834886)
Beveiligingsupdate voor Windows XP (KB2839229)
Beveiligingsupdate voor Windows XP (KB2845187)
Beveiligingsupdate voor Windows XP (KB2847311)
Beveiligingsupdate voor Windows XP (KB2849470)
Beveiligingsupdate voor Windows XP (KB2850851)
Beveiligingsupdate voor Windows XP (KB2850869)
Beveiligingsupdate voor Windows XP (KB2859537)
Beveiligingsupdate voor Windows XP (KB2862152)
Beveiligingsupdate voor Windows XP (KB2862330)
Beveiligingsupdate voor Windows XP (KB2862335)
Beveiligingsupdate voor Windows XP (KB2864063)
Beveiligingsupdate voor Windows XP (KB2868038)
Beveiligingsupdate voor Windows XP (KB2868626)
Beveiligingsupdate voor Windows XP (KB2876217)
Beveiligingsupdate voor Windows XP (KB2876315)
Beveiligingsupdate voor Windows XP (KB2876331)
Beveiligingsupdate voor Windows XP (KB2883150)
Beveiligingsupdate voor Windows XP (KB2892075)
Beveiligingsupdate voor Windows XP (KB2893294)
Beveiligingsupdate voor Windows XP (KB2893984)
Beveiligingsupdate voor Windows XP (KB2898715)
Beveiligingsupdate voor Windows XP (KB2900986)
Beveiligingsupdate voor Windows XP (KB2914368)
Beveiligingsupdate voor Windows XP (KB2916036)
Beveiligingsupdate voor Windows XP (KB923561)
Beveiligingsupdate voor Windows XP (KB923789)
Beveiligingsupdate voor Windows XP (KB938464-v2)
Beveiligingsupdate voor Windows XP (KB946648)
Beveiligingsupdate voor Windows XP (KB950760)
Beveiligingsupdate voor Windows XP (KB950762)
Beveiligingsupdate voor Windows XP (KB950974)
Beveiligingsupdate voor Windows XP (KB951066)
Beveiligingsupdate voor Windows XP (KB951376-v2)
Beveiligingsupdate voor Windows XP (KB951748)
Beveiligingsupdate voor Windows XP (KB952004)
Beveiligingsupdate voor Windows XP (KB952954)
Beveiligingsupdate voor Windows XP (KB954459)
Beveiligingsupdate voor Windows XP (KB954600)
Beveiligingsupdate voor Windows XP (KB955069)
Beveiligingsupdate voor Windows XP (KB956572)
Beveiligingsupdate voor Windows XP (KB956744)
Beveiligingsupdate voor Windows XP (KB956802)
Beveiligingsupdate voor Windows XP (KB956803)
Beveiligingsupdate voor Windows XP (KB956844)
Beveiligingsupdate voor Windows XP (KB957097)
Beveiligingsupdate voor Windows XP (KB958644)
Beveiligingsupdate voor Windows XP (KB958687)
Beveiligingsupdate voor Windows XP (KB958690)
Beveiligingsupdate voor Windows XP (KB958869)
Beveiligingsupdate voor Windows XP (KB959426)
Beveiligingsupdate voor Windows XP (KB960225)
Beveiligingsupdate voor Windows XP (KB960715)
Beveiligingsupdate voor Windows XP (KB960803)
Beveiligingsupdate voor Windows XP (KB960859)
Beveiligingsupdate voor Windows XP (KB961371)
Beveiligingsupdate voor Windows XP (KB961373)
Beveiligingsupdate voor Windows XP (KB961501)
Beveiligingsupdate voor Windows XP (KB968537)
Beveiligingsupdate voor Windows XP (KB969059)
Beveiligingsupdate voor Windows XP (KB969898)
Beveiligingsupdate voor Windows XP (KB969947)
Beveiligingsupdate voor Windows XP (KB970238)
Beveiligingsupdate voor Windows XP (KB970430)
Beveiligingsupdate voor Windows XP (KB971468)
Beveiligingsupdate voor Windows XP (KB971486)
Beveiligingsupdate voor Windows XP (KB971557)
Beveiligingsupdate voor Windows XP (KB971633)
Beveiligingsupdate voor Windows XP (KB971657)
Beveiligingsupdate voor Windows XP (KB972270)
Beveiligingsupdate voor Windows XP (KB973346)
Beveiligingsupdate voor Windows XP (KB973354)
Beveiligingsupdate voor Windows XP (KB973507)
Beveiligingsupdate voor Windows XP (KB973525)
Beveiligingsupdate voor Windows XP (KB973869)
Beveiligingsupdate voor Windows XP (KB973904)
Beveiligingsupdate voor Windows XP (KB974112)
Beveiligingsupdate voor Windows XP (KB974318)
Beveiligingsupdate voor Windows XP (KB974392)
Beveiligingsupdate voor Windows XP (KB974571)
Beveiligingsupdate voor Windows XP (KB975025)
Beveiligingsupdate voor Windows XP (KB975467)
Beveiligingsupdate voor Windows XP (KB975560)
Beveiligingsupdate voor Windows XP (KB975561)
Beveiligingsupdate voor Windows XP (KB975562)
Beveiligingsupdate voor Windows XP (KB975713)
Beveiligingsupdate voor Windows XP (KB977165)
Beveiligingsupdate voor Windows XP (KB977816)
Beveiligingsupdate voor Windows XP (KB977914)
Beveiligingsupdate voor Windows XP (KB978037)
Beveiligingsupdate voor Windows XP (KB978251)
Beveiligingsupdate voor Windows XP (KB978262)
Beveiligingsupdate voor Windows XP (KB978338)
Beveiligingsupdate voor Windows XP (KB978542)
Beveiligingsupdate voor Windows XP (KB978601)
Beveiligingsupdate voor Windows XP (KB978706)
Beveiligingsupdate voor Windows XP (KB979309)
Beveiligingsupdate voor Windows XP (KB979482)
Beveiligingsupdate voor Windows XP (KB979559)
Beveiligingsupdate voor Windows XP (KB979683)
Beveiligingsupdate voor Windows XP (KB979687)
Beveiligingsupdate voor Windows XP (KB980195)
Beveiligingsupdate voor Windows XP (KB980218)
Beveiligingsupdate voor Windows XP (KB980232)
Beveiligingsupdate voor Windows XP (KB980436)
Beveiligingsupdate voor Windows XP (KB981322)
Beveiligingsupdate voor Windows XP (KB981852)
Beveiligingsupdate voor Windows XP (KB981957)
Beveiligingsupdate voor Windows XP (KB981997)
Beveiligingsupdate voor Windows XP (KB982132)
Beveiligingsupdate voor Windows XP (KB982214)
Beveiligingsupdate voor Windows XP (KB982665)
Beveiligingsupdate voor Windows XP (KB982802)
BufferChm
C4100
c4100_Help
CCleaner (remove only)
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
CueTour
CustomerResearchQFolder
Destinations
DeviceManagementQFolder
DocProc
DocProcQFolder
DocumentViewer
DocumentViewerQFolder
Essenti‰le update voor Windows Media Player 11 (KB959772)
eSupportQFolder
Fax_CDA
FM PDF To JPG Converter Free 2.37
Free Mp3 Wma Converter V 2.2
FromDocToPDF Toolbar
FullDPAppQFolder
Google Chrome
GPL Ghostscript 8.71 Lite
Guitar Pro 5.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB976002-v5)
Hotfix voor Windows Media Player 11 (KB939683)
Hotfix voor Windows XP (KB2158563)
Hotfix voor Windows XP (KB2443685)
Hotfix voor Windows XP (KB2570791)
Hotfix voor Windows XP (KB2633952)
Hotfix voor Windows XP (KB2756822)
Hotfix voor Windows XP (KB2779562)
Hotfix voor Windows XP (KB952287)
Hotfix voor Windows XP (KB961118)
Hotfix voor Windows XP (KB970653-v3)
Hotfix voor Windows XP (KB976098-v2)
Hotfix voor Windows XP (KB979306)
Hotfix voor Windows XP (KB981793)
HP Customer Participation Program 7.0
HP Document Viewer 7.0
HP Imaging Device Functions 7.0
HP Photosmart Premier Software 6.5
HP Photosmart, Officejet and Deskjet 7.0.A
HP Product Assistant
HP Solution Center 7.0
HP Update
HPPhotoSmartExpress
HPProductAssistant
InstantShareDevices
InstantShareDevicesMFC
Java 7 Update 51
Java Auto Updater
KB888111: High Definition Audio
Kruidvat fotoservice
MarketResearch
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Dutch Language Pack
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
MP4 to MP3 Converter 6.1.6
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 6 Enterprise Edition
NewCopy_CDA
Norton Identity Safe
Norton Internet Security
OCR Software by I.R.I.S 7.0
OpenOffice.org 3.3
PanoStandAlone
PhotoGallery
ProductContextNPI
RandMap
Readme
Realtek High Definition Audio Driver
Scan
ScannerCopy
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
SkinsHP1
SlideShow
SolutionCenter
Sonic_PrimoSDK
Speccy
Status
Toolbox
TrayApp
Unload
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update voor Windows Internet Explorer 8 (KB976662)
Update voor Windows Internet Explorer 8 (KB980182)
Update voor Windows Internet Explorer 8 (KB980302)
Update voor Windows XP (KB2141007)
Update voor Windows XP (KB2345886)
Update voor Windows XP (KB2467659)
Update voor Windows XP (KB2541763)
Update voor Windows XP (KB2607712)
Update voor Windows XP (KB2616676)
Update voor Windows XP (KB2641690)
Update voor Windows XP (KB2661254-v2)
Update voor Windows XP (KB2718704)
Update voor Windows XP (KB2736233)
Update voor Windows XP (KB2749655)
Update voor Windows XP (KB2863058)
Update voor Windows XP (KB2904266)
Update voor Windows XP (KB951978)
Update voor Windows XP (KB955759)
Update voor Windows XP (KB955839)
Update voor Windows XP (KB967715)
Update voor Windows XP (KB968389)
Update voor Windows XP (KB971029)
Update voor Windows XP (KB971737)
Update voor Windows XP (KB973687)
Update voor Windows XP (KB973815)
VideoLAN VLC media player 0.8.6f
WebFldrs XP
WebReg
Windows Driver Package - Atheros (AR5211) Net (01/20/2006 4.2.2.7)
Windows Driver Package - ATI Technologies Inc System (12/20/2004 5.10.1000.5)
Windows Driver Package - Ralink Technology, Inc. (RT61) Net (08/02/2006 1.01.02.0000)
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell 1.0
Windows XP Service Pack 3
WinRAR
Zilla JPG To PDF Converter 2.0
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\FromDocToPDF_65Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\FromDocToPDF_65Service deleted successfully
==== Registry Fix Code ======================
Windows Registry Editor Version 5.00
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f236ca79-3123-4afb-9f74-e98117ad5625}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"FromDocToPDF Search Scope Monitor"=-
"FromDocToPDF_65 Browser Plugin Loader"=-
==== Deleting Files \ Folders ======================
E:\Documents and Settings\user\Application Data\FromDocToPDF_65 deleted
E:\found.000 deleted
E:\Documents and Settings\user\Application Data\Toolbar4 deleted
E:\Documents and Settings\user\Local Settings\Application Data\IAC deleted
E:\WINDOWS\002639_.tmp deleted
E:\WINDOWS\SET3.tmp deleted
E:\WINDOWS\SET4.tmp deleted
E:\WINDOWS\SET8.tmp deleted
E:\WINDOWS\system32\roboot.exe deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brmon.exe" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brstub.dll" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\T8RES.DLL" deleted
"E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe" deleted
"E:\PROGRA~1\FROMDO~2\bar\1.bin\65brstub.dll" deleted
"E:\PROGRA~1\FROMDO~2\bar\1.bin\T8RES.DLL" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brmon.exe" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brstub.dll" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\T8RES.DLL" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brmon.exe" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\65brstub.dll" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin\T8RES.DLL" deleted
"E:\Program Files\FromDocToPDF_65\bar" deleted
"E:\PROGRA~1\FROMDO~2\bar" deleted
"E:\Program Files\FromDocToPDF_65" deleted
"E:\Program Files\FromDocToPDF_65" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin" deleted
"E:\PROGRA~1\FROMDO~2\bar\1.bin" deleted
"E:\Program Files\FromDocToPDF_65\bar" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin" deleted
"E:\Program Files\FromDocToPDF_65\bar" deleted
"E:\Program Files\FromDocToPDF_65\bar\1.bin" deleted
==== System Specs ======================
Windows: Windows XP Professional Service Pack 3 (Build 2600)
Memory (RAM): 895 MB
CPU Info: Intel® Celeron® M CPU 410 @ 1.46GHz
CPU Speed: 1463,3 MHz
Sound Card: Realtek HD Audio output |
Display Adapters: ATI RADEON XPRESS 200M Series | ATI RADEON XPRESS 200M Series | NetMeeting driver | RDPDD Chained DD
Monitors: 1x; Plug en Play-monitor | Plug en Play-monitor |
Screen Resolution: 1280 X 800 - 32 bit
Network: Network Present
Network Adapters: Ralink Wireless LAN Card V2 - Pakketplanner-minipoort | Realtek RTL8139 Family PCI Fast Ethernet NIC - Pakketplanner-minipoort
CD / DVD Drives: 1x (D: | ) D: Optiarc DVD RW AD-5540A
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C: 133,4GB | E: 15,6GB
Hard Disks - Free: C: 117,5GB | E: 1,0GB
Manufacturer *: Packard Bell
BIOS Info: AT/AT COMPATIBLE | 11/15/06 | PKBQCI - 6040000
Time Zone: West-Europa (standaardtijd)
Motherboard *: Packard Bell BV EasyNote MZ35
Country: Belgi‰
Language: NLB
==== System Specs (Software) ======================
Anti-Virus: Norton Internet Security On-access scanning disabled (Updated)
Firewall: Norton Internet Security disabled
Internet Explorer version: 8.0.6001.18702
Google Chrome version: 33.0.1750.117
Adobe Reader version: 8.3.1.289
Sun Java version: 1.7.0_51 (32-bit)
Flash Player version: 12.0.0.70
==== Files Recently Created / Modified ======================
====== E:\WINDOWS ====
====== E:\DOCUME~1\user\LOCALS~1\Temp ====
====== Java Cache =====
2014-02-27 19:16:15 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\12\eef218c-6b0ac699
2014-02-27 19:16:05 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\17\49a00451-58856853
2014-02-27 19:16:05 88AD963B69BFE5E3C7485E1524E1E5DD 99 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap
2014-02-27 19:16:01 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\18\3cb32f52-4486301c
2014-02-27 19:16:05 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\43\1ca2666b-1bde2ad4
2014-02-27 19:37:11 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-27cb6327
====== E:\WINDOWS\system32 =====
2014-02-27 19:27:02 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- E:\WINDOWS\System32\javacpl.cpl
2014-02-27 19:27:02 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\WINDOWS\System32\javaws.exe
2014-02-27 19:26:49 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- E:\WINDOWS\System32\WindowsAccessBridge.dll
2014-02-27 19:26:49 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\WINDOWS\System32\javaw.exe
2014-02-27 19:26:49 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\WINDOWS\System32\java.exe
====== E:\WINDOWS\system32\drivers =====
====== E:\WINDOWS\Tasks ======
====== E:\WINDOWS\Temp ======
======= E:\Program Files =====
2014-02-27 19:26:23 -------- d-----w- E:\Program Files\Java
2014-02-27 19:11:37 -------- d-----w- E:\Program Files\Common Files\Java
2014-02-25 19:02:42 -------- d-----w- E:\Program Files\trend micro
2014-02-24 16:47:37 -------- d-----w- E:\Program Files\Speccy
======= E: =====
====== E:\Documents and Settings\user\Application Data ======
2014-02-27 19:15:54 -------- d-----w- E:\Documents and Settings\user\Local Settings\Application Data\Sun
====== E:\Documents and Settings\user ======
2014-02-25 20:54:20 -------- d--h--r- E:\Documents and Settings\user\Onlangs geopend
2014-02-07 15:49:24 -------- d-----w- E:\Documents and Settings\user\restore
====== E: exe-files ==
2014-02-27 19:27:02 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\WINDOWS\system32\javaws.exe
2014-02-27 19:26:49 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\WINDOWS\system32\javaw.exe
2014-02-27 19:26:49 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\WINDOWS\system32\java.exe
2014-02-27 19:26:31 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- E:\Program Files\Java\jre7\bin\pack200.exe
2014-02-27 19:26:31 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- E:\Program Files\Java\jre7\bin\ktab.exe
2014-02-27 19:26:31 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- E:\Program Files\Java\jre7\bin\servertool.exe
2014-02-27 19:26:31 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- E:\Program Files\Java\jre7\bin\unpack200.exe
2014-02-27 19:26:31 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- E:\Program Files\Java\jre7\bin\ssvagent.exe
2014-02-27 19:26:31 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- E:\Program Files\Java\jre7\bin\klist.exe
2014-02-27 19:26:31 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- E:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-02-27 19:26:31 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- E:\Program Files\Java\jre7\bin\rmid.exe
2014-02-27 19:26:31 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- E:\Program Files\Java\jre7\bin\policytool.exe
2014-02-27 19:26:31 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- E:\Program Files\Java\jre7\bin\orbd.exe
2014-02-27 19:26:31 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- E:\Program Files\Java\jre7\bin\tnameserv.exe
2014-02-27 19:26:30 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- E:\Program Files\Java\jre7\bin\jqs.exe
2014-02-27 19:26:30 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- E:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-02-27 19:26:30 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- E:\Program Files\Java\jre7\bin\keytool.exe
2014-02-27 19:26:30 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- E:\Program Files\Java\jre7\bin\kinit.exe
2014-02-27 19:26:29 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- E:\Program Files\Java\jre7\bin\jabswitch.exe
2014-02-27 19:26:29 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- E:\Program Files\Java\jre7\bin\javacpl.exe
2014-02-27 19:26:29 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- E:\Program Files\Java\jre7\bin\javaw.exe
2014-02-27 19:26:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- E:\Program Files\Java\jre7\bin\javaws.exe
2014-02-27 19:26:29 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- E:\Program Files\Java\jre7\bin\java.exe
2014-02-27 19:26:29 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- E:\Program Files\Java\jre7\bin\java-rmi.exe
2014-02-27 19:25:51 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- E:\Documents and Settings\user\Application Data\Sun\Java\jre1.7.0_51\lzma.exe
2014-02-25 19:02:44 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- E:\Program Files\trend micro\user.exe
2014-02-22 07:40:19 A4F0C36642681927FA53CD6A90CA2975 7620312 ----a-w- E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.117\33.0.1750.117_32.0.1700.107_chrome_updater.exe
=== E: other files ==
2014-02-27 19:26:32 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- E:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe"
"Google Update"="E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c"
"RDReminder"="E:\Program Files\RegClean Pro\RegCleanPro.exe -rem"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"beid"="E:\Program Files\Belgium Identity Card\beid35gui.exe /startup"
"QuickTime Task"="E:\Program Files\QuickTime\qttask.exe -atboottime"
"Adobe Reader Speed Launcher"="E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"Adobe ARM"="E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="E:\Program Files\Common Files\Java\Java Update\jusched.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe"
"Google Update"="E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c"
"RDReminder"="E:\Program Files\RegClean Pro\RegCleanPro.exe -rem"
==== Startup Registry Disabled ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKLM"
"command"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeARM"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Reader_sl"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Alcmtr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ALCMTR"
"hkey"="HKLM"
"command"="ALCMTR.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ATIPTA]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="atiptaxx"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ctfmon"
"hkey"="HKCU"
"command"="E:\\WINDOWS\\system32\\ctfmon.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HPWuSchd2"
"hkey"="HKLM"
"command"="E:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NeroFilterCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="E:\\WINDOWS\\system32\\NeroCheck.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"E:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDCPL]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RTHDCPL"
"hkey"="HKLM"
"command"="RTHDCPL.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SkyTel]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SkyTel"
"hkey"="HKLM"
"command"="SkyTel.EXE"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]
"path"="E:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\HP Digital Imaging Monitor.lnk"
"backup"="E:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup"
"command"="E:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Photosmart Premier Snelstart.lnk]
"path"="E:\\Documents and Settings\\All Users\\Menu Start\\Programma's\\Opstarten\\HP Photosmart Premier Snelstart.lnk"
"backup"="E:\\WINDOWS\\pss\\HP Photosmart Premier Snelstart.lnkCommon Startup"
"command"="E:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe -s"
"item"="HP Photosmart Premier Snelstart"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\E:^Documents and Settings^user^Menu Start^Programma's^Opstarten^OpenOffice.org 3.0 .lnk]
"path"="E:\\Documents and Settings\\user\\Menu Start\\Programma's\\Opstarten\\OpenOffice.org 3.0 .lnk"
"backup"="E:\\WINDOWS\\pss\\OpenOffice.org 3.0 .lnkStartup"
"command"="E:\\PROGRA~1\\OPENOF~1.ORG\\program\\QUICKS~1.EXE "
"item"="OpenOffice.org 3.0 "
==== Startup Folders ======================
2011-02-27 11:28:56 864 ----a-w- E:\Documents and Settings\user\Menu Start\Programma's\Opstarten\OpenOffice.org 3.0 .lnk
2011-03-08 19:40:08 864 ----a-w- E:\Documents and Settings\user\Menu Start\Programma's\Opstarten\OpenOffice.org 3.3 .lnk
==== Task Scheduler Jobs ======================
E:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [22/02/2014 09:06]
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003Core.job --a------ E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [08/05/2012 22:16]
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003UA.job --a------ E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [08/05/2012 22:16]
E:\WINDOWS\tasks\User_Feed_Synchronization-{F0A4EADB-E0DC-459B-AF7B-0780EB9E49F7}.job --ah----- E:\WINDOWS\system32\msfeedssync.exe [08/03/2009 03:31]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\coFFPlgn" [27/02/2014 20:33]
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
mkfokfffehpeedafpekjeddnmnjhmcmk - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\Exts\Chrome.crx[07/03/2013 12:43]
nppllibpnmahfaklnpggkibhkapjkeob - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\Exts\Chrome.crx[31/05/2013 02:49]
YouTube - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Norton Identity Protection - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Google Wallet - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Norton Identity Protection - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob
Gmail - user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="Google"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="Google"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{2F4A51D0-BB13-4A10-A72B-AE68D386CDD5}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found"
{2F4A51D0-BB13-4A10-A72B-AE68D386CDD5} Bing Url="{searchTerms} - Bing"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1547161642-746137067-682003330-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
==== Deleting CLSID Registry Values ======================
==== HijackThis Entries ======================
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O4 - HKLM\..\Run: [beid] "E:\Program Files\Belgium Identity Card\beid35gui.exe" /startup
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "E:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RDReminder] E:\Program Files\RegClean Pro\RegCleanPro.exe -rem
O4 - Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Search - http://tbedits.fromdoctopdf.com/one-toolbaredits/menusearch.jhtml?s=207743773&p2=^Y6^xdm010^YY^be&si=CLqD7bm41LYCFUzHtAodJXUASQ&a=7A1348A1-45D6-4697-9DD3-400ECB2E8267&n=2013041810&cv=1
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://ideefixx.dyndns.tv:811/activex/AMC.cab
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - E:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
==== Empty IE Cache ======================
E:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\A7ELYJ04 will be deleted at reboot
E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
E:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== E:\zoek_backup content ======================
E:\zoek_backup (files=350 folders=58 34332417 bytes)
==== Empty Temp Folders ======================
E:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
E:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
E:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
E:\Documents and Settings\user\Local Settings\Temp will be emptied at reboot
E:\WINDOWS\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
E:\WINDOWS\Temp successfully emptied
E:\DOCUME~1\user\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
E:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
"E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"E:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\A7ELYJ04" not found
==== EOF on do 27/02/2014 at 21:40:54,89 ======================
-
Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2014-02-25 20:02:40
Microsoft Windows XP Professional Service Pack 3
System drive E: has 1 GB (9%) free of 16 GB
Total RAM: 894 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:03:01, on 25/02/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Belgium Identity Card\beid35gui.exe
E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\OpenOffice.org 3\program\soffice.exe
E:\Program Files\OpenOffice.org 3\program\soffice.bin
E:\Program Files\Java\jre6\bin\jqs.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\WINDOWS\system32\HPZipm12.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Outlook Express\msimn.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\00UCBLUR\RSIT[1].exe
E:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: (no name) - {4c60e5ab-5c68-4c59-abaa-885010b24b32} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL
O2 - BHO: Toolbar BHO - {a235e1e3-6296-4710-af39-104a7faa6c7c} - E:\PROGRA~1\FROMDO~2\bar\1.bin\65bar.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Search Assistant BHO - {f236ca79-3123-4afb-9f74-e98117ad5625} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O3 - Toolbar: FromDocToPDF - {c66a678d-5e6c-4af9-8f57-c6192f42cf74} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll
O4 - HKLM\..\Run: [beid] "E:\Program Files\Belgium Identity Card\beid35gui.exe" /startup
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [FromDocToPDF Search Scope Monitor] "E:\PROGRA~1\FROMDO~2\bar\1.bin\65srchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [FromDocToPDF_65 Browser Plugin Loader] E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RDReminder] E:\Program Files\RegClean Pro\RegCleanPro.exe -rem
O4 - S-1-5-18 Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - .DEFAULT Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Search - http://tbedits.fromdoctopdf.com/one-toolbaredits/menusearch.jhtml?s=207743773&p2=^Y6^xdm010^YY^be&si=CLqD7bm41LYCFUzHtAodJXUASQ&a=7A1348A1-45D6-4697-9DD3-400ECB2E8267&n=2013041810&cv=1
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://ideefixx.dyndns.tv:811/activex/AMC.cab
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: FromDocToPDFService (FromDocToPDF_65Service) - COMPANYVERS_NAME - E:\PROGRA~1\FROMDO~2\bar\1.bin\65barsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
--
End of file - 7659 bytes
======Scheduled tasks folder======
E:\WINDOWS\tasks\Adobe Flash Player Updater.job
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003Core.job
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003UA.job
E:\WINDOWS\tasks\User_Feed_Synchronization-{F0A4EADB-E0DC-459B-AF7B-0780EB9E49F7}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Help bij koppelingen - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll [2013-02-14 509776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL [2012-11-16 387040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c}]
Toolbar BHO - E:\PROGRA~1\FROMDO~2\bar\1.bin\65bar.dll [2013-04-18 708168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f236ca79-3123-4afb-9f74-e98117ad5625}]
Search Assistant BHO - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll [2013-04-18 62864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll [2013-02-14 509776]
{c66a678d-5e6c-4af9-8f57-c6192f42cf74} - FromDocToPDF - E:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll [2013-04-18 708168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"beid"=E:\Program Files\Belgium Identity Card\beid35gui.exe [2009-02-02 2035712]
"QuickTime Task"=E:\Program Files\QuickTime\qttask.exe [2010-03-12 417792]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
"Adobe ARM"=E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]
"FromDocToPDF Search Scope Monitor"=E:\PROGRA~1\FROMDO~2\bar\1.bin\65srchmn.exe [2013-04-18 44784]
"FromDocToPDF_65 Browser Plugin Loader"=E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe [2013-04-18 30096]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-05-08 116648]
"RDReminder"=E:\Program Files\RegClean Pro\RegCleanPro.exe -rem []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
E:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-12-11 344064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
E:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
E:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
E:\Program Files\QuickTime\qttask.exe [2010-03-12 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
E:\WINDOWS\RTHDCPL.EXE [2006-07-21 16261632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
E:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]
E:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2006-02-19 288472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Photosmart Premier Snelstart.lnk]
E:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe [2006-02-10 73728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^user^Menu Start^Programma's^Opstarten^OpenOffice.org 3.0 .lnk]
E:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-12-13 1198592]
E:\Documents and Settings\user\Menu Start\Programma's\Opstarten
OpenOffice.org 3.0 .lnk - E:\Program Files\OpenOffice.org 3\program\quickstart.exe
OpenOffice.org 3.3 .lnk - E:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
E:\WINDOWS\system32\Ati2evxx.dll [2005-12-11 47104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
E:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=60
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="E:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="E:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="E:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="E:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"E:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="E:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"E:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="E:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="E:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"E:\Program Files\Java\jre6\bin\java.exe"="E:\Program Files\Java\jre6\bin\java.exe:*:Disabled:Java Platform SE binary"
"E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"="E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe:*:Enabled:Adobe Reader and Acrobat Manager"
"E:\Documents and Settings\user\Local Settings\Temp\pft254.tmp\setup.exe"="E:\Documents and Settings\user\Local Settings\Temp\pft254.tmp\setup.exe:*:Disabled:Kaspersky Anti-Virus 2009 Installatie"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=E:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=E:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.LEAD"=LCODCCMP.DLL
======List of files/folders created in the last 1 month======
2014-02-25 20:02:42 ----D---- E:\Program Files\trend micro
2014-02-25 20:02:40 ----D---- E:\rsit
2014-02-24 17:47:37 ----D---- E:\Program Files\Speccy
2014-02-13 18:56:32 ----ASH---- E:\pagefile.sys
2014-02-13 18:53:24 ----HDC---- E:\WINDOWS\$NtUninstallKB2916036$
2014-02-07 16:45:35 ----D---- E:\Documents and Settings\All Users\Application Data\tmp
2014-02-07 16:45:34 ----D---- E:\Documents and Settings\All Users\Application Data\hps
======List of files/folders modified in the last 1 month======
2014-02-25 20:02:42 ----RD---- E:\Program Files
2014-02-25 20:02:41 ----D---- E:\WINDOWS\Temp
2014-02-25 20:02:15 ----D---- E:\WINDOWS\Prefetch
2014-02-25 18:04:16 ----A---- E:\WINDOWS\SchedLgU.Txt
2014-02-25 17:28:03 ----SHD---- E:\System Volume Information
2014-02-24 17:48:17 ----D---- E:\WINDOWS
2014-02-24 17:48:10 ----D---- E:\WINDOWS\system32\CatRoot2
2014-02-22 09:06:40 ----D---- E:\WINDOWS\system32
2014-02-22 09:06:28 ----A---- E:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-13 21:49:03 ----D---- E:\WINDOWS\Debug
2014-02-13 19:07:01 ----D---- E:\WINDOWS\Microsoft.NET
2014-02-13 19:06:55 ----RSD---- E:\WINDOWS\assembly
2014-02-13 18:56:32 ----D---- E:\Program Files\Internet Explorer
2014-02-13 18:53:36 ----HD---- E:\WINDOWS\inf
2014-02-13 18:53:28 ----RSHDC---- E:\WINDOWS\system32\dllcache
2014-02-13 18:52:33 ----SHD---- E:\WINDOWS\Installer
2014-02-13 18:52:12 ----HD---- E:\Config.Msi
2014-02-13 18:50:18 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2014-02-13 18:48:58 ----D---- E:\WINDOWS\WinSxS
2014-02-13 18:37:08 ----D---- E:\WINDOWS\system32\MRT
2014-02-13 18:21:32 ----A---- E:\WINDOWS\system32\MRT.exe
2014-02-13 18:20:14 ----D---- E:\WINDOWS\ie8updates
2014-02-08 22:02:13 ----RSD---- E:\WINDOWS\Fonts
2014-02-06 04:38:34 ----A---- E:\WINDOWS\system32\wininet.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\occache.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\mstime.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\jsproxy.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\iedkcs32.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\urlmon.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\url.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\mshtmled.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\mshtml.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\msfeeds.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\licmgr10.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\iertutil.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\iepeers.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\ieframe.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\corpol.dll
2014-02-05 23:29:26 ----N---- E:\WINDOWS\system32\ie4uinit.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 PxHelp20;PxHelp20; E:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-08-19 46080]
R0 SymDS;Symantec Data Store; E:\WINDOWS\system32\drivers\NIS\1403000.024\SYMDS.SYS [2013-01-22 367704]
R0 SymEFA;Symantec Extended File Attributes; E:\WINDOWS\system32\drivers\NIS\1403000.024\SYMEFA.SYS [2013-01-31 934488]
R1 BHDrvx86;BHDrvx86; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20140214.001\BHDrvx86.sys []
R1 ccSet_NIS;Norton Internet Security Settings Manager; E:\WINDOWS\system32\drivers\NIS\1403000.024\ccSetx86.sys [2012-11-16 134304]
R1 ccSet_NST;Norton Identity Safe Settings Manager; E:\WINDOWS\system32\drivers\NST\7DD04000.00A\ccSetx86.sys [2013-04-16 134744]
R1 eeCtrl;Symantec Eraser Control driver; \??\E:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Intel GV3-processorstuurprogramma; E:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); E:\WINDOWS\system32\drivers\NIS\1403000.024\SRTSPX.SYS [2013-01-29 32344]
R1 SymIRON;Symantec Iron Driver; E:\WINDOWS\system32\drivers\NIS\1403000.024\Ironx86.SYS [2012-11-16 175264]
R1 SYMTDI;Symantec Network Dispatch Driver; E:\WINDOWS\System32\Drivers\NIS\1403000.024\SYMTDI.SYS [2013-01-31 394656]
R3 ati2mtag;ati2mtag; E:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-12-11 1414656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\E:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class-stuurprogramma; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; E:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2010-12-30 72832]
R3 IDSxpx86;IDSxpx86; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20140224.001\IDSxpx86.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-07-24 4353024]
R3 mouhid;Stuurprogramma voor muis-HID; E:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288]
R3 NAVENG;NAVENG; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140224.023\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140224.023\NAVEX15.SYS []
R3 RT61;Ralink RT61 Wireless Driver; E:\WINDOWS\system32\DRIVERS\RT61.sys [2006-08-02 384384]
R3 rtl8139;NT-stuurprogramma voor Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter; E:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SRTSP;Symantec Real Time Storage Protection; E:\WINDOWS\System32\Drivers\NIS\1403000.024\SRTSP.SYS [2013-01-29 602712]
R3 SymEvent;SymEvent; \??\E:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Kernel Mode Driver Frameworks service; E:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 ACSSCR;ACR38 Smart Card Reader; E:\WINDOWS\system32\DRIVERS\a38usb.sys [2009-06-08 33536]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; E:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2010-12-30 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; E:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2010-12-30 11136]
S3 ewusbnet;HUAWEI USB-NDIS miniport; E:\WINDOWS\system32\DRIVERS\ewusbnet.sys [2010-12-31 234368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; E:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; E:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; E:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 huawei_cdcacm;huawei_cdcacm; E:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2010-12-30 85632]
S3 huawei_cdcecm;huawei_cdcecm; E:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2010-12-30 51456]
S3 huawei_ext_ctrl;huawei_ext_ctrl; E:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2010-12-30 26496]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; E:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2010-12-30 191872]
S3 usbprint;Microsoft USB PRINTER Class; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Stuurprogramma voor USB-scanner; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Stuurprogramma voor USB-massaopslag; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; E:\WINDOWS\system32\Ati2evxx.exe [2005-12-11 393216]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
R2 NCO;Norton Identity Safe; E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe [2013-05-21 144368]
R2 NIS;Norton Internet Security; E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe [2012-12-24 144520]
R2 Pml Driver HPZ12;Pml Driver HPZ12; E:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S2 FromDocToPDF_65Service;FromDocToPDFService; E:\PROGRA~1\FROMDO~2\bar\1.bin\65barsvc.exe [2013-04-18 42504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-22 257928]
S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Windows Media Player Network Sharing-service; E:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-02 917504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
- - - Updated - - -
Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2014-02-25 20:02:40
Microsoft Windows XP Professional Service Pack 3
System drive E: has 1 GB (9%) free of 16 GB
Total RAM: 894 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:03:01, on 25/02/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Belgium Identity Card\beid35gui.exe
E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\OpenOffice.org 3\program\soffice.exe
E:\Program Files\OpenOffice.org 3\program\soffice.bin
E:\Program Files\Java\jre6\bin\jqs.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\WINDOWS\system32\HPZipm12.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Outlook Express\msimn.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\00UCBLUR\RSIT[1].exe
E:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://be.msn.com/default.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
R3 - URLSearchHook: (no name) - {4c60e5ab-5c68-4c59-abaa-885010b24b32} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL
O2 - BHO: Toolbar BHO - {a235e1e3-6296-4710-af39-104a7faa6c7c} - E:\PROGRA~1\FROMDO~2\bar\1.bin\65bar.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Search Assistant BHO - {f236ca79-3123-4afb-9f74-e98117ad5625} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll
O3 - Toolbar: FromDocToPDF - {c66a678d-5e6c-4af9-8f57-c6192f42cf74} - E:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll
O4 - HKLM\..\Run: [beid] "E:\Program Files\Belgium Identity Card\beid35gui.exe" /startup
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [FromDocToPDF Search Scope Monitor] "E:\PROGRA~1\FROMDO~2\bar\1.bin\65srchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [FromDocToPDF_65 Browser Plugin Loader] E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RDReminder] E:\Program Files\RegClean Pro\RegCleanPro.exe -rem
O4 - S-1-5-18 Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - .DEFAULT Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.0 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: OpenOffice.org 3.3 .lnk = E:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Search - http://tbedits.fromdoctopdf.com/one-toolbaredits/menusearch.jhtml?s=207743773&p2=^Y6^xdm010^YY^be&si=CLqD7bm41LYCFUzHtAodJXUASQ&a=7A1348A1-45D6-4697-9DD3-400ECB2E8267&n=2013041810&cv=1
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Plugin Control) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://ideefixx.dyndns.tv:811/activex/AMC.cab
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: FromDocToPDFService (FromDocToPDF_65Service) - COMPANYVERS_NAME - E:\PROGRA~1\FROMDO~2\bar\1.bin\65barsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Identity Safe (NCO) - Symantec Corporation - E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
--
End of file - 7659 bytes
======Scheduled tasks folder======
E:\WINDOWS\tasks\Adobe Flash Player Updater.job
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003Core.job
E:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1547161642-746137067-682003330-1003UA.job
E:\WINDOWS\tasks\User_Feed_Synchronization-{F0A4EADB-E0DC-459B-AF7B-0780EB9E49F7}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Help bij koppelingen - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll [2013-02-14 509776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\IPS\IPSBHO.DLL [2012-11-16 387040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a235e1e3-6296-4710-af39-104a7faa6c7c}]
Toolbar BHO - E:\PROGRA~1\FROMDO~2\bar\1.bin\65bar.dll [2013-04-18 708168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f236ca79-3123-4afb-9f74-e98117ad5625}]
Search Assistant BHO - E:\Program Files\FromDocToPDF_65\bar\1.bin\65SrcAs.dll [2013-04-18 62864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - E:\Program Files\Norton Internet Security\Engine\20.3.0.36\coIEPlg.dll [2013-02-14 509776]
{c66a678d-5e6c-4af9-8f57-c6192f42cf74} - FromDocToPDF - E:\Program Files\FromDocToPDF_65\bar\1.bin\65bar.dll [2013-04-18 708168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"beid"=E:\Program Files\Belgium Identity Card\beid35gui.exe [2009-02-02 2035712]
"QuickTime Task"=E:\Program Files\QuickTime\qttask.exe [2010-03-12 417792]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
"Adobe ARM"=E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]
"FromDocToPDF Search Scope Monitor"=E:\PROGRA~1\FROMDO~2\bar\1.bin\65srchmn.exe [2013-04-18 44784]
"FromDocToPDF_65 Browser Plugin Loader"=E:\PROGRA~1\FROMDO~2\bar\1.bin\65brmon.exe [2013-04-18 30096]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=E:\Documents and Settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-05-08 116648]
"RDReminder"=E:\Program Files\RegClean Pro\RegCleanPro.exe -rem []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
E:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-12-11 344064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
E:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
E:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
E:\Program Files\QuickTime\qttask.exe [2010-03-12 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
E:\WINDOWS\RTHDCPL.EXE [2006-07-21 16261632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
E:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]
E:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2006-02-19 288472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Photosmart Premier Snelstart.lnk]
E:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe [2006-02-10 73728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\E:^Documents and Settings^user^Menu Start^Programma's^Opstarten^OpenOffice.org 3.0 .lnk]
E:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-12-13 1198592]
E:\Documents and Settings\user\Menu Start\Programma's\Opstarten
OpenOffice.org 3.0 .lnk - E:\Program Files\OpenOffice.org 3\program\quickstart.exe
OpenOffice.org 3.3 .lnk - E:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
E:\WINDOWS\system32\Ati2evxx.dll [2005-12-11 47104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
E:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveTypeAutoRun"=60
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="E:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"E:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="E:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="E:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="E:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"E:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="E:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"E:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="E:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="E:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"E:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="E:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"E:\Program Files\Java\jre6\bin\java.exe"="E:\Program Files\Java\jre6\bin\java.exe:*:Disabled:Java Platform SE binary"
"E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"="E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe:*:Enabled:Adobe Reader and Acrobat Manager"
"E:\Documents and Settings\user\Local Settings\Temp\pft254.tmp\setup.exe"="E:\Documents and Settings\user\Local Settings\Temp\pft254.tmp\setup.exe:*:Disabled:Kaspersky Anti-Virus 2009 Installatie"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=E:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=E:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.LEAD"=LCODCCMP.DLL
======List of files/folders created in the last 1 month======
2014-02-25 20:02:42 ----D---- E:\Program Files\trend micro
2014-02-25 20:02:40 ----D---- E:\rsit
2014-02-24 17:47:37 ----D---- E:\Program Files\Speccy
2014-02-13 18:56:32 ----ASH---- E:\pagefile.sys
2014-02-13 18:53:24 ----HDC---- E:\WINDOWS\$NtUninstallKB2916036$
2014-02-07 16:45:35 ----D---- E:\Documents and Settings\All Users\Application Data\tmp
2014-02-07 16:45:34 ----D---- E:\Documents and Settings\All Users\Application Data\hps
======List of files/folders modified in the last 1 month======
2014-02-25 20:02:42 ----RD---- E:\Program Files
2014-02-25 20:02:41 ----D---- E:\WINDOWS\Temp
2014-02-25 20:02:15 ----D---- E:\WINDOWS\Prefetch
2014-02-25 18:04:16 ----A---- E:\WINDOWS\SchedLgU.Txt
2014-02-25 17:28:03 ----SHD---- E:\System Volume Information
2014-02-24 17:48:17 ----D---- E:\WINDOWS
2014-02-24 17:48:10 ----D---- E:\WINDOWS\system32\CatRoot2
2014-02-22 09:06:40 ----D---- E:\WINDOWS\system32
2014-02-22 09:06:28 ----A---- E:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-13 21:49:03 ----D---- E:\WINDOWS\Debug
2014-02-13 19:07:01 ----D---- E:\WINDOWS\Microsoft.NET
2014-02-13 19:06:55 ----RSD---- E:\WINDOWS\assembly
2014-02-13 18:56:32 ----D---- E:\Program Files\Internet Explorer
2014-02-13 18:53:36 ----HD---- E:\WINDOWS\inf
2014-02-13 18:53:28 ----RSHDC---- E:\WINDOWS\system32\dllcache
2014-02-13 18:52:33 ----SHD---- E:\WINDOWS\Installer
2014-02-13 18:52:12 ----HD---- E:\Config.Msi
2014-02-13 18:50:18 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2014-02-13 18:48:58 ----D---- E:\WINDOWS\WinSxS
2014-02-13 18:37:08 ----D---- E:\WINDOWS\system32\MRT
2014-02-13 18:21:32 ----A---- E:\WINDOWS\system32\MRT.exe
2014-02-13 18:20:14 ----D---- E:\WINDOWS\ie8updates
2014-02-08 22:02:13 ----RSD---- E:\WINDOWS\Fonts
2014-02-06 04:38:34 ----A---- E:\WINDOWS\system32\wininet.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\occache.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\mstime.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\jsproxy.dll
2014-02-06 00:08:31 ----N---- E:\WINDOWS\system32\iedkcs32.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\urlmon.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\url.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\mshtmled.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\mshtml.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\msfeedsbs.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\msfeeds.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\licmgr10.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\iertutil.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\iepeers.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\ieframe.dll
2014-02-06 00:08:31 ----A---- E:\WINDOWS\system32\corpol.dll
2014-02-05 23:29:26 ----N---- E:\WINDOWS\system32\ie4uinit.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 PxHelp20;PxHelp20; E:\WINDOWS\System32\Drivers\PxHelp20.sys [2005-08-19 46080]
R0 SymDS;Symantec Data Store; E:\WINDOWS\system32\drivers\NIS\1403000.024\SYMDS.SYS [2013-01-22 367704]
R0 SymEFA;Symantec Extended File Attributes; E:\WINDOWS\system32\drivers\NIS\1403000.024\SYMEFA.SYS [2013-01-31 934488]
R1 BHDrvx86;BHDrvx86; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20140214.001\BHDrvx86.sys []
R1 ccSet_NIS;Norton Internet Security Settings Manager; E:\WINDOWS\system32\drivers\NIS\1403000.024\ccSetx86.sys [2012-11-16 134304]
R1 ccSet_NST;Norton Identity Safe Settings Manager; E:\WINDOWS\system32\drivers\NST\7DD04000.00A\ccSetx86.sys [2013-04-16 134744]
R1 eeCtrl;Symantec Eraser Control driver; \??\E:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Intel GV3-processorstuurprogramma; E:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); E:\WINDOWS\system32\drivers\NIS\1403000.024\SRTSPX.SYS [2013-01-29 32344]
R1 SymIRON;Symantec Iron Driver; E:\WINDOWS\system32\drivers\NIS\1403000.024\Ironx86.SYS [2012-11-16 175264]
R1 SYMTDI;Symantec Network Dispatch Driver; E:\WINDOWS\System32\Drivers\NIS\1403000.024\SYMTDI.SYS [2013-01-31 394656]
R3 ati2mtag;ati2mtag; E:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-12-11 1414656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\E:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class-stuurprogramma; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 huawei_enumerator;huawei_enumerator; E:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2010-12-30 72832]
R3 IDSxpx86;IDSxpx86; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20140224.001\IDSxpx86.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-07-24 4353024]
R3 mouhid;Stuurprogramma voor muis-HID; E:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288]
R3 NAVENG;NAVENG; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140224.023\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\E:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140224.023\NAVEX15.SYS []
R3 RT61;Ralink RT61 Wireless Driver; E:\WINDOWS\system32\DRIVERS\RT61.sys [2006-08-02 384384]
R3 rtl8139;NT-stuurprogramma voor Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter; E:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 SRTSP;Symantec Real Time Storage Protection; E:\WINDOWS\System32\Drivers\NIS\1403000.024\SRTSP.SYS [2013-01-29 602712]
R3 SymEvent;SymEvent; \??\E:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 Wdf01000;Kernel Mode Driver Frameworks service; E:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 ACSSCR;ACR38 Smart Card Reader; E:\WINDOWS\system32\DRIVERS\a38usb.sys [2009-06-08 33536]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; E:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2010-12-30 102784]
S3 ew_usbenumfilter;huawei_CompositeFilter; E:\WINDOWS\system32\DRIVERS\ew_usbenumfilter.sys [2010-12-30 11136]
S3 ewusbnet;HUAWEI USB-NDIS miniport; E:\WINDOWS\system32\DRIVERS\ewusbnet.sys [2010-12-31 234368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; E:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; E:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; E:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 huawei_cdcacm;huawei_cdcacm; E:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2010-12-30 85632]
S3 huawei_cdcecm;huawei_cdcecm; E:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [2010-12-30 51456]
S3 huawei_ext_ctrl;huawei_ext_ctrl; E:\WINDOWS\system32\DRIVERS\ew_juextctrl.sys [2010-12-30 26496]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; E:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2010-12-30 191872]
S3 usbprint;Microsoft USB PRINTER Class; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Stuurprogramma voor USB-scanner; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Stuurprogramma voor USB-massaopslag; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; E:\WINDOWS\system32\Ati2evxx.exe [2005-12-11 393216]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376]
R2 NCO;Norton Identity Safe; E:\Program Files\Norton Identity Safe\Engine\2013.4.0.10\ccSvcHst.exe [2013-05-21 144368]
R2 NIS;Norton Internet Security; E:\Program Files\Norton Internet Security\Engine\20.3.0.36\ccSvcHst.exe [2012-12-24 144520]
R2 Pml Driver HPZ12;Pml Driver HPZ12; E:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S2 FromDocToPDF_65Service;FromDocToPDFService; E:\PROGRA~1\FROMDO~2\bar\1.bin\65barsvc.exe [2013-04-18 42504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-22 257928]
S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Windows Media Player Network Sharing-service; E:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-02 917504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
-
-
Beste,
mijn laptop start traag op en sluit heel traag af. Wanneer twee of meer programma's geopend zijn werkt mijn laptop nog amper of zelfs niet meer.
Wat kan hier aan gedaan worden?
Mvg
laptop
in Archief Hardware algemeen
Geplaatst:
Beste,
ik heb het probleem opgelost in die zin dat ik mij een nieuwe laptop heb aangeschaft. Mijn oude laptop was ondertussen zeven jaar oud en draaide onder Windows XP. Naar verluidt wordt Windows XP niet meer ondersteund vanaf april 2014 zodat ook geen updates meer beschikbaar zullen zijn. Een mens moet mee met zijn tijd hé. En het is bijna niet te geloven hoe snel een laptop kan werken als je mijn oude laptop gewoon bent.
Toch van harte bedankt voor de professionele hulp. Ik raad jullie website zeker aan bij mensen die ook pc-problemen hebben.
Met vriendelijke groeten.
Wim