areyan

Sorry, ik weet het, ik heb te weinig geduld. Ben naar een “computerspecialist” geweest en die heeft het zaakje geklaard in minder dan een uur. Toch bedankt groetjes areyan

Sorry, ik doe alles stap voor stap, het werkt ook niet zoals je aangeeft, en ik krijg geen logje, ook niet na 15 minuten wachten. Ik krijg wel dit; kan het bestand C:\TrendMicro\HiJackThis\hijacktis.log niet vinden wilt u een ander bestand maken; En dan begint het gewoon opnieuw...

Het programma scant mijn pc wel maar ik krijg het gescande bestand niet naar kladblok?

Mijn computer gaat naar mijn zin van langs om trager. Ik heb hem 2,5 jaar geleden aangeschaft en in het begin was hij tamelijk snel. Het geheugen is echter maar 1 GB. Zou het nuttig zijn de pc te formatteren, en kan ik dat als volslagen leek zelf doen zonder al te veel problemen?

De mail blijft staan waar hij staat, en telkens ik een nieuw bericht in tik springt hij tevoorschijn. Maar voorlopig gebruik ik dat e-mailadres niet, maar een ander.

Hallo, terug van weggeweest. Met het programma Combofix gaat het prima, maar bij het scannen van HiJackThis kan ik op geen enkele wijze het item 016 verwijderen. Ook het logje krijg ik dit keer niet op het kladblok. De uitvoering van Combofix stuur ik door. groetjes ComboFix 10-01-15.05 - Adam 16/01/2010 15:00:33.1.2 - x86 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.32.1043.18.767.308 [GMT 1:00] Gestart vanuit: c:\users\Adam\Desktop\ComboFix.exe AV: AVG 7.5.503 *On-access scanning enabled* (Updated) {41564737-3200-1071-989B-0000E87B4FB1} AV: Bitdefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} AV: Norton Internet Security Online *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8} FW: Bitdefender Firewall *disabled* {4055920F-2E99-48A8-A270-4243D2B8F242} FW: Norton Internet Security Online *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220} SP: BitDefender Antispyware *disabled* (Updated) {8B2012EC-32D4-494F-BC03-832DB3BDF911} SP: Norton Internet Security Online *enabled* (Updated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A} SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\$recycle.bin\S-1-5-21-2365545147-1999384947-2466353664-500 c:\$recycle.bin\S-1-5-21-364497141-1478782884-4111753375-500 . (((((((((((((((((((( Bestanden Gemaakt van 2009-12-16 to 2010-01-16 )))))))))))))))))))))))))))))) . 2010-01-16 14:09 . 2010-01-16 14:09 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-01-16 12:48 . 2009-08-27 08:00 102448 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\ERASER.SYS 2010-01-16 12:48 . 2009-08-25 08:00 84912 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\NAVENG.SYS 2010-01-16 12:48 . 2009-08-25 08:00 177520 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\NAVENG32.DLL 2010-01-16 12:48 . 2009-08-25 08:00 1647984 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\NAVEX32A.DLL 2010-01-16 12:48 . 2009-08-25 08:00 1323568 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\NAVEX15.SYS 2010-01-16 12:48 . 2009-12-09 09:00 2747440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\CCERASER.DLL 2010-01-16 12:48 . 2009-09-22 08:00 259440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\ECMSVR32.DLL 2010-01-16 12:48 . 2009-08-27 08:00 371248 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.050\EECTRL.SYS 2010-01-16 07:28 . 2009-12-09 09:00 2747440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\CCERASER.DLL 2010-01-16 07:28 . 2009-09-22 08:00 259440 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\ECMSVR32.DLL 2010-01-16 07:28 . 2009-08-27 08:00 371248 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\EECTRL.SYS 2010-01-16 07:28 . 2009-08-27 08:00 102448 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\ERASER.SYS 2010-01-16 07:28 . 2009-08-25 08:00 84912 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\NAVENG.SYS 2010-01-16 07:28 . 2009-08-25 08:00 177520 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\NAVENG32.DLL 2010-01-16 07:28 . 2009-08-25 08:00 1647984 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\NAVEX32A.DLL 2010-01-16 07:28 . 2009-08-25 08:00 1323568 ----a-w- c:\programdata\Symantec\Definitions\VirusDefs\20100115.019\NAVEX15.SYS 2010-01-15 07:43 . 2009-11-20 03:02 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\SymIDSCo.sys 2010-01-15 07:43 . 2009-11-20 03:02 732536 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\Scxpx86.dll 2010-01-15 07:43 . 2009-11-20 03:02 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\IDSvix86.sys 2010-01-15 07:43 . 2009-11-20 03:02 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\SymIDSI.dll 2010-01-15 07:43 . 2009-11-20 03:02 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\IDSxpx86.dll 2010-01-15 07:43 . 2009-11-20 03:02 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\IDSviA64.sys 2010-01-15 07:43 . 2008-11-21 00:26 157120 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100112.001\IDS9xx86.dll 2010-01-13 07:30 . 2009-10-19 13:38 156672 ----a-w- c:\windows\system32\t2embed.dll 2010-01-13 07:30 . 2009-10-19 13:35 72704 ----a-w- c:\windows\system32\fontsub.dll 2010-01-08 21:02 . 2009-11-20 03:02 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\SymIDSCo.sys 2010-01-08 21:02 . 2009-11-20 03:02 732536 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\Scxpx86.dll 2010-01-08 21:02 . 2009-11-20 03:02 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\IDSvix86.sys 2010-01-08 21:02 . 2009-11-20 03:02 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\SymIDSI.dll 2010-01-08 21:02 . 2009-11-20 03:02 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\IDSxpx86.dll 2010-01-08 21:02 . 2009-11-20 03:02 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\IDSviA64.sys 2010-01-08 21:02 . 2008-11-21 00:26 157120 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\20100106.001\IDS9xx86.dll 2010-01-03 17:22 . 2010-01-03 17:23 -------- d-----w- c:\program files\trend micro 2010-01-03 17:22 . 2010-01-03 17:24 -------- d-----w- C:\rsit 2010-01-03 14:53 . 2010-01-03 14:53 388096 ----a-r- c:\users\Adam\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe 2010-01-03 14:53 . 2010-01-03 14:53 -------- d-----w- c:\program files\TrendMicro . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-16 13:51 . 2010-01-16 13:50 -------- d-----w- c:\program files\NortonInstaller 2010-01-13 07:18 . 2009-04-09 07:28 -------- d-----w- c:\programdata\iolo 2010-01-02 16:55 . 2006-11-07 20:54 676772 ----a-w- c:\windows\system32\perfh013.dat 2010-01-02 16:55 . 2006-11-07 20:54 131268 ----a-w- c:\windows\system32\perfc013.dat 2010-01-02 09:54 . 2009-04-09 07:45 1297 ----a-w- c:\users\Adam\AppData\Roaming\iolo\restore.bat 2009-12-16 08:02 . 2008-11-26 19:45 -------- d-----w- c:\programdata\Norton 2009-11-30 08:00 . 2009-11-30 08:00 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb967B.tmp.exe 2009-11-21 06:40 . 2009-12-09 08:33 916480 ----a-w- c:\windows\system32\wininet.dll 2009-11-21 06:34 . 2009-12-09 08:33 71680 ----a-w- c:\windows\system32\iesetup.dll 2009-11-21 06:34 . 2009-12-09 08:33 109056 ----a-w- c:\windows\system32\iesysprep.dll 2009-11-21 04:59 . 2009-12-09 08:33 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2009-11-20 03:02 . 2009-11-20 03:02 268664 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\symidsco.sys 2009-11-20 03:02 . 2009-11-20 03:02 732536 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\scxpx86.dll 2009-11-20 03:02 . 2009-11-20 03:02 286768 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\IDSvix86.sys 2009-11-20 03:02 . 2009-11-20 03:02 173432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\SymIDSI.dll 2009-11-20 03:02 . 2009-11-20 03:02 685432 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\idsxpx86.dll 2009-11-20 03:02 . 2009-11-20 03:02 396336 ----a-w- c:\programdata\Symantec\Definitions\SymcData\ipsdefs\BinHub\IDSvia64.sys 2009-11-15 20:34 . 2008-02-25 08:16 7376 ----a-w- c:\users\Adam\AppData\Local\d3d9caps.dat 2009-11-06 15:42 . 2009-10-11 16:24 93096 ----a-w- c:\windows\system32\IncContxMenu.dll 2009-11-06 15:42 . 2009-04-09 07:38 2118568 ----a-w- c:\windows\system32\Incinerator.dll 2009-11-03 21:43 . 2009-12-09 08:34 24064 ----a-w- c:\windows\system32\nshhttp.dll 2009-11-03 21:42 . 2009-12-09 08:34 30720 ----a-w- c:\windows\system32\httpapi.dll 2009-11-03 19:41 . 2009-12-09 08:34 411648 ----a-w- c:\windows\system32\drivers\http.sys 2009-11-03 19:07 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat 2009-11-02 19:42 . 2009-10-03 07:12 195456 ------w- c:\windows\system32\MpSigStub.exe 2009-10-29 09:17 . 2009-11-25 09:48 2048 ----a-w- c:\windows\system32\tzres.dll 2006-11-07 21:02 . 2006-11-07 21:02 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "SmpcSys"="c:\program files\Packard Bell\SetUpMyPC\SmpSys.exe" [2006-10-23 1092152] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-20 39408] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] "Google Update"="c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe" [2009-05-14 133104] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-19 1008184] "RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704] "RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2006-11-20 228088] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-11-30 30192] "PCMService"="c:\program files\Powercinema\PCMService.exe" [2007-01-12 155648] "toolbar_eula_launcher"="c:\program files\Packard Bell\GOOGLE_EULA\EULALauncher.exe" [2007-01-10 18944] "ACTIVBOARD"="c:\program files\Packard Bell\FIJI\aboard.exe" [2007-01-18 79416] "Belgacom"="c:\program files\Belgacom\bin\sprtcmd.exe" [2006-06-22 192512] "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2006-08-25 221184] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2006-08-25 81920] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2008-10-17 51048] "iolo Startup"="c:\program files\iolo\Common\Lib\ioloLManager.exe" [2009-11-06 313784] "Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-06-05 68592] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(:ad,63,70,98,de,54,ca,01 R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\ipsdefs\20100112.001\IDSvix86.sys [15/01/2010 8:43 286768] R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [9/04/2009 8:38 659376] R2 ioloSystemService;iolo System Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [9/04/2009 8:38 659376] R2 LiveUpdate Notice;LiveUpdate Notice;c:\program files\Common Files\Symantec Shared\CCSVCHST.EXE [25/08/2007 6:07 149352] R3 COH_Mon;COH_Mon;c:\windows\System32\drivers\COH_Mon.sys [29/05/2007 21:55 23888] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [12/10/2009 18:50 102448] R3 SYMNDISV;SYMNDISV;c:\windows\System32\drivers\symndisv.sys [19/02/2009 11:31 41008] S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [14/06/2008 12:32 21504] S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [7/11/2006 13:34 30192] --- Andere Services/Drivers In Geheugen --- *NewlyCreated* - COMHOST [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map 2008-12-12 c:\windows\Tasks\Controleren op updates voor Windows Live Toolbar.job - c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 10:20] 2010-01-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-216792940-3336545758-4142019623-1002Core.job - c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-14 10:38] 2010-01-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-216792940-3336545758-4142019623-1002UA.job - c:\users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-14 10:38] 2010-01-10 c:\windows\Tasks\Norton Internet Security Online - Volledige systeemscan uitvoeren - Adam.job - c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-08-27 01:19] 2010-01-16 c:\windows\Tasks\Uitgebreide garantie.job - c:\program files\Packard Bell\SetupmyPC\PBCarNot.exe [2006-11-07 16:38] 2010-01-15 c:\windows\Tasks\User_Feed_Synchronization-{48838884-4B18-4501-84D0-F224134C1BCD}.job - c:\windows\system32\msfeedssync.exe [2009-12-09 04:59] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm IE: Add to Windows &Live Favorites - Sign In IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html . . ------- Bestandsassociaties ------- . JSEFile=NOTEPAD.EXE %1 . - - - - ORPHANS VERWIJDERD - - - - ActiveSetup-ccc-core-static - msiexec ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-01-16 15:11 Windows 6.0.6002 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . Voltooingstijd: 2010-01-16 15:16:32 ComboFix-quarantined-files.txt 2010-01-16 14:16 Pre-Run: 240.905.834.496 bytes beschikbaar Post-Run: 240.921.579.520 bytes beschikbaar - - End Of File - - F8C92A00D3A8A1F18DF0F292F0BB8196

Logfile of random's system information tool 1.06 (written by random/random) Run by Adam at 2010-01-03 18:22:51 Microsoft® Windows Vista™ Home Basic Service Pack 2 System drive C: has 230 GB (77%) free of 297 GB Total RAM: 767 MB (25% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:23:51, on 3/01/2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18865) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Powercinema\PCMService.exe C:\Program Files\Packard Bell\FIJI\ABoard.exe C:\Program Files\Belgacom\bin\sprtcmd.exe C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Packard Bell\FIJI\AOSD.exe C:\Windows\System32\mobsync.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\sdclt.exe C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Adam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\68DYU62I\RSIT[1].exe C:\Program Files\trend micro\Adam.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Norton-werkbalk weergeven - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [PCMService] "c:\Program Files\Powercinema\PCMService.exe" O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe O4 - HKLM\..\Run: [ACTIVBOARD] C:\Program Files\Packard Bell\FIJI\aboard.exe O4 - HKLM\..\Run: [belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [iolo Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe" O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [smpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - Sign In O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O13 - Gopher Prefix: O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlsr.cab O16 - DPF: {459E93B6-150E-45D5-8D4B-45C66FC035FE} - http://apps.corel.com/nos_dl_manager_dev/plugin/IEGetPlugin.ocx O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - http://gfx2.hotmail.com/mail/w3/resources/VistaMSNPUpldnl-be.cab O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldnl-be.cab O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O23 - Service: ASWLSVC - Unknown owner - (no file) O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Planner voor Automatische LiveUpdate (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\Program Files\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\Program Files\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe -- End of file - 11033 bytes ======Scheduled tasks folder====== C:\Windows\tasks\Controleren op updates voor Windows Live Toolbar.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-216792940-3336545758-4142019623-1002Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-216792940-3336545758-4142019623-1002UA.job C:\Windows\tasks\NeroLiveEpgUpdate-PC_van_Adam_Adam.job C:\Windows\tasks\Norton Internet Security Online - Volledige systeemscan uitvoeren - Adam.job C:\Windows\tasks\Uitgebreide garantie.job C:\Windows\tasks\User_Feed_Synchronization-{48838884-4B18-4501-84D0-F224134C1BCD}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Help bij koppelingen - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll [2007-08-25 316784] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Symantec Intrusion Prevention - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll [2008-12-01 116088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-13 764912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}] CBrowserHelperObject Object - C:\Program Files\Google\Google_BAE\BAE.dll [2006-11-09 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton-werkbalk weergeven - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll [2007-08-25 316784] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-11-30 263280] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184] "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-11-09 3784704] ""= [] "RoxWatchTray"=C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [2006-11-20 228088] "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-11-30 30192] "PCMService"=c:\Program Files\Powercinema\PCMService.exe [2007-01-12 155648] "toolbar_eula_launcher"=C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe [2007-01-10 18944] "ACTIVBOARD"=C:\Program Files\Packard Bell\FIJI\aboard.exe [2007-01-18 79416] "Belgacom"=C:\Program Files\Belgacom\bin\sprtcmd.exe [2006-06-22 192512] "ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-08-25 221184] "ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-08-25 81920] "ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2008-10-17 51048] "iolo Startup"=C:\Program Files\iolo\Common\Lib\ioloLManager.exe [2009-11-06 313784] "Google Quick Search Box"=C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [2009-06-05 68592] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920] ""= [] "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112] "SmpcSys"=C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe [2006-10-23 1092152] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-20 39408] "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240] "Google Update"=C:\Users\Adam\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-14 133104] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "BindDirectlyToPropertySetStorage"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4610ae62-9533-11de-9d42-001921ba8783}] shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL I:\NoLimit.exe ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - NOTEPAD.EXE %1 .reg - open - NOTEPAD.EXE %1 .scr - open - NOTEPAD.EXE %1 .vbs - open - NOTEPAD.EXE %1 ======List of files/folders created in the last 1 months====== 2010-01-03 18:22:56 ----D---- C:\Program Files\trend micro 2010-01-03 18:22:51 ----D---- C:\rsit 2010-01-03 15:53:26 ----D---- C:\Program Files\TrendMicro 2009-12-09 09:34:01 ----A---- C:\Windows\system32\nshhttp.dll 2009-12-09 09:34:01 ----A---- C:\Windows\system32\httpapi.dll 2009-12-09 09:33:20 ----A---- C:\Windows\system32\mshtml.dll 2009-12-09 09:33:18 ----A---- C:\Windows\system32\ieframe.dll 2009-12-09 09:33:17 ----A---- C:\Windows\system32\wininet.dll 2009-12-09 09:33:17 ----A---- C:\Windows\system32\urlmon.dll 2009-12-09 09:33:17 ----A---- C:\Windows\system32\iertutil.dll 2009-12-09 09:33:16 ----A---- C:\Windows\system32\occache.dll 2009-12-09 09:33:16 ----A---- C:\Windows\system32\msfeeds.dll 2009-12-09 09:33:16 ----A---- C:\Windows\system32\ieui.dll 2009-12-09 09:33:16 ----A---- C:\Windows\system32\iedkcs32.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\msfeedssync.exe 2009-12-09 09:33:15 ----A---- C:\Windows\system32\msfeedsbs.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\jsproxy.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\ieUnatt.exe 2009-12-09 09:33:15 ----A---- C:\Windows\system32\iesysprep.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\iesetup.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\iepeers.dll 2009-12-09 09:33:15 ----A---- C:\Windows\system32\ie4uinit.exe 2009-12-09 09:33:14 ----A---- C:\Windows\system32\iernonce.dll 2009-12-09 09:32:28 ----A---- C:\Windows\system32\winhttp.dll 2009-12-09 09:32:24 ----A---- C:\Windows\system32\rastls.dll ======List of files/folders modified in the last 1 months====== 2010-01-03 18:23:37 ----D---- C:\Windows\Prefetch 2010-01-03 18:23:23 ----D---- C:\Windows\Temp 2010-01-03 18:22:56 ----RD---- C:\Program Files 2010-01-03 16:12:48 ----SHD---- C:\System Volume Information 2010-01-03 15:53:34 ----SHD---- C:\Windows\Installer 2010-01-02 22:38:37 ----D---- C:\ProgramData\iolo 2010-01-02 17:55:27 ----D---- C:\Windows\System32 2010-01-02 17:55:27 ----D---- C:\Windows\inf 2010-01-02 17:55:27 ----A---- C:\Windows\system32\PerfStringBackup.INI 2009-12-24 08:33:27 ----D---- C:\Windows\system32\catroot2 2009-12-16 23:05:17 ----SD---- C:\Windows\Downloaded Program Files 2009-12-16 09:02:12 ----D---- C:\ProgramData\Norton 2009-12-14 09:04:38 ----D---- C:\Windows 2009-12-09 12:01:39 ----D---- C:\Windows\rescache 2009-12-09 11:37:26 ----D---- C:\Windows\system32\migration 2009-12-09 11:37:25 ----D---- C:\Program Files\Internet Explorer 2009-12-09 11:37:24 ----D---- C:\Windows\system32\nl-NL 2009-12-09 11:37:24 ----D---- C:\Windows\system32\drivers 2009-12-09 09:41:13 ----D---- C:\Windows\winsxs 2009-12-09 09:33:06 ----D---- C:\Windows\system32\catroot ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-08-27 371248] R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20091217.002\IDSvix86.sys [2009-11-20 286768] R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2008-09-05 447024] R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-11-30 43696] R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2009-02-19 24112] R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2009-02-19 184496] R2 CO_Mon;CO_Mon; \??\C:\Windows\system32\drivers\CO_Mon.sys [2007-08-09 36056] R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-08-27 102448] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-11-08 1647976] R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100102.020\NAVENG.SYS [2009-08-25 84912] R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100102.020\NAVEX15.SYS [2009-08-25 1323568] R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-01-08 2313216] R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104] R3 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-11-30 279088] R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2009-02-19 13616] R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-01-09 124464] R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2009-02-19 96560] R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008] R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2009-02-19 22320] R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328] S2 BDRSDRV;BDRSDRV; \??\C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys [] S3 ASNDIS4;ASNDIS4 Protocol Driver; \??\C:\Windows\system32\ASNDIS4.SYS [] S3 COH_Mon;COH_Mon; \??\C:\Windows\system32\Drivers\COH_Mon.sys [2008-07-30 23888] S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632] S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192] S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888] S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016] S3 RT2500USB;ASUS RT2500 USB Wireless LAN Driver; C:\Windows\system32\DRIVERS\rt2500usb.sys [2005-10-17 245376] S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-11-30 317616] S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys [] S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328] S3 USRWGU(USR);USRobotics Wireless USB Adapter(USR); C:\Windows\system32\DRIVERS\USRWGU.sys [] S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448] S3 ZDPSp60;ZDPSp60 NDIS Protocol Driver; C:\Windows\System32\Drivers\ZDPSp60.sys [] S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2008-01-19 21504] R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-01-08 557056] R2 Automatic LiveUpdate Scheduler;Planner voor Automatische LiveUpdate; C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [2007-08-31 243064] R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352] R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352] R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\Program Files\Powercinema\Kernel\TV\CLCapSvc.exe [2007-01-12 278608] R2 CLSched;CyberLink Task Scheduler (CTS); c:\Program Files\Powercinema\Kernel\TV\CLSched.exe [2007-01-12 110677] R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352] R2 ioloFileInfoList;iolo FileInfoList Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2009-11-06 659376] R2 ioloSystemService;iolo System Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe [2009-11-06 659376] R2 LiveUpdate Notice;LiveUpdate Notice; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352] R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2007-01-12 262247] R3 Symantec Core LC;Symantec Core LC; C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe [2008-12-01 1251720] S2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-11-20 166648] S3 comHost;COM Host; C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [2007-08-22 55640] S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504] S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-11-30 30192] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-28 182768] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 LiveUpdate;LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [2007-08-23 3192184] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-20 887544] S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728] S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2008-01-19 21504] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] -----------------EOF----------------- info.txt logfile of random's system information tool 1.06 2010-01-03 18:24:04 ======Uninstall list====== -->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U -->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF} -->MsiExec.exe /I{0D330013-4A99-46D6-83C6-2C959C68DBFF} -->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87} -->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0} -->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048} -->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} -->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82} -->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C} Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7} Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{685A56F8-75B6-44AD-B3DA-FB0A3266B47C} Adobe Reader 8.1.2 - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-A81200000003} Adobe Reader 8-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *AdobeReader* Adobe Shockwave Player-->MsiExec.exe /X{A7DB362E-16DC-4E29-8A34-E74381E00B5B} AppCore-->MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B} Belgacom Genius-->MsiExec.exe /X{FDE9FC7A-BF6D-4347-850D-05A16E6FEE17} ccc-Branding-->MsiExec.exe /I{58A8820A-CCF4-4A6E-A4B9-CECD87D3C7F2} ccCommon-->MsiExec.exe /I{B24E05CC-46FF-4787-BBB8-5CD516AFB118} Component Framework-->MsiExec.exe /I{31478BE1-CDE5-4753-A8B2-F6D4BC1FBE09} Creator 9-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *CREATOR9* EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3D78F2A2-C893-4ABD-B5FE-AD7011837755}\SETUP.EXE" -l0x13 UNINST EPSON PRINT Image Framer Tool-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{19D2B63E-C1F1-4803-BA8B-4AB8FE216952}\setup.exe" -l0x13 anything EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r EPSON-printersoftware-->C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R Extensie voor Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{91897B2C-B407-48C2-A76C-E6AC47A9B6A0} Flash Player plugins 9-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Flashplayer* Google BAE-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GoogleBAE* Google Desktop-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GoogleDesktop* Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0E996B068B56FCA2.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Toolbar-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *GOOGLETOOLBAR* HDRegBENL-->MsiExec.exe /I{6372DAC4-7E35-48A6-B216-79415ACD34B3} HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall HiJackThis-->MsiExec.exe /X{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" HP Product Detection-->MsiExec.exe /X{CAE7D1D9-3794-4169-B4DD-964ADBC534EE} Infocentre Rev. 2.0-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Infocentre* iolo technologies' System Mechanic-->"C:\Program Files\iolo\System Mechanic\unins000.exe" Java 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} Java SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010} Keyboard FIJI-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *FIJI* LiveUpdate (Symantec Corporation)-->MsiExec.exe /X{E80F62FF-5D3C-4A19-8409-9721F2928206} Markeringviewer (Windows Live Toolbar)-->MsiExec.exe /X{1509FC50-85B6-4F17-8223-423B86BF7FE3} Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 3.5 Language Pack SP1 - nld-->MsiExec.exe /I{101738D7-D805-37A9-BB91-1F2C351782BF} Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Office Professional Editie 2003-->MsiExec.exe /I{90110413-6000-11D3-8CFE-0150048383C9} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} NIS2007-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *NIS2007_NL* Norton AntiVirus Help-->MsiExec.exe /I{E3EFA461-EB83-4C3B-9C47-2C1D58A01555} Norton AntiVirus-->MsiExec.exe /X{77FFBA7E-0973-4F39-BBDB-AC2F537578D2} Norton Confidential Core-->MsiExec.exe /I{55A6283C-638A-4EE0-B491-51118554BDA2} Norton Internet Security Online (Symantec Corporation)-->"C:\Program Files\Common Files\Symantec Shared\SymSetup\{C1C185CA-C531-49F5-A6FA-B838405A049D}_15_0_0_60\Setup.exe" /X Norton Internet Security-->MsiExec.exe /I{C1C185CA-C531-49F5-A6FA-B838405A049D} Norton Protection Center-->MsiExec.exe /I{62120008-8E1E-4807-860D-A8B48F8552DB} OGA Notifier 2.0.0048.0-->MsiExec.exe /I{B2544A03-10D0-4E5E-BA69-0362FFC20D18} OpenOffice.org Installer 1.0-->MsiExec.exe /X{0D499481-22C6-4B25-8AC2-6D3F6C885FB9} Packard Bell - Skype 2.5-->"C:\Program Files\Skype\Phone\unins000.exe" Packard Bell Updator-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Updator* Power Cinema 5-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *PowerCinema5* PowerCinema-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\setup.exe" -uninstall Realtek HD Audio V6.0.1.5322-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *AUDIO_REALTEK* Realtek High Definition Audio Driver-->RtlUpd.exe -r -m Roxio Creator 9 LE-->MsiExec.exe /I{B7FB0C86-41A4-4402-9A33-912C462042A0} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} SetUp My PC-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *SETUPMYPC_NL* Shockwave player 10-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *Shockwave* Skype 2.5.2.151-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *SKYPE* Smart Menu's (Windows Live Toolbar)-->MsiExec.exe /X{DC54F2F8-C26F-4D22-B92D-7075BC626106} SPBBC 32bit-->MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56} Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - nld\setup.exe Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" Video ATI v8.332-->"C:\Program Files\Packard Bell\Smart Restore\SmartRestore.exe" /MSADDREM *VIDEO_RIO* Windows Live - Hulpprogramma voor uploaden-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} Windows Live aanmeldhulp-->MsiExec.exe /I{7E1FBCB0-500C-4A0D-AC9C-B1B76E75666B} Windows Live Favorites voor Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66} Windows Live installer-->MsiExec.exe /X{A258173E-F308-475A-951B-F1BF76A4451B} Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {CE0E8D6F-1F0A-433A-98E1-2096568E968F} Windows Live Toolbar-->MsiExec.exe /X{CE0E8D6F-1F0A-433A-98E1-2096568E968F} ======Security center information====== AV: AVG 7.5.503 AV: Bitdefender Antivirus (disabled) AV: Norton Internet Security Online FW: Norton Internet Security Online FW: Bitdefender Firewall (disabled) AS: BitDefender Antispyware (disabled) AS: Windows Defender AS: Norton Internet Security Online ======System event log====== Computer Name: PC_van_Adam Event Code: 7036 Message: De Network Location Awareness-service heeft nu de status wordt uitgevoerd. Record Number: 218940 Source Name: Service Control Manager Time Written: 20090812065520.000000-000 Event Type: Informatie User: Computer Name: PC_van_Adam Event Code: 7036 Message: De Program Compatibility Assistant-service-service heeft nu de status wordt uitgevoerd. Record Number: 218939 Source Name: Service Control Manager Time Written: 20090812065520.000000-000 Event Type: Informatie User: Computer Name: PC_van_Adam Event Code: 7036 Message: De iolo System Service-service heeft nu de status wordt uitgevoerd. Record Number: 218938 Source Name: Service Control Manager Time Written: 20090812065520.000000-000 Event Type: Informatie User: Computer Name: PC_van_Adam Event Code: 7036 Message: De CyberLink Background Capture Service (CBCS)-service heeft nu de status wordt uitgevoerd. Record Number: 218937 Source Name: Service Control Manager Time Written: 20090812065520.000000-000 Event Type: Informatie User: Computer Name: PC_van_Adam Event Code: 7036 Message: De Hulpservice voor toepassingshost-service heeft nu de status wordt uitgevoerd. Record Number: 218936 Source Name: Service Control Manager Time Written: 20090812065520.000000-000 Event Type: Informatie User: =====Application event log===== Computer Name: PC_van_Adam Event Code: 9009 Message: Beheer van bureaubladvensters is afgesloten met code 0x40010004 Record Number: 59718 Source Name: Desktop Window Manager Time Written: 20081208212417.000000-000 Event Type: Informatie User: Computer Name: PC_van_Adam Event Code: 2 Message: Client van Certificate Services is gestopt. Record Number: 59717 Source Name: Microsoft-Windows-CertificateServicesClient Time Written: 20081208212413.187500-000 Event Type: Informatie User: PC_van_Adam\Adam Computer Name: PC_van_Adam Event Code: 4621 Message: Het COM+-gebeurtenissysteem kan het EventSystem.EventSubscription-object {CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000} niet verwijderen. De HRESULT-waarde is 80070005. Record Number: 59716 Source Name: Microsoft-Windows-EventSystem Time Written: 20081208212415.000000-000 Event Type: Fout User: Computer Name: PC_van_Adam Event Code: 1531 Message: De User Profile-service is gestart. Record Number: 59715 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081208212409.000000-000 Event Type: Informatie User: NT AUTHORITY\SYSTEEM Computer Name: PC_van_Adam Event Code: 37 Message: De service 'ccAppPlgMgr_4292' is gestopt. Record Number: 59714 Source Name: ccSvcHst Time Written: 20081208212405.000000-000 Event Type: Informatie User: PC_van_Adam\Adam =====Security event log===== Computer Name: PC_van_Adam Event Code: 5056 Message: Er is een cryptografische zelftest uitgevoerd. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_ADAM$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Module: ncrypt.dll Retourcode: 0x0 Record Number: 43133 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20081202074736.578125-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Adam Event Code: 4672 Message: Speciale bevoegdheden toegewezen aan nieuwe aanmelding. Onderwerp: Beveiligings-id: S-1-5-21-216792940-3336545758-4142019623-1002 Accountnaam: Adam Accountdomein: PC_van_Adam Aanmeldings-id: 0x1f11e Bevoegdheden: SeSecurityPrivilege SeTakeOwnershipPrivilege SeLoadDriverPrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeSystemEnvironmentPrivilege SeImpersonatePrivilege Record Number: 43132 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20081202074736.546875-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Adam Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_ADAM$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldingstype: 2 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-216792940-3336545758-4142019623-1002 Accountnaam: Adam Accountdomein: PC_van_Adam Aanmeldings-id: 0x1f1c8 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x2d0 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: PC_VAN_ADAM Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 43131 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20081202074736.546875-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Adam Event Code: 4624 Message: Er is een account aangemeld. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_ADAM$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldingstype: 2 Nieuwe aanmelding: Beveiligings-id: S-1-5-21-216792940-3336545758-4142019623-1002 Accountnaam: Adam Accountdomein: PC_van_Adam Aanmeldings-id: 0x1f11e Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Procesgegevens: Proces-id: 0x2d0 Naam proces: C:\Windows\System32\winlogon.exe Netwerkgegevens: Naam van werkstation: PC_VAN_ADAM Netwerkadres van bron: 127.0.0.1 Poort van bron: 0 Gedetailleerde verificatiegegevens: Aanmeldingsproces: User32 Verificatiepakket: Negotiate Doorgezette services: - Pakketnaam (alleen NTLM): - Sleutellengte: 0 Deze gebeurtenis wordt gegenereerd wanneer een aanmeldingssessie wordt gemaakt. De gebeurtenis wordt gegenereerd op de computer waartoe toegang wordt verkregen. De velden Onderwerp bevatten de account op het lokale systeem waardoor de aanmelding is aangevraagd. Dit is meestal een service zoals de Server-service, of een lokaal proces zoals Winlogon.exe of Services.exe. In het veld Aanmeldingstype ziet u het type aanmelding. De meest algemene typen zijn 2 (interactief) en 3 (netwerk). Het veld Nieuwe aanmelding bevat de account waarvoor de nieuwe aanmelding is gemaakt. Dit is de account waarmee is aangemeld. In de netwerkvelden ziet u de bron van een externe aanmeldingsaanvraag. Naam van werkstation is niet altijd beschikbaar en kan in sommige gevallen leeg zijn. De velden met verificatiegegevens bevatten gedetailleerde informatie over deze aanmeldingsaanvraag. - Aanmeldings-GUID is een unieke id die kan worden gebruikt om deze gebeurtenis af te stemmen met een KDC-gebeurtenis. - In Doorgezette services ziet u welke tussentijdse services voor deze aanmeldingsaanvraag zijn gebruikt. - Pakketnaam geeft aan welk subprotocol van de NTLM-protocollen is gebruikt. - Sleutellengte geeft de lengte van de gegenereerde sessiesleutel aan. Dit veld is 0 als er geen sessiesleutel is aangevraagd. Record Number: 43130 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20081202074736.546875-000 Event Type: Controle geslaagd User: Computer Name: PC_van_Adam Event Code: 4648 Message: Poging tot aanmelden met expliciete referenties. Onderwerp: Beveiligings-id: S-1-5-18 Accountnaam: PC_VAN_ADAM$ Accountdomein: WORKGROUP Aanmeldings-id: 0x3e7 Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Account waarvan de referenties zijn gebruikt: Accountnaam: Adam Accountdomein: PC_van_Adam Aanmeldings-GUID: {00000000-0000-0000-0000-000000000000} Doelserver: Naam van doelserver: localhost Aanvullende gegevens: localhost Procesgegevens: Proces-id: 0x2d0 Procesnaam: C:\Windows\System32\winlogon.exe Netwerkgegevens: Netwerkadres: 127.0.0.1 Poort: 0 Deze gebeurtenis wordt gegenereerd wanneer een proces probeert zich op een account aan te melden door expliciet de referenties van die account op te geven. Meestal gebeurt dit in batchconfiguraties zoals geplande taken, of bij gebruik van de opdracht Uitvoeren als. Record Number: 43129 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20081202074736.546875-000 Event Type: Controle geslaagd User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC "PROCESSOR_ARCHITECTURE"=x86 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "USERNAME"=SYSTEM "windir"=%SystemRoot% "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 2, GenuineIntel "PROCESSOR_REVISION"=0f02 "NUMBER_OF_PROCESSORS"=2 "RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\ -----------------EOF-----------------

Oeps, die twee bestanden zijn wel een hele boterham. Mag ik dat allemaal doorsturen?

Het gaat niet helemaal zoals voorzien. Vooreerst opent het programma niet vanzelf, dan krijg ik HJTInstall.exe ook al niet, en als ik via Main Menue klik kom ik bij “ Do a systemscan and safe logfile” maar als ik dit aanklik verschijnt er een half kladblokvenster en een tweede “naamloos kladblok” Dan krijg ik er bovenop een Engelstalige verklaring; dat ik inderdaad rechts moet klikken op etc etc. Maar ik kan niet rechts klikken op iets wat er niet staat???

Mijn machientje draait onder Vista Home Basic, type 32 bits, process. 1.60GHz, Ram 1,00 GB. In Hotmail kreeg ik onlangs een Engelstalig reclame mailtje met enkel adressen waar men elektronische apparatuur kan aankopen. Bij mijn weten heb ik die mail niet geopend, ik doe dat nooit met Engelstalige mails waarvan ik de afkomst niet ken. Maar sedertdien opent die mail telkens weer als ik een ‘nieuw’ bericht aanklik. Soms kan ik hem verwijderen door rechts te klikken en te verwijderen, maar af en toe lukt dat niet. Ik ben nu toevallig wel een kluns op gebied van computers, maar een mail verwijderen is normaal toch kinderspel? Die mail laat zich dus op geen enkele wijze verwijderen, en als ik niet oplet wordt hij mee verstuurd met mijn bericht. Nu dacht ik, zou dat een virus kunnen zijn? Mijn Norton registreert geen virussen. Weet iemand raad?

hoi hoi, die Wireless N ADSL2/2 router (DSL-2740B) kan men ook gewoon aanschaffen in de kleinhandel? En waarschijnlijk zal aan mijn volume of wat dan ook niks veranderen?

Beiden hartelijk bedankt. Ik houd het nog even in beraad.

Mijn pc draait onder Vista, ben echter van zin om een laptop aan te schaffen. Nu ben ik dat gedoe met warrige draden zo beu dat ik graag had gehoord of er een mogelijkheid bestaat volledig draadloos te internetten? Ik zou wel graag klant blijven bij Belgacom (ADSL) Kan iemand mij vertellen welke onderdelen ik eventueel moet aanschaffen?

Toen ik mijn pc had aangeschaft stond Google Nederland automatisch op het scherm. Hoe kan ik dat veranderen in Google België?

Voor bepaalde sites is een URL vereist voor het plaatsen van een foto. Hoe kom ik aan een URL, waar ergens op het Internet moet je die foto eerst plaatsen?

Als groentje probeerde ik voor het eerst met Nero een audio cd te kopiëren. Een eerder opgenomen mp3 cd. Wat ik gedaan heb weet ik niet, maar de muziekbestanden staan op mijn pc bij “muziek” (Vista) maar op de originele cd staat niks meer, komt dus geen geluid meer uit. En bij de muziekbestanden op mijn pc staat er opeens mp 4, maar ook die bestanden willen niet afspelen.

Mijn USB poort werkte niet. Alles in orde nu. Toch bedankt.

Mijn nieuwe laptop draait onder Vista Home basic. Nu ik mijn vroegere Printer wil aansluiten lukt alles vrij goed tot ik wil afdrukken, dan verteld hij mij telkens dat er een communicatieprobleem is. Ik heb al urenlang drivers zitten downloaden, maar het lost mijn probleem niet op. Weet iemand raad?