xp loopt steeds vast

koot

29-12-2012 14:31

goeden middag.
Ben al een poosje bezig met zoeken, maar mijn
computer loopt regelmatig vast, vooral met scan programma`s
zoals Defraggler, Eset online virusscanner, Wise register cleaner,
ook in veilige modus, misschien vinden jullie iets mijn logjes.
b.v. hartelijk dank.
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Databaseversie: v2012.12.29.06
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Evert :: EVK-YAA9A9SPSSM
29-12-2012 13:57:21
mbam-log-2012-12-29 (13-57-21).txt
Scan type: Snelle scan
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 321074
Verstreken tijd: 15 minuut/minuten, 38 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:20:52, on 29-12-2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\AutoSizer\AutoSizer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\System32\msiexec.exe
C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: Increase performance and video formats for your HTML5 - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: “c:\Program Files\Microsoft Security Client\msseces.exe” -hide -runkey
O4 - HKCU\..\Run: “C:\Program Files\AutoSizer\AutoSizer.exe”
O4 - HKCU\..\Run: C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Lokale service’)
O4 - HKUS\S-1-5-20\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Netwerkservice’)
O4 - HKUS\S-1-5-18\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Default user’)
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} - http://82.95.92.5:50000/SysCamInst.cab
O16 - DPF: {304171C0-65EA-4B51-B5D9-93A311E26EB1} - http://195.24.42.68/cgi-bin/MxPEG_ActiveX.cab?dummy=1996565
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {511E58D4-DA5A-4B4B-A997-6F62DF424BC4} (VideoViewer1 Class) - http://www.stgv.nl/WebCam/VideoViewerAx1.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1343896225333
O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) - http://81.241.244.131/activex/AMC.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - http://217.197.157.7:7070/activex/AxisCamControl.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - http://ax.emsisoft.com/asquared.cab
O16 - DPF: {C111A91F-D4EC-4D22-8D27-C3BCB0389F43} (AudioHandlerEmbedded) - http://79.171.208.41/activex/AMC.cab
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - http://imikimi.com/download/imikimi_plugin_0.5.1.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://217.123.26.196/activex/AMC.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {EAC139A9-D22D-4C29-8D1C-252BE63750F9} - http://www.cooliris.com/shared/plinstll.cab
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
–
End of file - 7098 bytes
Ben

29-12-2012 14:59

Hallo,
Welke ActiveX componenten heb je bewust geïnstalleerd in je browser en welke herken je niet?
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} -
O16 - DPF: {304171C0-65EA-4B51-B5D9-93A311E26EB1} -
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} -
O16 - DPF: {511E58D4-DA5A-4B4B-A997-6F62DF424BC4} (VideoViewer1 Class) -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) -
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) -
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} -
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} -
O16 - DPF: {C111A91F-D4EC-4D22-8D27-C3BCB0389F43} (AudioHandlerEmbedded) -
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} -
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) -
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -
O16 - DPF: {EAC139A9-D22D-4C29-8D1C-252BE63750F9} -
Gr.Ben
koot

29-12-2012 15:09

Hallo Ben.
Als ik je goed begrijp kan ik deze allemaal verwijderen ?
want deze regels zeggen mij niets.
Gr. Koot.
Ben

29-12-2012 15:22

Hallo,
Start HijackThis en kies voor “Do a systemscan only”.
Vink vervolgens enkel deze onderstaande regels aan:
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} -
O16 - DPF: {304171C0-65EA-4B51-B5D9-93A311E26EB1} -
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} -
O16 - DPF: {511E58D4-DA5A-4B4B-A997-6F62DF424BC4} (VideoViewer1 Class) -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} (AxisMediaControl Class) -
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) -
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} -
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} -
O16 - DPF: {C111A91F-D4EC-4D22-8D27-C3BCB0389F43} (AudioHandlerEmbedded) -
O16 - DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} -
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) -
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -
O16 - DPF: {EAC139A9-D22D-4C29-8D1C-252BE63750F9} -
Sluit vervolgens alle vensters, behalve HijackThis. Klik daarna op “Fix checked”.
Wanneer je een vraag krijgt of je het zeker weet, bevestig deze dan met "Ja".
Herstart je pc.
Download DDS van sUBS van één van deze locaties en plaats het op je bureaublad:
DDS - Bleeping Computer download.
DDS - Bleeping Computer download.
DDS - Infospyware.
DDS is een diagnosetool en maakt gebruik van scripts.
Schakel je beveiligings software uit voordat je DDS uitvoert!
(hier of hier) kan je lezen hoe je dat doet.
Dubbelklik op DDS om de tool te starten.
Er worden nu automatisch twee log bestanden op het bureablad opgeslagen.
DDS.txt
Attach.txt (Plaats deze alleen indien hierom wordt gevraagd!)
Post het DDS.txt in het volgende bericht.
Gr.Ben
koot

29-12-2012 17:31

Hoi Ben
Hier het logje.
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.10.2
Run by Evert at 17:26:59 on 2012-12-29
Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.511.137
.
AV: AVG Anti-Virus Free *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ================
.
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\AutoSizer\AutoSizer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} -
BHO: DivX Plus Web Player HTML5 : {326E768D-4182-46FD-9C16-1449A49795F4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Aanmelden - Help: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - c:\program files\windows live\toolbar\wltcore.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} -
uRun: “c:\program files\autosizer\AutoSizer.exe”
uRun: c:\windows\system32\ctfmon.exe
mRun: “c:\program files\microsoft security client\msseces.exe” -hide -runkey
dRun: c:\windows\system32\CTFMON.EXE
dRun: “c:\progra~1\common~1\micros~1\dw\dwtrig20.exe” -t
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the ‘Force scan all domains’ option.
.
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/templates/ieawsdc.cab
TCP: NameServer = 62.179.104.196 213.46.228.196
TCP: Interfaces\{0195E7BD-B3B6-4E21-BE65-8D182A4B9463} : DHCPNameServer = 62.179.104.196 213.46.228.196
AppInit_DLLs=
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
============= SERVICES / DRIVERS ===============
.
R0 BTOWSVF;BTOWSVF;c:\windows\system32\drivers\BTOWSVF.sys
R0 KSafeDISK;KSafeDISK;c:\windows\system32\drivers\KSafeDISK.sys
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys
R1 BTOWSFF;BTOWSFF;c:\windows\system32\drivers\BTOWSFF.sys
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys
R2 ousbehci;OrangeWare USB Enhanced Host Controller Service;c:\windows\system32\drivers\ousbehci.sys
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\sony\pmb\PMBDeviceInfoProvider.exe
R3 ousb2hub;OrangeWare USB 2.0 Root Hub Support;c:\windows\system32\drivers\ousb2hub.sys
S0 wprnznu;wprnznu;c:\windows\system32\drivers\aktl.sys –> c:\windows\system32\drivers\aktl.sys
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
S3 fsssvc;Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe
S3 iteio;iteio;\??\c:\windows\system32\drivers\iteio.sys –> c:\windows\system32\drivers\iteio.sys
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe
.
=============== File Associations ===============
.
ShellExec: Foxit Reader.exe: print=“c:\program files\foxit software\foxit reader\Foxit Reader.exe”/p “%1”
ShellExec: Foxit Reader.exe: printto=“c:\program files\foxit software\foxit reader\Foxit Reader.exe”/t “%1” “%2” “%3” “%4”
.
=============== Created Last 30 ================
.
2012-12-29 13:49:48 ——– d—–w- c:\documents and settings\evert\application data\QuickScan
2012-12-29 13:18:47 388096 —-a-r- c:\documents and settings\evert\application data\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2012-12-28 18:24:56 216064 —-a-w- c:\windows\system32\lagarith.dll
2012-12-28 18:24:55 650752 —-a-w- c:\windows\system32\xvidcore.dll
2012-12-28 18:24:55 243200 —-a-w- c:\windows\system32\xvidvfw.dll
2012-12-28 18:24:49 151552 —-a-w- c:\windows\system32\ac3acm.acm
2012-12-28 18:24:36 112640 —-a-w- c:\windows\system32\ff_vfw.dll
2012-12-28 18:09:52 60872 —-a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{6da5a431-3191-47e2-8a4c-79f5896e5447}\offreg.dll
2012-12-28 18:05:33 6812136 —-a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{6da5a431-3191-47e2-8a4c-79f5896e5447}\mpengine.dll
2012-12-27 19:12:10 ——– d–h–r- c:\documents and settings\evert\Onlangs geopend
2012-12-27 18:44:49 143872 —-a-w- c:\windows\system32\javacpl.cpl
2012-12-27 18:44:39 93640 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-12-27 18:27:06 ——– d—–w- c:\documents and settings\evert\application data\DDMSettings
2012-12-27 17:30:25 6812136 —-a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2012-12-20 19:28:56 ——– d—–w- c:\program files\Defraggler
2012-12-20 19:17:17 ——– d—–w- c:\documents and settings\evert\application data\Wise Registry Cleaner
2012-12-20 19:06:33 ——– d—–w- c:\program files\Free Window Registry Repair
2012-12-20 18:49:23 ——– d—–w- c:\documents and settings\evert\local settings\application data\Wajam
2012-12-20 18:31:48 ——– d—–w- c:\documents and settings\evert\application data\ElevatedDiagnostics
2012-12-20 18:13:07 ——– d—–w- c:\documents and settings\evert\application data\DriverCure
2012-12-20 18:13:06 ——– d—–w- c:\documents and settings\evert\application data\ParetoLogic
2012-12-20 18:12:37 ——– d—–w- c:\documents and settings\all users.windows\application data\ParetoLogic
2012-12-20 17:06:13 ——– d—–w- c:\documents and settings\evert\local settings\application data\ToolwizPrettyPhoto
2012-12-20 14:03:17 48192 —-a-w- c:\windows\system32\drivers\KSafeDISK.sys
2012-12-20 14:03:16 27200 —-a-w- c:\windows\system32\drivers\BTOWSFF.sys
2012-12-20 14:03:16 ——– dc-h–w- C:\TOOLWIZ
2012-12-20 14:03:15 43584 —-a-w- c:\windows\system32\drivers\BTOWSVF.sys
2012-12-20 14:02:51 ——– d—–w- c:\documents and settings\evert\local settings\application data\ToolwizCareFree
2012-12-20 14:02:39 ——– d—–w- c:\program files\ToolwizCareFree
2012-12-18 15:01:02 9472 -c–a-w- c:\windows\system32\dllcache\ntapm.sys
2012-12-18 15:01:02 7552 -c–a-w- c:\windows\system32\dllcache\nsmmc.sys
2012-12-18 15:01:00 28672 -c–a-w- c:\windows\system32\dllcache\nscirda.sys
2012-12-18 14:59:51 35200 -c–a-w- c:\windows\system32\dllcache\msgame.sys
2012-12-18 14:58:58 70730 -c–a-w- c:\windows\system32\dllcache\lne100tx.sys
2012-12-18 14:57:41 372824 -c–a-w- c:\windows\system32\dllcache\iconf32.dll
2012-12-18 14:56:59 31232 -c–a-w- c:\windows\system32\dllcache\hpgt42tk.dll
2012-12-18 14:55:39 24618 -c–a-w- c:\windows\system32\dllcache\fa410nd5.sys
2012-12-18 14:54:59 51743 -c–a-w- c:\windows\system32\dllcache\e1000nt5.sys
2012-12-18 14:53:59 93952 -c–a-w- c:\windows\system32\dllcache\cwcwdm.sys
2012-12-18 14:52:41 13952 -c–a-w- c:\windows\system32\dllcache\bulltlp3.sys
2012-12-18 14:51:58 281728 -c–a-w- c:\windows\system32\dllcache\atimtai.sys
2012-12-18 14:41:16 46112 -c–a-w- c:\windows\system32\dllcache\adptsf50.sys
2012-12-18 14:40:24 66048 -c–a-w- c:\windows\system32\dllcache\s3legacy.dll
2012-12-18 10:36:18 ——– d—–w- C:\fa57e7eccd8409ec5b1aab
2012-12-17 12:03:06 ——– d—–w- c:\documents and settings\evert\application data\Mp3jam
2012-12-17 10:05:38 ——– d—–w- C:\d848a3af20375e435d
2012-12-17 10:05:29 ——– d—–w- c:\program files\MP3jam
2012-12-13 17:02:03 ——– d—–w- c:\documents and settings\evert\AppData
2012-12-13 17:02:02 ——– d—–w- c:\documents and settings\evert\application data\imeshbandmltbpi
2012-12-13 13:47:20 ——– d—–w- c:\documents and settings\evert\downloads
2012-12-13 11:14:09 ——– d—–w- c:\documents and settings\evert\local settings\application data\PackageAware
2012-12-12 13:11:58 ——– d—–w- c:\program files\common files\PC Tools
2012-12-12 13:11:52 ——– d—–w- c:\program files\PC Tools Registry Mechanic
2012-12-12 13:11:45 ——– d—–w- c:\documents and settings\evert\.frostwire5
2012-12-12 13:02:42 ——– d—–w- c:\program files\Eusing Free Registry Cleaner
2012-12-12 12:26:14 ——– d—–w- c:\documents and settings\all users.windows\application data\AVS4YOU
2012-12-12 12:26:03 ——– d—–w- c:\documents and settings\evert\application data\AVS4YOU
2012-12-12 12:24:37 24576 —-a-w- c:\windows\system32\msxml3a.dll
2012-12-12 12:24:37 ——– d—–w- c:\program files\common files\AVSMedia
2012-12-10 20:53:25 ——– d—–w- c:\windows\system32\wbem\repository\FS
2012-12-10 20:53:25 ——– d—–w- c:\windows\system32\wbem\Repository
2012-12-10 20:17:46 ——– d—–w- c:\documents and settings\evert\application data\Wise Disk Cleaner
2012-12-10 20:17:11 ——– d—–w- c:\program files\Wise
2012-12-10 18:24:07 ——– d-sh–w- C:\found.001
.
==================== Find3M ====================
.
2012-12-27 18:44:11 859072 —-a-w- c:\windows\system32\npdeployJava1.dll
2012-12-27 18:44:10 779704 —-a-w- c:\windows\system32\deployJava1.dll
2012-12-16 12:23:59 290560 —-a-w- c:\windows\system32\atmfd.dll
2012-12-14 15:49:28 21104 —-a-w- c:\windows\system32\drivers\mbam.sys
2012-11-13 11:55:15 1866496 —-a-w- c:\windows\system32\win32k.sys
2012-11-02 02:03:57 375296 —-a-w- c:\windows\system32\dpnet.dll
2012-11-01 12:12:55 916992 —-a-w- c:\windows\system32\wininet.dll
2012-11-01 12:12:55 43520 —-a-w- c:\windows\system32\licmgr10.dll
2012-11-01 12:12:55 1469440 ——w- c:\windows\system32\inetcpl.cpl
2012-11-01 00:35:48 385024 —-a-w- c:\windows\system32\html.iec
2012-10-25 02:12:26 94208 —-a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 02:12:26 69632 —-a-w- c:\windows\system32\QuickTime.qts
2012-10-02 18:04:35 58368 —-a-w- c:\windows\system32\synceng.dll
2008-03-05 15:30:18 97288 -c–a-w- c:\program files\DSETUP.dll
2008-03-05 15:30:18 527880 -c–a-w- c:\program files\DXSETUP.exe
2008-03-05 15:30:18 1694728 -c–a-w- c:\program files\dsetup32.dll
2007-01-25 02:52:26 65536 -c–a-w- c:\program files\common files\NMSAccessU.exe
.
============= FINISH: 17:27:58,91 ===============
Ben

29-12-2012 17:45

Hallo,
“zoek.exe” gebruiken
Schakel je antivirus- en antispywareprogramma's uit, zoek.exe wordt tijdens het downloaden of tijdens gebruik soms als trojan aangezien.
(hier of hier) kan je lezen hoe je dat doet.
Download daarna zoek.exe naar het bureaublad.
Windows 2000 en Windows XP: start de tool middels dubbelklik op “zoek.exe”.
Windows Vista en Windows 7: start de tool middels rechtsklik op “zoek.exe” en dan kiezen voor Als Administrator uitvoeren.
Vervolgens zal er na een tijdje een venster geopend worden.
Met je muis selecteer je nu de volgende keuze "Combined fix"(rechts onderaan)
Kopieer nu onderstaande Vet gedrukte en plak die in het grote invulvenster:
autoclean;
filesrcm;
c:\documents and settings\evert\local settings\application data\Wajam;fs
C:\found.001;fs
C:\d848a3af20375e435d;vs
chromelook;
firefoxlook;
startupall;
Sluit nu eerst alle nog openstaande programmavensters!
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent(dit kan na een herstart zijn)
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post nu de inhoud van het geopende logje in het volgende bericht en vertel hoe het nu gaat.
Gr.Ben
koot

29-12-2012 19:17

Moet nog kijken hoe het nu gaat.
hier het logje.
Bedankt voor het geduld.
Zoek.exe Version 3.0.0.4 Updated 27-12-2012
Tool run by Evert on za 29-12-2012 at 19:03:56,88.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\SearchScopes\{2EA6EA49-BA7E-4297-A944-57FDDF396EF8} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE5D279F-081B-4404-994D-C6B60AAEBA6D} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE5D279F-081B-4404-994D-C6B60AAEBA6D} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{A057A204-BACC-4D26-9990-79A187E2698E} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{EE5D279F-081B-4404-994D-C6B60AAEBA6D} deleted successfully
HKEY_USERS\S-1-5-21-1390067357-2111687655-1343024091-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
==== Deleting Files \ Folders ======================
“c:\documents and settings\evert\local settings\application data\Wajam” deleted
“C:\found.001” deleted
==== Folders Found In C:\d848a3af20375e435d ======================
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1025
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1029
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1030
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1031
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1032
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1033
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\1035
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\2052
2012-12-17 10:05:39 d—–w- C:\d848a3af20375e435d\Graphics
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1028
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1036
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1037
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1038
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1040
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1041
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1042
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1043
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1044
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1045
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1046
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1049
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1053
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\1055
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\2070
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\3076
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\3082
2012-12-17 10:05:40 d—–w- C:\d848a3af20375e435d\Client
==== Files Found In C:\d848a3af20375e435d ======================
2009-08-31 10:41:00 104072 -c—-w- B0075CEE80173D764C0237E840BA5879 C:\d848a3af20375e435d\watermark.bmp
2009-08-31 10:41:00 3628 -c—-w- 514BFCD8DA66722A9639EB41ED3988B7 C:\d848a3af20375e435d\header.bmp
2009-08-31 10:44:56 144416 ——w- 3F0363B40376047EFF6A9B97D633B750 C:\d848a3af20375e435d\sqmapi.dll
2009-08-31 10:49:38 16118 -c—-w- CD131D41791A543CC6F6ED1EA5BD257C C:\d848a3af20375e435d\DHtmlHeader.html
2009-08-31 10:49:40 10134 -c—-w- B2B1D79591FCA103959806A4BF27D036 C:\d848a3af20375e435d\Graphics\warn.ico
2009-08-31 10:49:40 1150 -c—-w- 661CBD315E9B23BA1CA19EDAB978F478 C:\d848a3af20375e435d\Graphics\SysReqMet.ico
2009-08-31 10:49:40 1150 -c—-w- 7D62E82D960A938C98DA02B1D5201BD5 C:\d848a3af20375e435d\Graphics\Save.ico
2009-08-31 10:49:40 1150 -c—-w- 7E55DDC6D611176E697D01C90A1212CF C:\d848a3af20375e435d\Graphics\Print.ico
2009-08-31 10:49:40 1150 -c—-w- EE2C05CC9D14C29F586D40EB90C610A9 C:\d848a3af20375e435d\Graphics\SysReqNotMet.ico
2009-08-31 10:49:40 36710 -c—-w- 3D25D679E0FF0B8C94273DCD8B07049D C:\d848a3af20375e435d\Graphics\Setup.ico
2009-08-31 10:49:40 894 -c—-w- 26A00597735C5F504CF8B3E7E9A7A4C1 C:\d848a3af20375e435d\Graphics\Rotate1.ico
2009-08-31 10:49:40 894 -c—-w- 3B4861F93B465D724C60670B64FCCFCF C:\d848a3af20375e435d\Graphics\Rotate5.ico
2009-08-31 10:49:40 894 -c—-w- 70006BF18A39D258012875AEFB92A3D1 C:\d848a3af20375e435d\Graphics\Rotate6.ico
2009-08-31 10:49:40 894 -c—-w- 8419CAA81F2377E09B7F2F6218E505AE C:\d848a3af20375e435d\Graphics\Rotate2.ico
2009-08-31 10:49:40 894 -c—-w- 924FD539523541D42DAD43290E6C0DB5 C:\d848a3af20375e435d\Graphics\Rotate3.ico
2009-08-31 10:49:40 894 -c—-w- BB55B5086A9DA3097FB216C065D15709 C:\d848a3af20375e435d\Graphics\Rotate4.ico
2009-08-31 10:49:40 894 -c—-w- D1C53003264DCE4EFFAF462C807E2D96 C:\d848a3af20375e435d\Graphics\Rotate8.ico
2009-08-31 10:49:40 894 -c—-w- FB4DFEBE83F554FAF1A5CEC033A804D9 C:\d848a3af20375e435d\Graphics\Rotate7.ico
2009-08-31 10:50:08 14084 ——w- 8A28B474F4849BEE7354BA4C74087CEA C:\d848a3af20375e435d\Strings.xml
2009-08-31 10:50:08 41080 -c—-w- 0966FCD5A4AB0DDF71F46C01EFF3CDD5 C:\d848a3af20375e435d\SplashScreen.bmp
2009-08-31 10:50:08 88533 -c—-w- F9657D290048E169FFABBBB9C7412BE0 C:\d848a3af20375e435d\DisplayIcon.ico
2009-11-05 06:41:36 30120 ——w- 2FADD9E618EFF8175F2A6E8B95C0CACC C:\d848a3af20375e435d\SetupUi.xsd
2009-11-05 06:41:40 39042 ——w- D7A2E90DD9DF6F93FD4B7354F8EC2B0D C:\d848a3af20375e435d\UiInfo.xml
2009-11-05 06:41:40 39042 -c—-w- D7A2E90DD9DF6F93FD4B7354F8EC2B0D C:\d848a3af20375e435d\Client\UiInfo.xml
2010-01-11 05:10:14 10134 -c—-w- 5DFA8D3ABCF4962D9EC41CFC7C0F75E3 C:\d848a3af20375e435d\Graphics\stop.ico
2010-03-04 03:07:36 3188 -c—-w- B7129C4881F118FCB38F27CFB00CD36D C:\d848a3af20375e435d\1033\eula.rtf
2010-03-11 04:29:18 10125 -c—-w- 75CE7D721BDB78F1020ACF2B206B1859 C:\d848a3af20375e435d\1041\eula.rtf
2010-03-11 04:29:18 12687 -c—-w- A3B318528E286EC387E81934E5D3B081 C:\d848a3af20375e435d\1042\eula.rtf
2010-03-11 04:29:18 3046 -c—-w- 830EBCED0F03F267EEE7A5167C4E91A4 C:\d848a3af20375e435d\1044\eula.rtf
2010-03-11 04:29:18 3069 -c—-w- D40C65F632063E5CDFEF104E324D0AD4 C:\d848a3af20375e435d\3082\eula.rtf
2010-03-11 04:29:18 3314 -c—-w- B756C9B475E1E5955D8BF1544DF556F7 C:\d848a3af20375e435d\1030\eula.rtf
2010-03-11 04:29:18 3419 -c—-w- 94190970FB79C7085DE2E97AE4630B07 C:\d848a3af20375e435d\1031\eula.rtf
2010-03-11 04:29:18 3526 -c—-w- E0DA85DB8B02A89A63601EA6B9AD7FF8 C:\d848a3af20375e435d\1036\eula.rtf
2010-03-11 04:29:18 3546 ——w- 305AE79EC7D0E8D1F826D70D7D469BB4 C:\d848a3af20375e435d\1043\eula.rtf
2010-03-11 04:29:18 3643 -c—-w- 6C9C19BFED724146512493F05CBA4F0F C:\d848a3af20375e435d\1040\eula.rtf
2010-03-11 04:29:18 3683 -c—-w- E43708161843A33D34D6FDF966D36397 C:\d848a3af20375e435d\1046\eula.rtf
2010-03-11 04:29:18 3702 -c—-w- 4A43D21D1576E040DC9F5B90162A0401 C:\d848a3af20375e435d\1035\eula.rtf
2010-03-11 04:29:18 3726 -c—-w- B02C48825414EDCA106C92182D32BC8A C:\d848a3af20375e435d\1029\eula.rtf
2010-03-11 04:29:18 3859 -c—-w- D71A0D5B6CB13901CD35C036D395BE59 C:\d848a3af20375e435d\1055\eula.rtf
2010-03-11 04:29:18 3865 -c—-w- E2F73097FC60F5347BAD1C1E93B2941B C:\d848a3af20375e435d\1053\eula.rtf
2010-03-11 04:29:18 4015 -c—-w- 4518BE9A9BCA5BE1D8AC926A4B2C087D C:\d848a3af20375e435d\2070\eula.rtf
2010-03-11 04:29:18 4040 -c—-w- BB93B108D4BE954133380F7709E7BA1E C:\d848a3af20375e435d\1045\eula.rtf
2010-03-11 04:29:18 4254 -c—-w- 58E6E6D6258994D6A08C6101F11F302D C:\d848a3af20375e435d\1038\eula.rtf
2010-03-11 04:29:18 54456 -c—-w- 2277852A45DA18B12BEEC5FB6F08CDC9 C:\d848a3af20375e435d\1049\eula.rtf
2010-03-11 04:29:18 5827 -c—-w- 4288C2541843F75C348D825FC8B94153 C:\d848a3af20375e435d\2052\eula.rtf
2010-03-11 04:29:18 6309 -c—-w- 6F2F198B6D2F11C0CBCE4541900BF75C C:\d848a3af20375e435d\1028\eula.rtf
2010-03-11 04:29:18 6309 -c—-w- 6F2F198B6D2F11C0CBCE4541900BF75C C:\d848a3af20375e435d\3076\eula.rtf
2010-03-11 04:29:18 6851 -c—-w- 74C015D4E8024F9A49CF8D183CBDB0F5 C:\d848a3af20375e435d\1037\eula.rtf
2010-03-11 04:29:18 7567 -c—-w- AF1A4F6740A8B51683DFD89D520EB729 C:\d848a3af20375e435d\1025\eula.rtf
2010-03-11 04:29:18 8876 -c—-w- 2091F5DA2BF884F747103A31D2DC947B C:\d848a3af20375e435d\1032\eula.rtf
2010-03-18 19:56:04 77232 ——w- 326518603D85ACD79A6258886FC85456 C:\d848a3af20375e435d\1033\LocalizedData.xml
2010-03-18 19:56:08 201796 ——w- EB9D318BBEA1F384A78EDE1D1051F47D C:\d848a3af20375e435d\Parameterinfo.xml
2010-03-18 19:56:08 201796 -c—-w- EB9D318BBEA1F384A78EDE1D1051F47D C:\d848a3af20375e435d\Client\ParameterInfo.xml
2010-03-18 19:58:36 96088 -c—-w- 8DFBB95989AF28058C7431704CE7CD66 C:\d848a3af20375e435d\SetupUtility.exe
2010-03-18 20:00:26 60684 ——w- 10DA125EEABCBB45E0A272688B0E2151 C:\d848a3af20375e435d\2052\LocalizedData.xml
2010-03-18 20:00:26 60816 ——w- 967A6D769D849C5ED66D6F46B0B9C5A4 C:\d848a3af20375e435d\1028\LocalizedData.xml
2010-03-18 20:00:26 60816 ——w- 967A6D769D849C5ED66D6F46B0B9C5A4 C:\d848a3af20375e435d\3076\LocalizedData.xml
2010-03-18 20:00:26 65238 ——w- 78C16DA54542C9ED8FA32FED3EFAF10D C:\d848a3af20375e435d\1042\LocalizedData.xml
2010-03-18 20:00:26 68226 ——w- 64FFA6FF8866A15AFF326F11A892BEAD C:\d848a3af20375e435d\1041\LocalizedData.xml
2010-03-18 20:00:26 72076 ——w- 16E6416756C1829238EF1814EBF48AD6 C:\d848a3af20375e435d\1037\LocalizedData.xml
2010-03-18 20:00:26 74214 ——w- C5BF74C96A711B3F7004CA6BDDECC491 C:\d848a3af20375e435d\1025\LocalizedData.xml
2010-03-18 20:00:26 76818 ——w- 65E771FED28B924942A10452BBBF5C42 C:\d848a3af20375e435d\1055\LocalizedData.xml
2010-03-18 20:00:26 77022 ——w- 1AA252256C895B806E4E55F3EA8D5FFB C:\d848a3af20375e435d\1035\LocalizedData.xml
2010-03-18 20:00:26 77680 ——w- B3B1A89458BEC6AF82C5386D26639B59 C:\d848a3af20375e435d\1053\LocalizedData.xml
2010-03-18 20:00:26 77748 ——w- 69925E463A6FEDCE8C8E1B68404502FB C:\d848a3af20375e435d\1030\LocalizedData.xml
2010-03-18 20:00:26 79296 ——w- 120104FA24709C2A9D8EFC84FF0786CD C:\d848a3af20375e435d\1044\LocalizedData.xml
2010-03-18 20:00:26 79634 ——w- 6506B4E64EBF6121997FA227E762589F C:\d848a3af20375e435d\1043\LocalizedData.xml
2010-03-18 20:00:26 79996 ——w- 2D54FE70376DB0218E8970B28C1C4518 C:\d848a3af20375e435d\3082\LocalizedData.xml
2010-03-18 20:00:26 80060 ——w- EDA1EC689D45C7FAA97DA4171B1B7493 C:\d848a3af20375e435d\1040\LocalizedData.xml
2010-03-18 20:00:26 80254 ——w- 7FA9926A4BC678E32E5D676C39F8FB97 C:\d848a3af20375e435d\2070\LocalizedData.xml
2010-03-18 20:00:26 80738 ——w- A03D2063D388FC7A1B4C36D85EFA5A1A C:\d848a3af20375e435d\1046\LocalizedData.xml
2010-03-18 20:00:26 80970 ——w- 0B6ED582EB557573E959E37EBE2FCA6A C:\d848a3af20375e435d\1029\LocalizedData.xml
2010-03-18 20:00:26 81482 ——w- 349B52A81342A7AFB8842459E537ECC6 C:\d848a3af20375e435d\1049\LocalizedData.xml
2010-03-18 20:00:26 82346 ——w- 8505219C0A8D950FF07DC699D8208309 C:\d848a3af20375e435d\1031\LocalizedData.xml
2010-03-18 20:00:26 82374 ——w- BDB583C7A48F811BE3B0F01FCEA40470 C:\d848a3af20375e435d\1045\LocalizedData.xml
2010-03-18 20:00:26 82962 ——w- 1DAD88FAED661DB34EEF535D36563EE2 C:\d848a3af20375e435d\1036\LocalizedData.xml
2010-03-18 20:00:26 86284 ——w- 3BF8DA35B14FBCC564E03F6342BB71F2 C:\d848a3af20375e435d\1032\LocalizedData.xml
2010-03-18 20:00:26 86442 ——w- 89D4356E0F226E75CA71D48690E8EC15 C:\d848a3af20375e435d\1038\LocalizedData.xml
2010-03-18 20:16:28 14168 -c—-w- 407CDB7E1C2C862B486CDE45F863AE6E C:\d848a3af20375e435d\2052\SetupResources.dll
2010-03-18 20:16:28 14168 -c—-w- 7C136B92983CEC25F85336056E45F3E8 C:\d848a3af20375e435d\1028\SetupResources.dll
2010-03-18 20:16:28 14168 -c—-w- 7C136B92983CEC25F85336056E45F3E8 C:\d848a3af20375e435d\3076\SetupResources.dll
2010-03-18 20:16:28 15192 -c—-w- FCFD69EC15A6897A940B0435439BF5FC C:\d848a3af20375e435d\1042\SetupResources.dll
2010-03-18 20:16:28 15704 -c—-w- 278FD7595B580A016705D00BE363612F C:\d848a3af20375e435d\1041\SetupResources.dll
2010-03-18 20:16:28 16728 -c—-w- 06CC83E6C677DB13757DF4242F5679F7 C:\d848a3af20375e435d\1037\SetupResources.dll
2010-03-18 20:16:28 17240 -c—-w- 35B62B395968B7754C298FBB410E9821 C:\d848a3af20375e435d\1025\SetupResources.dll
2010-03-18 20:16:28 17240 -c—-w- 9547D24AC04B4D0D1DBF84F74F54FAF7 C:\d848a3af20375e435d\1033\SetupResources.dll
2010-03-18 20:16:28 17752 -c—-w- 28813510B82F45868B5BDC67FFF9C9FA C:\d848a3af20375e435d\1053\SetupResources.dll
2010-03-18 20:16:28 17752 -c—-w- 357A1CBF08A83E657FFAE8639AC1212A C:\d848a3af20375e435d\1055\SetupResources.dll
2010-03-18 20:16:28 17752 -c—-w- BACEA57A781C43738A3B065103479BB5 C:\d848a3af20375e435d\1044\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 550C79640EEE713C73EB67B0736A92E6 C:\d848a3af20375e435d\1045\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 62876C2FE28B1B5C434B9FAD80ABE9F9 C:\d848a3af20375e435d\1029\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 7EF74AF6AB5760950A1D233C582099F1 C:\d848a3af20375e435d\1049\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 86CB58F2B6BC1174D200D0ABE5497233 C:\d848a3af20375e435d\1046\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 881ADF55D51976CA592033A7ADF620B8 C:\d848a3af20375e435d\1035\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- 9F0CD8981979154CC2A6393DA42731C5 C:\d848a3af20375e435d\1030\SetupResources.dll
2010-03-18 20:16:28 18264 -c—-w- E4860FC5D4C114D5C0781714F3BF041A C:\d848a3af20375e435d\1040\SetupResources.dll
2010-03-18 20:16:28 18776 -c—-w- 58CB55FA4D9E2F62F675720B1269137D C:\d848a3af20375e435d\2070\SetupResources.dll
2010-03-18 20:16:28 18776 -c—-w- 7C9AE49B3A400C728A55DD1CACC8FFB2 C:\d848a3af20375e435d\1031\SetupResources.dll
2010-03-18 20:16:28 18776 -c—-w- 93F57216FE49E7E2A75844EDFCCC2E09 C:\d848a3af20375e435d\1036\SetupResources.dll
2010-03-18 20:16:28 18776 -c—-w- B057315A8C04DF29B7E4FD2B257B75F4 C:\d848a3af20375e435d\3082\SetupResources.dll
2010-03-18 20:16:28 18776 -c—-w- C1BF3D63576D619B24837B72986DFAD4 C:\d848a3af20375e435d\1038\SetupResources.dll
2010-03-18 20:16:28 19288 ——w- 76D6E9F15D842E6A56EE42C9C5CCABCA C:\d848a3af20375e435d\1043\SetupResources.dll
2010-03-18 20:16:28 19288 -c—-w- E663B67A66ADF9375D1D183CA5FDD23D C:\d848a3af20375e435d\1032\SetupResources.dll
2010-03-18 20:16:28 295248 ——w- EB881E3DDDC84B20BD92ABCEC444455F C:\d848a3af20375e435d\SetupUi.dll
2010-03-18 20:16:28 78152 ——w- 006F8A615020A4A17F5E63801485DF46 C:\d848a3af20375e435d\Setup.exe
2010-03-18 20:16:28 807256 ——w- 84C1DAF5F30FF99895ECAB3A55354BCF C:\d848a3af20375e435d\SetupEngine.dll
==== Files Recently Created / Modified ======================
====== C:\WINDOWS ====
====== C:\DOCUME~1\Evert\LOCALS~1\Temp ====
====== C:\WINDOWS\system32 =====
2012-12-28 18:24:56 FA425C74CE2EB719B2A77A7A2ADDAE32 216064 —-a-w- C:\WINDOWS\System32\lagarith.dll
2012-12-28 18:24:55 C26B7B8CA40C627B9DE399F9F8FACC69 650752 —-a-w- C:\WINDOWS\System32\xvidcore.dll
2012-12-28 18:24:55 56552C7C36B6237704CE3BA9DF49FECF 243200 —-a-w- C:\WINDOWS\System32\xvidvfw.dll
2012-12-28 18:24:49 006C6378513685ACDFFA84A5ECB86F76 151552 —-a-w- C:\WINDOWS\System32\ac3acm.acm
2012-12-28 18:24:37 DED4C49C39D6CEFC00FDA0C4D7D59407 714 —-a-w- C:\WINDOWS\System32\ff_vfw.dll.manifest
2012-12-28 18:24:36 557D2CD96B80680B81C216D63D342358 112640 —-a-w- C:\WINDOWS\System32\ff_vfw.dll
2012-12-27 18:44:39 653B43816252FE700145E543985407A8 93640 —-a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
====== C:\WINDOWS\system32\drivers =====
2012-12-20 14:03:17 E96D3ED2F0F09164D8B73AD6F1071861 48192 —-a-w- C:\WINDOWS\System32\drivers\KSafeDISK.sys
2012-12-20 14:03:16 33502DC67CCC584F42DD8988D51274B7 27200 —-a-w- C:\WINDOWS\System32\drivers\BTOWSFF.sys
2012-12-20 14:03:15 9395C546A533AFBBA0B32E9A49A66ECB 43584 —-a-w- C:\WINDOWS\System32\drivers\BTOWSVF.sys
====== C:\WINDOWS\Tasks ======
2012-12-29 10:35:33 D38415DFA2C31B2793466436D57A6768 280 —-a-w- C:\WINDOWS\Tasks\SmartDefrag_Startup.job
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2012-12-20 19:28:56 ——– d—–w- C:\Program Files\Defraggler
2012-12-20 19:06:33 ——– d—–w- C:\Program Files\Free Window Registry Repair
2012-12-20 14:02:39 ——– d—–w- C:\Program Files\ToolwizCareFree
2012-12-17 10:08:37 ——– d—–w- C:\Program Files\Microsoft.NET
2012-12-17 10:05:29 ——– d—–w- C:\Program Files\MP3jam
2012-12-12 13:11:58 ——– d—–w- C:\Program Files\Common Files\PC Tools
2012-12-12 13:11:52 ——– d—–w- C:\Program Files\PC Tools Registry Mechanic
2012-12-12 13:02:42 ——– d—–w- C:\Program Files\Eusing Free Registry Cleaner
2012-12-12 12:24:37 ——– d—–w- C:\Program Files\Common Files\AVSMedia
2012-12-10 20:17:11 ——– d—–w- C:\Program Files\Wise
======= C: =====
2012-12-20 18:45:07 AD4B0F606E0F8465BC4C4C170B37E1A3 43 -c–a-w- C:\END
====== C:\Documents and Settings\Evert\Application Data ======
2012-12-29 13:49:48 ——– d—–w- C:\Documents and Settings\Evert\Application Data\QuickScan
2012-12-29 11:13:54 3B2EC35BFA2361DE2062028253E77CBE 184978 —-a-w- C:\Documents and Settings\Evert\Local Settings\Application Data\census.cache
2012-12-29 11:13:30 185DC00FA297B565E9C2A66FC544CAE1 217101 —-a-w- C:\Documents and Settings\Evert\Local Settings\Application Data\ars.cache
2012-12-29 10:58:58 7D10E47139CCE043CE8AE8A6EEB8A724 36 —-a-w- C:\Documents and Settings\Evert\Local Settings\Application Data\housecall.guid.cache
2012-12-27 18:27:06 ——– d—–w- C:\Documents and Settings\Evert\Application Data\DDMSettings
2012-12-20 19:17:17 ——– d—–w- C:\Documents and Settings\Evert\Application Data\Wise Registry Cleaner
2012-12-20 18:31:48 ——– d—–w- C:\Documents and Settings\Evert\Application Data\ElevatedDiagnostics
2012-12-20 18:13:07 ——– d—–w- C:\Documents and Settings\Evert\Application Data\DriverCure
2012-12-20 17:06:13 ——– d—–w- C:\Documents and Settings\Evert\Local Settings\Application Data\ToolwizPrettyPhoto
2012-12-20 14:02:51 ——– d—–w- C:\Documents and Settings\Evert\Local Settings\Application Data\ToolwizCareFree
2012-12-18 19:41:15 ——– d—–w- C:\Documents and Settings\Administrator\Application Data\Wise Registry Cleaner
2012-12-18 17:12:51 ——– d—–w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft
2012-12-18 17:12:50 88CF0FF92A4A9FA7BD9B7513B2E9E22B 62 –sha-w- C:\Documents and Settings\Administrator\Application Data\desktop.ini
2012-12-18 17:12:48 ——– d-s—w- C:\Documents and Settings\Administrator\Application Data\Microsoft
2012-12-17 14:56:10 FF1DBEC94136584814D88960F6B31B0D 198704 —-a-w- C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1390067357-2111687655-1343024091-1004-0.dat
2012-12-17 14:56:08 66695938A5196FEE55FC515D2D95B9C9 131806 —-a-w- C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Application Data\WPFFontCache_v0400-System.dat
2012-12-17 12:03:06 ——– d—–w- C:\Documents and Settings\Evert\Application Data\Mp3jam
2012-12-13 17:02:02 ——– d—–w- C:\Documents and Settings\Evert\Application Data\imeshbandmltbpi
2012-12-13 11:14:09 ——– d—–w- C:\Documents and Settings\Evert\Local Settings\Application Data\PackageAware
2012-12-12 12:26:14 ——– d—–w- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVS4YOU
2012-12-12 12:26:03 ——– d—–w- C:\Documents and Settings\Evert\Application Data\AVS4YOU
2012-12-10 20:17:46 ——– d—–w- C:\Documents and Settings\Evert\Application Data\Wise Disk Cleaner
====== C:\Documents and Settings\Evert ======
2012-12-27 19:12:10 ——– d–h–r- C:\Documents and Settings\Evert\Onlangs geopend
2012-12-18 17:12:51 7D19A444F835CF627FB65127A25778A7 188 –sh–w- C:\Documents and Settings\Administrator\ntuser.ini
2012-12-18 17:12:47 ——– d-sh–w- C:\Documents and Settings\Administrator\Cookies
2012-12-18 17:12:47 ——– d–h–r- C:\Documents and Settings\Administrator\Application Data
2012-12-18 17:12:47 ——– d—–w- C:\Documents and Settings\Administrator\Favorieten
2012-12-18 17:12:47 ——– d—–w- C:\Documents and Settings\Administrator\Bureaublad
2012-12-18 17:12:46 ——– d-sh–w- C:\Documents and Settings\Administrator\IETldCache
2012-12-18 17:12:45 ——– d–h–w- C:\Documents and Settings\Administrator\Sjablonen
2012-12-18 17:12:45 ——– d–h–w- C:\Documents and Settings\Administrator\Onlangs geopend
2012-12-18 17:12:45 ——– d–h–w- C:\Documents and Settings\Administrator\Netwerkprinteromgeving
2012-12-18 17:12:45 ——– d–h–w- C:\Documents and Settings\Administrator\NetHood
2012-12-18 17:12:45 ——– d–h–w- C:\Documents and Settings\Administrator\Local Settings
2012-12-18 17:12:45 ——– d–h–r- C:\Documents and Settings\Administrator\SendTo
2012-12-18 17:12:45 ——– d—–w- C:\Documents and Settings\Administrator\Mijn documenten
2012-12-18 17:12:45 ——– d—–r- C:\Documents and Settings\Administrator\Menu Start
2012-12-13 17:02:03 ——– d—–w- C:\Documents and Settings\Evert\AppData
2012-12-13 13:47:20 ——– d—–w- C:\Documents and Settings\Evert\downloads
2012-12-12 13:16:35 ——– d—–w- C:\Documents and Settings\Evert\My Documents
2012-12-12 13:11:45 ——– d—–w- C:\Documents and Settings\Evert\.frostwire5
====== C: exe-files ==
2012-12-29 13:18:47 29C81875332F7084321C3A82A9A7BF9F 388096 —-a-r- C:\Documents and Settings\Evert\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-12-28 21:05:40 D710458F1273382C09FA20B098DF42CD 546504 —-a-w- C:\Program Files\ESET\ESET Online Scanner\OnlineScannerApp.exe
2012-12-28 21:05:40 D049F328BA3640787B677CE6F8A83457 122144 —-a-w- C:\Program Files\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
2012-12-28 21:05:40 B9BAA6FBDADCEE04945304579AA6B514 2346944 —-a-w- C:\Program Files\ESET\ESET Online Scanner\ESETSmartInstaller.exe
2012-12-28 21:05:40 AFB2AB71827EA606D8FDAA331057E9FC 579464 —-a-w- C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
2012-12-28 21:05:40 1EC455D3E1FE6443AE584B02D25036A2 542384 —-a-w- C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScannerA.exe
2012-12-28 18:24:59 A1DC53A537F5A0FA3BC4AD1F94842846 2012672 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\GraphStudioNext.exe
2012-12-28 18:24:57 AD937F57725167E2D5D7BE534FEED706 1048576 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.exe
2012-12-28 18:24:56 AFD4F735108A24D5112AC1FD661BEC8B 22528 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\VobSubStrip.exe
2012-12-28 18:24:44 CC2532CC8B033C34A9364827F6D774C1 2624176 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\madVR\madHcCtrl.exe
2012-12-28 18:24:31 8EB5CB60390C1FEAD4EE674D466BBDAD 1324115 —-a-w- C:\Program Files\K-Lite Codec Pack\unins000.exe
2012-12-28 18:24:31 29CD1D8A7ABBC8EEB424758E357450C0 1163776 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe
2012-12-27 18:32:12 F441CB902D2049FB66CC1BD17744F737 95736 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\Shell Extensions\FoxitPrevhost.exe
2012-12-27 18:32:07 F92067543402AF7026A45B413646ACBF 4327024 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\Foxit Updater.exe
2012-12-27 18:32:03 2D94DD0891527FC1E9DDBA312AFEEA1B 23979688 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe
2012-12-27 18:32:02 E3F0E69716AD95A3907C0ADBE8FEDBD0 1624096 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\unins000.exe
2012-12-27 18:25:55 B5A0F4D65D15F1D676732B6FBAF11662 64957 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2012-12-27 18:25:52 FC72010BC333205B0201731D36A08B14 66441 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\WebPlayer\Uninstaller.exe
2012-12-27 18:25:40 AA5DD444BF538769A44388952E94C165 65915 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\Player\Uninstaller.exe
2012-12-27 18:24:16 580E8BC755D583359C31908DA646A9C3 65056 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\TransferWizard\Uninstaller.exe
2012-12-27 18:24:11 3879D741304DDD6D5CBF2BAEC6AA190C 64506 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DivXMediaServer\Uninstaller.exe
2012-12-27 18:24:08 68076A6DD788155E51F68ADCB8B72DE2 63144 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DesktopService\Uninstaller.exe
2012-12-27 18:24:05 14876FF0FEA0E2ED3F14F474F3EEF2A2 65229 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DSDesktopComponents\Uninstaller.exe
2012-12-27 18:24:01 2C4C5D8B348C9A9E9DA2F14D7A59582A 57275 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DSASPDecoder\Uninstaller.exe
2012-12-27 18:23:59 7F042ECF32FDF9C29297562C77656F45 62879 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DSAACDecoder\Uninstaller.exe
2012-12-27 18:23:56 9C5D3BA5F54A5A7BBAA201A83FDB1069 62857 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\DFXPlugin\Uninstaller.exe
2012-12-27 18:23:50 3625DE3102498009089805B00A3675BB 62834 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\Converter\Uninstaller.exe
2012-12-27 18:23:36 BBF57CCD9F054544D0B2D1D39310890C 62887 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\TranscodeEngine\Uninstaller.exe
2012-12-27 18:23:00 3D27BB31CFD64DBD2B73E6556EF655B0 63228 —-a-w- C:\Documents and Settings\All Users.WINDOWS\Application Data\DivX\OVSHelper\Uninstaller.exe
=== C: other files ==
2012-12-28 21:05:40 F8D176DB5B14AED7C9B25E0640226BD1 258352 —-a-w- C:\Program Files\ESET\ESET Online Scanner\unicows.dll
2012-12-28 21:05:40 DC76101FC03C1752A4B79192861D87DB 451744 —-a-w- C:\Program Files\ESET\ESET Online Scanner\esets_apiA.dll
2012-12-28 21:05:40 B2B85CB06475D4780DFDCAC6FCDE10B3 464104 —-a-w- C:\Program Files\ESET\ESET Online Scanner\esets_apiW.dll
2012-12-28 21:05:40 5E3C6AC21B5B6160F53686E5828EA686 324024 —-a-w- C:\Program Files\ESET\ESET Online Scanner\OnlineScannerLang.dll
2012-12-28 21:05:40 58B6AA7F41851D526938F0FAFC740966 3100904 —-a-w- C:\Program Files\Trend Micro\HijackThis\backups\backup-20121229-172156-612.dll
2012-12-28 21:05:40 57557300A069492ECACBA18C775B1A32 768984 —-a-w- C:\Program Files\ESET\ESET Online Scanner\esets_apiW_a.dll
2012-12-28 18:25:00 6CF7D6119FC02FCC558866D1D5CCC182 121856 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\xmllite.dll
2012-12-28 18:24:58 6E8D62AE030E149CD4C342CE766D17EF 3026944 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.dll
2012-12-28 18:24:56 FA425C74CE2EB719B2A77A7A2ADDAE32 216064 —-a-w- C:\WINDOWS\system32\lagarith.dll
2012-12-28 18:24:56 A147DA4D88A5B0AA9D5F145FF0422AB0 13922 —-a-w- C:\Program Files\K-Lite Codec Pack\Tools\Xvid_Quant_Matrices.zip
2012-12-28 18:24:55 C26B7B8CA40C627B9DE399F9F8FACC69 650752 —-a-w- C:\WINDOWS\system32\xvidcore.dll
2012-12-28 18:24:55 8B9B3E98DEF9030A891C22494E580032 106496 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\GenDMOProp.dll
2012-12-28 18:24:55 83733A5B7FCBE2FD0038AFC24E7EB28A 294912 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\MpegVideo.dll
2012-12-28 18:24:55 56552C7C36B6237704CE3BA9DF49FECF 243200 —-a-w- C:\WINDOWS\system32\xvidvfw.dll
2012-12-28 18:24:55 451CD43BD3B5D00CADD6720569602764 75264 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\MACDec.dll
2012-12-28 18:24:53 EAFC368E75339308AA018663B305E138 47104 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\bass_tak.dll
2012-12-28 18:24:53 BDB65DCE335AC29ECCBC2CA7A7AD36B7 112640 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\tak_deco_lib.dll
2012-12-28 18:24:53 B3CC560AC7A5D1D266CB54E9A5A4767E 5960 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\bass_ofr.dll
2012-12-28 18:24:53 301A5609907605013D7ED94B5B49AAB9 237568 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\OptimFROG.dll
2012-12-28 18:24:52 A6F5E219342A9F26AB27F81AEA8AAC77 148696 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\bass_aac.dll
2012-12-28 18:24:51 8005750EC63EB5292884AD6183AE2E77 105528 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\DCBass\bass.dll
2012-12-28 18:24:48 58E7CC761A554606D5F75D139A81C269 886456 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\madVR\mvrSettings.dll
2012-12-28 18:24:47 4C79BB1928EF8E39BE5FA920D0F0D116 911456 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\madVR\madHcNet.dll
2012-12-28 18:24:43 E7E555992F176D359CEF5E1B6CD0D375 1566720 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\vsfilter.dll
2012-12-28 18:24:43 E340CE0CAFE48B9999EAD2F32420C5A4 93184 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\avss.dll
2012-12-28 18:24:43 A43CB053D4BF18788BDB90BB97C40888 97792 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\avs.dll
2012-12-28 18:24:43 2680869CC2929F7C766540F5D0C7F94E 24576 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\mkunicode.dll
2012-12-28 18:24:43 116ABBF463689755CC34E65338EB478B 249856 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\dxr.dll
2012-12-28 18:24:42 9A0AB536859C2D0FC6621F0781624D51 80384 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\mkzlib.dll
2012-12-28 18:24:42 6ADB98152CD780DAFD43FA2DB9FF819B 150528 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\mkx.dll
2012-12-28 18:24:42 5571C32AE9B10240A791FDC2A5387A7C 142336 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\mp4.dll
2012-12-28 18:24:42 18D337B1A07C2CCDC1BFC9339A1AFF8D 154624 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\ts.dll
2012-12-28 18:24:41 FB3B3E3D84CCEC236A299212C9A21582 386168 —-a-w- C:\Program Files\K-Lite Codec Pack\Icaros\swscale-ics-2.dll
2012-12-28 18:24:41 6F85242093E4D46A6307F7D17E80F268 897374 —-a-w- C:\Program Files\K-Lite Codec Pack\Icaros\avformat-ics-54.dll
2012-12-28 18:24:41 4EC111B0790BA007192883767258933E 250356 —-a-w- C:\Program Files\K-Lite Codec Pack\Icaros\avutil-ics-52.dll
2012-12-28 18:24:41 3B7E87D3EB6ADBE972463DB05F3A0AE3 109568 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\Haali\avi.dll
2012-12-28 18:24:40 CB905AFA3B8B79FFD56AD43F803615E0 219648 —-a-w- C:\Program Files\K-Lite Codec Pack\Icaros\IcarosThumbnailProvider.dll
2012-12-28 18:24:40 B149D8376156ED4066D15CA810BD9E32 272896 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\IntelQuickSyncDecoder.dll
2012-12-28 18:24:40 646EEBCCF57D0D59425CB389012BBC32 7320576 —-a-w- C:\Program Files\K-Lite Codec Pack\Icaros\avcodec-ics-54.dll
2012-12-28 18:24:40 36FF82AA14AA2C08852D3BD83AF1ECCE 159427 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\avresample-lav-1.dll
2012-12-28 18:24:39 8C55F8AA3E5781A7B35755FD43CED721 242041 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\avutil-lav-52.dll
2012-12-28 18:24:39 2E850A4AD8151A4CD7B83FB07CAA5E43 1234651 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\avformat-lav-54.dll
2012-12-28 18:24:39 134DEEA05C448C9135BE9DA17B919805 379254 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\swscale-lav-2.dll
2012-12-28 18:24:39 053487247F510AA918EDB069754453EE 163148 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\avfilter-lav-3.dll
2012-12-28 18:24:38 5E0A2F5B9F753CED1128E18B57548069 177664 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\libbluray.dll
2012-12-28 18:24:38 5037EDF1E7AE56A0320C66739DB6D81C 7848291 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\LAV\avcodec-lav-54.dll
2012-12-28 18:24:37 D066EEF79499944A81C460E27DE1D57E 56832 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\FLT_ffdshow.dll
2012-12-28 18:24:37 A2CFF2D7B3573F79310140866D45F9B8 271360 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\TomsMoComp_ff.dll
2012-12-28 18:24:37 4048B0E66AD6C06F51296AD06137582B 268288 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_kernelDeint.dll
2012-12-28 18:24:36 CC6A38E4A0F18460292DB77E1B128E5F 157184 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_unrar.dll
2012-12-28 18:24:36 77C6B5663A4ECEDEC5CE9B3AF802119F 1525760 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_samplerate.dll
2012-12-28 18:24:36 557D2CD96B80680B81C216D63D342358 112640 —-a-w- C:\WINDOWS\system32\ff_vfw.dll
2012-12-28 18:24:36 4C32A3EED0828DD1FD7BEA3035EE8E89 147456 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_libmad.dll
2012-12-28 18:24:36 4BA7203812A53D40B2CD9057FE072247 136704 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\libmpeg2_ff.dll
2012-12-28 18:24:36 2E602F8DA39116287EBCB5B844B0EEDC 99840 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_wmv9.dll
2012-12-28 18:24:35 6E8759D124BADE8E89CA004C23B7AD9B 211968 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_libdts.dll
2012-12-28 18:24:35 06DD4FF05F484DD74D0423AE585F23BC 330240 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ff_libfaad2.dll
2012-12-28 18:24:34 30F8F2A86D7F0384DA635633B5D1E680 3915264 —-a-w- C:\Program Files\K-Lite Codec Pack\Filters\ffdshow\ffmpeg.dll
2012-12-27 18:44:39 653B43816252FE700145E543985407A8 93640 —-a-w- C:\WINDOWS\system32\WindowsAccessBridge.dll
2012-12-27 18:40:41 67E57E5DCB269964FD217BDF20826275 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin7.dll
2012-12-27 18:40:41 2034E977759F4EB2226914BFC58F2758 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin6.dll
2012-12-27 18:40:40 C4EB1B18B39BD2F76A64F75D01DEAB61 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin3.dll
2012-12-27 18:40:40 B14417814FCA3A5D4AB170E1823D5484 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin5.dll
2012-12-27 18:40:40 9FCA15CC38F2E2C6F5E722ED0E1A9E7A 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin.dll
2012-12-27 18:40:40 45CC6EFE643FCB97D986BBE2D21E2491 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin2.dll
2012-12-27 18:40:40 3EFF190EC0E333DFBD2F5499858044B6 159744 —-a-w- C:\Program Files\QuickTime\Plugins\npqtplugin4.dll
2012-12-27 18:32:34 E42BD47C42B9A23B11F6B34A694D59D3 357920 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
2012-12-27 18:32:13 6F56BE56E55CEBADE82AF39A3CDDF9DE 108064 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\FXCUSTOM.dll
2012-12-27 18:32:11 681B21937D44737D4B27624F82B33A15 2736632 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\Shell Extensions\FoxitPDFInfo.dll
2012-12-27 18:32:09 1E119608DDC4B5657CF5B9E6B56AA9C1 555552 —-a-w- C:\Program Files\Foxit Software\Foxit Reader\plugins\FoxitReaderBrowserAx.dll
==== Startup Registry Enabled ======================
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE”
“DWQueuedReporting”=“c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t”
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE”
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE”
“AutoSizer”=“C:\Program Files\AutoSizer\AutoSizer.exe”
“ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe”
“CTFMON.EXE”=“C:\WINDOWS\System32\CTFMON.EXE”
“DWQueuedReporting”=“c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t”
“MSC”=“c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey”
“QuickTime Task”=“C:\Program Files\QuickTime\qttask.exe -atboottime”
“AutoSizer”=“C:\Program Files\AutoSizer\AutoSizer.exe”
“ctfmon.exe”=“C:\WINDOWS\system32\ctfmon.exe”
==== Startup Registry Disabled ======================
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“AAWTray”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“AdobeARM”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Reader_sl”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“AWC”
“hkey”=“HKCU”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“AHQInit”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“APSDaemon”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\“”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“DivX Download Manager”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“DivXMediaServer”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\DivX\\DivX Media Server\\DivXMediaServer.exe”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“DivXUpdate”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\DivX\\DivX Update\\DivXUpdate.exe\“ /CHECKNOW”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“UpdateChecker”
“hkey”=“HKCU”
“command”=“\”C:\\Program Files\\filehippo.com\\UpdateChecker.exe\“ /background”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Google Quick Search Box”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Google\\Quick Search Box\\GoogleQuickSearchBox.exe\“ /autorun”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“HPWuSchd2”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“InCD”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\RunOnce”
“item”=“Malwarebytes Anti-Malware”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\Malwarebytes' Anti-Malware\\mbamgui.exe /install /silent”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“mbam”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Malwarebytes' Anti-Malware\\mbam.exe\“ /runcleanupscript”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\RunOnce”
“item”=“Malwarebytes' Anti-Malware”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\Malwarebytes' Anti-Malware\\mbamgui.exe /install /silent”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“msmsgs”
“hkey”=“HKCU”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“msnmsgr”
“hkey”=“HKCU”
“command”=“\”C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\“ /background”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“NeroCheck”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“PMBVolumeWatcher”
“hkey”=“HKLM”
“command”=“C:\\Program Files\\Sony\\PMB\\PMBVolumeWatcher.exe”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“QTTask”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\QuickTime\\QTTask.exe\“ -atboottime”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“SunJavaUpdateSched”
“hkey”=“HKLM”
“command”=“\”C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\“”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“GoogleToolbarNotifier”
“hkey”=“HKCU”
“command”=“\”C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\“”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“realsched”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“ToolwizCareFree”
“hkey”=“HKCU”
“command”=“\”C:\\Program Files\\ToolwizCareFree\\ToolwizCares.exe\“ -autorun”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“UnlockerAssistant”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Updreg”
“hkey”=“HKLM”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“MSASCui”
“hkey”=“HKLM”
“backup”=“C:\\WINDOWS\\pss\\AirLive MIMO-G Wireless Utility.lnkCommon Startup”
“command”=“C:\\PROGRA~1\\AIRLIV~1\\Common\\AIRLIV~1.EXE -s”
“item”=“AirLive MIMO-G Wireless Utility”
“backup”=“C:\\WINDOWS\\pss\\HP Digital Imaging Monitor.lnkCommon Startup”
“item”=“HP Digital Imaging Monitor”
“path”=“C:\\Documents and Settings\\All Users.WINDOWS\\Menu Start\\Programma's\\Opstarten\\HP Digital Imaging Monitor.lnk”
“command”=“C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe”
“backup”=“C:\\WINDOWS\\pss\\Microsoft Office.lnkCommon Startup”
“command”=“C:\\PROGRA~1\\MICROS~2\\Office10\\OSA.EXE -b -l”
“item”=“Microsoft Office”
“item”=“Snelstart HP Image Zone”
“backup”=“C:\\WINDOWS\\pss\\Snelstart HP Image Zone.lnkCommon Startup”
“command”=“C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqthb08.exe”
==== Startup Folders ======================
2008-03-12 08:46:03 1755 -c–a-w- C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\AirLive MIMO-G Wireless Utility.lnk
==== Task Scheduler Jobs ======================
C:\WINDOWS\tasks\AppleSoftwareUpdate.job –a—— C:\Program Files\Apple Software Update\SoftwareUpdate.exe
C:\WINDOWS\tasks\ASC6_PerformanceMonitor.job –a—— C:\Program Files\IObit\Advanced SystemCare 6\Monitor.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job –a—— C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job –a—— C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job –ah—– FP sP8c:=C:=FP sP8c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job –a—— C:\Program Files\Ask.com\UpdateTask.exe
C:\WINDOWS\tasks\SmartDefrag.job –a—— C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
C:\WINDOWS\tasks\SmartDefrag_Startup.job –a—— C:\Program Files\IObit\Smart Defrag 2\SmartDefrag.exe
C:\WINDOWS\tasks\User_Feed_Synchronization-{2579058F-1839-49DD-B7D1-ADA030FBD17D}.job –ah—– C:\WINDOWS\system32\msfeedssync.exe
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
jpmbfleldcgkldadpdinhjjopdfpjfjp - C:\Documents and Settings\Evert\Local Settings\Application Data\Wajam\Chrome\wajam.crx
nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
==== Set IE to Default ======================
Old Values:
@=“http://www.google.com/search?q=%s”
“SearchAssistant”=“http://www.google.com/ie”
“Default_Search_URL”=“http://www.google.com/ie”
New Values:
“Start Page”=“http://go.microsoft.com/fwlink/?LinkId=69157”
“(Default)”=“http://search.msn.com/results.asp?q=%s”
“Default_Search_URL”=“http://go.microsoft.com/fwlink/?LinkId=54896”
“SearchAssistant”=“http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm”
==== All HKCU SearchScopes ======================
HKCU\*\SearchScopes “DefaultScope”=“{6A1806CD-94D4-4689-BA73-E35EA1EA9990}”
HKCU\*\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} @ieframe.dll,-12512 Url=“http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}”
HKCU\*\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== Empty IE Cache ======================
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Default User.WINDOWS\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Van Kooten\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Evert\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
C:\Documents and Settings\Van Kooten\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
After Reboot
==== Empty Temp Folders ======================
C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Evert\LOCALS~1\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\RECYCLER successfully emptied
==== Deleting Files / Folders ======================
“C:\Documents and Settings\Evert\Local Settings\Temporary Internet Files\Content.IE5\index.dat” not deleted
“C:\Documents and Settings\LocalService.NT AUTHORITY\Local Settings\Temporary Internet Files\Content.IE5\index.dat” not deleted
koot

29-12-2012 19:30

Hallo Ben.
probleem blijft hetzelfde , loopt in het register vast.
Jammer je doet zo je best.
Gr.Koot.
Ben

29-12-2012 20:06

Hallo,
Wat mij wel opvalt is dat en een aantal register cleaners gebruikt ik hoop niet dat die al veel schaden hebben aangericht.
Plaats het Attach.txt logje eens.
Gr.Ben
koot

31-12-2012 11:21

Hoi Ben.
Kom volgende week met het logje.
Gr koot.

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

xp loopt steeds vast

koot

Ben

koot

Ben

koot

Ben

koot

koot

Ben

koot