Hoi,

Op aanraden van Peenif en Sykke plaats ik hier een HJT logje omdat ik met een virus zit, na een weekje zonder virusscanner te leven :wall:.
ik had een topic aangemaakt op http://www.minatica.be/showthread.php?p=495170#post495170 met bijhorende uitleg over mn probleem ( virus in c: en d: system volume information). Scan met MWB heeft niets opgeleverd.


ps: om verwarring te voorkomen: mijn ander topic gaat over een andere pc waarvan ik het probleem al heb kunnen oplossen


hieronder mn logje.


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:18:28, on 21/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Avast4\ashMaiSv.exe
C:\Program Files\Avast4\ashWebSv.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\Dit.exe
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\DitExp.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Dit] Dit.exe
O4 - HKLM\..\Run: [VOBRegCheck] C:\WINDOWS\System32\VOBREGCheck.exe -CheckReg
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.aldi.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1257965645953
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
--
End of file - 5164 bytes

Hoi,

1. Open Internet Explorer
Ga nu naar deze site: http://www.bitdefender.com/scanner/online/free.html

Klik linksonder de site op "Scan online"
Klik op de groene knop met "Start scanner"
Er verschijnt nu een klein venstertje, vink "I agree with the Terms and Conditions" aan en klik op "start here"
Je gaat nu een melding krijgen dat Bitdefender een invoegtoepassing wil installeren. Klik hier op en kies voor "Deze invoegtoepssing installeren voor alle gebruikers van deze computer..."
Er verschijnt weer een nieuw venstertje, klik hier op "installeren".
Klik nu op "Start scan". Bitdefender wordt nu geüpdate en gaat scannen.
Sluit het venster als de scan gedaan is.
Daarna komt er een nieuw schermje met de keuze om de log naar bitdefender te sturen, als je dit wil mag dit, maar het is niet noodzakelijk.
Ga naar C:\WINDOWS\BDOSCAN8 en post de inhoud van het bestandje genaamd "bdoscan.log" in je volgende bericht.


2. Download RSIT (http://images.malwareremoval.com/random/RSIT.exe) (door random/random)
Sla het op je Bureaublad op.

Dubbelklik op RSIT om het te starten.
Klik op Continue in het disclaimer venster.
Zodra de scan beëindigd is, zullen twee logs openen. Post de inhoud van log.txt (<<zal gemaximaliseerd zijn) en info.txt (<<zal geminimaliseerd zijn) in je volgende antwoord.

Stap 1:

bij mij wordt er niet gevraagd om een invoegtoepassing te installeren. Ik zie wel het kadertje waar ik de terms accept, en als ik dan op "start scan" druk, komt er een kadertje "bitdefender online scanner" die de scanner update, maar deze blijft op 100% hangen.

Ik heb hier wel een recente versie van bitdefender 2010 ter beschikking, maar nog nooit gebruikt. Kan ik daarmee mss ook jou het logje bezorgen als ik deze installeer?

stap 2:

log.txt

Logfile of random's system information tool 1.06 (written by random/random)
Run by Alice Peeters at 2009-11-22 12:03:48
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 46 GB (81%) free of 57 GB
Total RAM: 511 MB (27% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:03:53, on 22/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\Dit.exe
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\DitExp.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Alice Peeters\Bureaublad\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Alice Peeters.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Dit] Dit.exe
O4 - HKLM\..\Run: [VOBRegCheck] C:\WINDOWS\System32\VOBREGCheck.exe -CheckReg
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.aldi.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1257965645953
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
--
End of file - 5185 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Aanmelden - Help - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run]
"HTpatch"=C:\WINDOWS\htpatch.exe [2002-10-30 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-01-19 294912]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-01-20 47104]
"Dit"=C:\WINDOWS\Dit.exe [2002-08-28 73728]
"VOBRegCheck"=C:\WINDOWS\System32\VOBREGCheck.exe [2003-01-08 153088]
""= []
"avast!"=C:\PROGRA~1\Avast4\ashDisp.exe [2009-09-15 81000]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-02-21 61440]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res. dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\FileZilla FTP Client\filezilla.exe"="C:\Program Files\FileZilla FTP Client\filezilla.exe:*:Enabled:FileZilla FTP Client"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res. dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 1 months======
2009-11-22 12:03:48 ----D---- C:\rsit
2009-11-21 16:18:13 ----D---- C:\Program Files\Trend Micro
2009-11-18 12:00:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-11-18 12:00:06 ----D---- C:\Program Files\Avast4
2009-11-18 10:32:20 ----D---- C:\WINDOWS\BDOSCAN8
2009-11-16 12:33:46 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\HpUpdate
2009-11-16 12:33:43 ----D---- C:\WINDOWS\Hewlett-Packard
2009-11-16 10:01:50 ----D---- C:\Program Files\MSXML 4.0
2009-11-15 18:13:48 ----D---- C:\Program Files\FileZilla
2009-11-15 14:57:43 ----D---- C:\Program Files\Common Files\dpilib
2009-11-15 14:57:42 ----A---- C:\WINDOWS\system32\TIShare8.DLL
2009-11-15 14:57:41 ----A---- C:\WINDOWS\system32\MSBIND.DLL
2009-11-15 14:57:41 ----A---- C:\WINDOWS\system32\crviewer.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\VB6FR.DLL
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u2lsamp1.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u2ldts.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u2lcom.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u2l2000.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u25dts.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\u252000.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\TIBase8.DLL
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\tdbgpp8.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\TabCtFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\StdFtFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\sscsdk80.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\ScrrnFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\P2smon.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\MSMpiFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\MSCmCFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\DatLsFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\craxdrt.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\CmDlgFR.dll
2009-11-15 14:57:40 ----A---- C:\WINDOWS\system32\Cdo32.dll
2009-11-15 14:57:39 ----D---- C:\Program Files\Common Files\mdit
2009-11-15 14:57:33 ----A---- C:\WINDOWS\system32\u2lfinra.dll
2009-11-15 14:57:33 ----A---- C:\WINDOWS\system32\u2lexch.dll
2009-11-15 14:39:50 ----D---- C:\Program Files\Tupperware
2009-11-15 11:18:01 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Image Zone Express
2009-11-15 11:10:19 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\HP
2009-11-15 11:10:02 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2009-11-15 11:08:30 ----D---- C:\Program Files\Common Files\HP
2009-11-15 11:06:18 ----D---- C:\Program Files\Hewlett-Packard
2009-11-15 11:04:19 ----A---- C:\WINDOWS\system32\hpzll054.dll
2009-11-15 10:56:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-11-14 16:54:36 ----D---- C:\WINDOWS\system32\XPSViewer
2009-11-14 16:54:32 ----D---- C:\Program Files\MSBuild
2009-11-14 16:54:30 ----D---- C:\WINDOWS\system32\en-US
2009-11-14 16:54:24 ----D---- C:\Program Files\Reference Assemblies
2009-11-14 16:53:45 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-11-14 16:53:44 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-11-14 16:53:44 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-11-14 16:53:44 ----D---- C:\4b0187aa486c34a4e4b34157
2009-11-14 16:48:50 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\FileZilla
2009-11-13 20:44:08 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2009-11-13 20:43:33 ----A---- C:\WINDOWS\system32\hpzll43a.dll
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZisn12.dll
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZipt12.dll
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZipr12.dll
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZipm12.exe
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZinw12.exe
2009-11-13 20:42:23 ----A---- C:\WINDOWS\system32\HPZidr12.dll
2009-11-13 20:41:57 ----D---- C:\Program Files\HP
2009-11-13 20:41:36 ----HD---- C:\Config.Msi
2009-11-13 20:40:38 ----A---- C:\WINDOWS\system32\hpzjsn01.dll
2009-11-13 20:40:38 ----A---- C:\WINDOWS\system32\hpzids01.dll
2009-11-13 20:40:37 ----A---- C:\WINDOWS\system32\HPZc3212.dll
2009-11-13 20:40:37 ----A---- C:\WINDOWS\system32\hpowiax2.dll
2009-11-13 20:40:37 ----A---- C:\WINDOWS\system32\hpovst09.dll
2009-11-13 20:40:37 ----A---- C:\WINDOWS\system32\hpotscl2.dll
2009-11-13 11:35:48 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Media Player Classic
2009-11-12 16:20:39 ----D---- C:\Program Files\DAEMON Tools Lite
2009-11-12 16:19:24 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\DAEMON Tools Lite
2009-11-12 16:19:18 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2009-11-12 16:06:59 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-11-12 16:06:59 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-11-12 11:40:45 ----D---- C:\Documents and Settings\All Users\Application Data\Zylom
2009-11-12 11:34:10 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2009-11-12 11:33:28 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\GameHouse
2009-11-11 22:15:41 ----A---- C:\WINDOWS\system32\pgdfgsvc.exe
2009-11-11 21:17:53 ----D---- C:\Program Files\GameHouse
2009-11-11 21:14:14 ----D---- C:\games
2009-11-11 20:54:39 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2009-11-11 20:54:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-11-11 20:54:20 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-11-11 20:54:13 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-11-11 20:54:06 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2009-11-11 20:53:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-11-11 20:53:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-11-11 20:53:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-11-11 20:53:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-11-11 20:53:18 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-11-11 20:53:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2009-11-11 20:53:02 ----HDC---- C:\WINDOWS\$NtUninstallKB974455$
2009-11-11 20:52:52 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-11-11 20:52:45 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2009-11-11 20:52:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-11-11 20:52:00 ----D---- C:\WINDOWS\ie8updates
2009-11-11 20:51:04 ----D---- C:\WINDOWS\WBEM
2009-11-11 20:49:51 ----HDC---- C:\WINDOWS\ie8
2009-11-11 20:07:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-11-11 20:07:41 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-11-11 20:07:37 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-11-11 20:07:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-11-11 20:07:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-11-11 20:07:19 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-11-11 20:07:14 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-11-11 20:07:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-11-11 20:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-11-11 20:06:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-11-11 20:06:51 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-11-11 20:06:42 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-11-11 20:06:26 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-11-11 20:06:16 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-11-11 20:05:34 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
2009-11-11 20:05:28 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-11-11 20:05:22 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-11-11 20:05:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-11-11 20:05:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-11-11 20:04:54 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-11-11 20:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-11-11 20:04:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-11-11 20:04:35 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-11-11 20:04:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-11-11 20:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-11-11 20:04:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-11-11 20:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2009-11-11 20:04:00 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-11-11 20:03:54 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-11-11 20:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-11-11 20:03:42 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-11-11 20:03:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-11-11 20:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-11-11 20:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-11-11 20:03:10 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-11-11 20:02:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-11-11 20:02:48 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-11-11 20:02:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-11-11 20:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-11-11 20:02:11 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-11-11 20:01:35 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-11-11 20:01:10 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-11-11 19:59:27 ----D---- C:\Program Files\bwinPoker
2009-11-11 19:32:09 ----D---- C:\Program Files\Microsoft
2009-11-11 19:31:52 ----D---- C:\Program Files\Windows Live SkyDrive
2009-11-11 19:31:27 ----D---- C:\Program Files\Windows Live
2009-11-11 19:25:23 ----D---- C:\WINDOWS\Prefetch
2009-11-11 19:19:25 ----D---- C:\WINDOWS\system32\nl-nl
2009-11-11 19:19:24 ----D---- C:\WINDOWS\l2schemas
2009-11-11 19:19:23 ----D---- C:\WINDOWS\system32\nl
2009-11-11 19:14:53 ----D---- C:\WINDOWS\network diagnostic
2009-11-11 19:10:44 ----D---- C:\Program Files\nig180
2009-11-11 19:05:34 ----A---- C:\WINDOWS\system32\xmllite.dll
2009-11-11 19:05:30 ----N---- C:\WINDOWS\system32\wmphoto.dll
2009-11-11 19:05:27 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-11-11 19:05:26 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2009-11-11 19:05:26 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2009-11-11 19:05:22 ----N---- C:\WINDOWS\system32\tzchange.exe
2009-11-11 19:05:22 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-11-11 19:05:22 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-11-11 19:05:13 ----N---- C:\WINDOWS\system32\setupn.exe
2009-11-11 19:05:11 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-11-11 19:05:09 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-11-11 19:05:09 ----N---- C:\WINDOWS\system32\qutil.dll
2009-11-11 19:05:08 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-11-11 19:05:08 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-11-11 19:05:08 ----N---- C:\WINDOWS\system32\qagent.dll
2009-11-11 19:05:07 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2009-11-11 19:05:05 ----N---- C:\WINDOWS\system32\onex.dll
2009-11-11 19:04:58 ----N---- C:\WINDOWS\system32\napstat.exe
2009-11-11 19:04:58 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-11-11 19:04:58 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-11-11 19:04:58 ----N---- C:\WINDOWS\system32\msxml6r.dll
2009-11-11 19:04:58 ----A---- C:\WINDOWS\system32\msxml6.dll
2009-11-11 19:04:56 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-11-11 19:04:56 ----N---- C:\WINDOWS\system32\mssha.dll
2009-11-11 19:04:48 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-11-11 19:04:48 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-11-11 19:04:48 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-11-11 19:04:48 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dl l
2009-11-11 19:04:40 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-11-11 19:04:40 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-11-11 19:04:40 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-11-11 19:04:40 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-11-11 19:04:39 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-11-11 19:04:39 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-11-11 19:04:29 ----A---- C:\WINDOWS\005482_.tmp
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-11-11 19:04:28 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-11-11 19:04:26 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-11-11 19:04:25 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-11-11 19:04:23 ----N---- C:\WINDOWS\system32\credssp.dll
2009-11-11 19:04:20 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-11-11 19:04:20 ----N---- C:\WINDOWS\system32\azroles.dll
2009-11-11 19:04:15 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-11-11 18:53:33 ----D---- C:\Program Files\Common Files\Windows Live
2009-11-11 18:49:19 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Malwarebytes
2009-11-11 18:49:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-11 18:49:14 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-11-11 18:47:26 ----HDC---- C:\WINDOWS\$NtUninstallKB873333$
2009-11-11 18:47:19 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2009-11-11 18:35:21 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2009-11-11 18:35:16 ----HDC---- C:\WINDOWS\$NtUninstallKB924191$
2009-11-11 18:35:11 ----HDC---- C:\WINDOWS\$NtUninstallKB922819$
2009-11-11 18:35:06 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2009-11-11 18:35:01 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2009-11-11 18:34:56 ----HDC---- C:\WINDOWS\$NtUninstallKB923414$
2009-11-11 18:34:52 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
2009-11-11 18:34:46 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP9$
2009-11-11 18:34:27 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2009-11-11 18:34:21 ----HDC---- C:\WINDOWS\$NtUninstallKB922616$
2009-11-11 18:34:14 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2009-11-11 18:34:05 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2009-11-11 18:32:48 ----HDC---- C:\WINDOWS\$NtUninstallKB920685$
2009-11-11 18:32:43 ----HDC---- C:\WINDOWS\$NtUninstallKB896424$
2009-11-11 18:32:38 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2009-11-11 18:32:33 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2009-11-11 18:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2009-11-11 18:32:24 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2009-11-11 18:32:20 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2009-11-11 18:32:14 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2009-11-11 18:32:06 ----HDC---- C:\WINDOWS\$NtUninstallKB921398$
2009-11-11 18:31:18 ----A---- C:\WINDOWS\system32\MRT.exe
2009-11-11 18:31:11 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2009-11-11 18:31:06 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2009-11-11 18:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB898458$
2009-11-11 18:30:51 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2009-11-11 18:30:31 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2009-11-11 18:30:25 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2009-11-11 18:30:20 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2009-11-11 18:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB919007$
2009-11-11 18:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2009-11-11 18:30:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917344$
2009-11-11 18:30:02 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2009-11-11 18:29:57 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-11-11 18:29:53 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2009-11-11 18:29:48 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2009-11-11 18:29:43 ----HDC---- C:\WINDOWS\$NtUninstallKB917422$
2009-11-11 18:29:39 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2009-11-11 18:29:33 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2009-11-11 18:29:28 ----HDC---- C:\WINDOWS\$NtUninstallKB912919$
2009-11-11 18:29:20 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2009-11-11 18:29:15 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2009-11-11 18:29:09 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2009-11-11 18:29:03 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2009-11-11 18:28:24 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2009-11-11 18:28:19 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2009-11-11 18:28:14 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2009-11-11 18:28:01 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2009-11-11 18:21:40 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Macromedia
2009-11-11 18:20:51 ----D---- C:\Program Files\messenger
2009-11-11 18:20:28 ----D---- C:\WINDOWS\provisioning
2009-11-11 18:20:28 ----D---- C:\WINDOWS\peernet
2009-11-11 18:10:37 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-11-11 18:05:59 ----N---- C:\WINDOWS\system32\spnpinst.exe
2009-11-11 17:57:11 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-11-11 17:40:34 ----A---- C:\WINDOWS\system32\unrar.dll
2009-11-11 17:40:34 ----A---- C:\WINDOWS\avisplitter.ini
2009-11-11 17:40:32 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2009-11-11 17:40:32 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2009-11-11 17:40:32 ----A---- C:\WINDOWS\system32\xvidcore.dll
2009-11-11 17:40:30 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2009-11-11 17:40:30 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2009-11-11 17:40:29 ----D---- C:\Program Files\K-Lite Codec Pack
2009-11-11 17:36:22 ----D---- C:\Program Files\CCleaner
2009-11-11 17:33:14 ----D---- C:\WINDOWS\system32\bits
2009-11-11 17:33:06 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2009-11-11 17:32:50 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-11-11 17:32:33 ----D---- C:\WINDOWS\system32\PreInstall
2009-11-11 17:32:30 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-11-11 17:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-11-11 17:32:28 ----HD---- C:\WINDOWS\$hf_mig$
2009-11-11 17:32:01 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2009-11-11 17:32:01 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2009-11-11 17:32:01 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-11-11 17:32:01 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-11-11 17:21:06 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\WinRAR
2009-11-11 17:13:12 ----D---- C:\Program Files\WinRAR
2009-11-11 16:57:39 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-11-11 16:56:21 ----D---- C:\WINDOWS\SoftwareDistribution
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wups.dll
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-11-11 16:56:13 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-11-11 16:52:12 ----A---- C:\WINDOWS\system32\iuengine.dll
2009-11-11 16:52:06 ----SD---- C:\Documents and Settings\Alice Peeters\Application Data\Microsoft
2009-11-11 16:52:06 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\InterTrust
2009-11-11 16:52:06 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Identities
2009-11-11 16:52:06 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Help
2009-11-11 16:52:06 ----D---- C:\Documents and Settings\Alice Peeters\Application Data\Adobe
2009-11-11 16:52:06 ----ASH---- C:\Documents and Settings\Alice Peeters\Application Data\desktop.ini
======List of files/folders modified in the last 1 months======
2009-11-22 09:36:46 ----D---- C:\WINDOWS\Temp
2009-11-22 09:36:27 ----D---- C:\WINDOWS
2009-11-22 09:36:23 ----A---- C:\WINDOWS\ModemLog_Creatix V.9X DSP Data Fax Modem.txt
2009-11-22 02:53:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-11-21 16:18:13 ----RD---- C:\Program Files
2009-11-20 23:06:24 ----D---- C:\WINDOWS\system32\CatRoot2
2009-11-20 12:06:51 ----D---- C:\WINDOWS\system32
2009-11-18 12:10:20 ----D---- C:\WINDOWS\system32\config
2009-11-18 12:00:30 ----D---- C:\WINDOWS\system32\drivers
2009-11-18 10:32:23 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-11-18 10:32:20 ----HD---- C:\WINDOWS\inf
2009-11-16 12:54:06 ----D---- C:\Program Files\Windows Media Player
2009-11-16 12:34:07 ----SHD---- C:\WINDOWS\Installer
2009-11-16 10:01:50 ----D---- C:\WINDOWS\WinSxS
2009-11-15 14:57:43 ----D---- C:\Program Files\Common Files
2009-11-15 14:57:39 ----D---- C:\Program Files\Common Files\Designer
2009-11-15 14:53:39 ----D---- C:\Program Files\Common Files\InstallShield
2009-11-15 14:39:50 ----HD---- C:\Program Files\InstallShield Installation Information
2009-11-15 13:53:32 ----D---- C:\WINDOWS\Microsoft.NET
2009-11-15 13:53:28 ----RSD---- C:\WINDOWS\assembly
2009-11-15 11:10:10 ----A---- C:\WINDOWS\win.ini
2009-11-15 11:06:23 ----D---- C:\WINDOWS\twain_32
2009-11-15 11:01:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-11-15 10:57:50 ----D---- C:\WINDOWS\system32\CatRoot
2009-11-15 10:56:43 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-11-14 16:54:29 ----RSD---- C:\WINDOWS\Fonts
2009-11-14 16:54:08 ----D---- C:\WINDOWS\system32\spool
2009-11-14 16:51:26 ----D---- C:\WINDOWS\system32\mui
2009-11-14 16:44:28 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-11-13 20:46:39 ----D---- C:\WINDOWS\system32\FxsTmp
2009-11-13 12:04:28 ----D---- C:\WINDOWS\Debug
2009-11-13 12:01:03 ----D---- C:\Program Files\Common Files\Adobe
2009-11-13 12:00:09 ----D---- C:\Program Files\Adobe
2009-11-13 11:53:30 ----D---- C:\WINDOWS\Help
2009-11-11 20:58:23 ----D---- C:\WINDOWS\system32\wbem
2009-11-11 20:58:23 ----D---- C:\WINDOWS\AppPatch
2009-11-11 20:58:23 ----D---- C:\Program Files\Internet Explorer
2009-11-11 20:50:57 ----D---- C:\WINDOWS\Media
2009-11-11 20:07:15 ----D---- C:\Program Files\Outlook Express
2009-11-11 19:31:58 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-11-11 19:25:00 ----D---- C:\WINDOWS\system32\Setup
2009-11-11 19:22:35 ----D---- C:\WINDOWS\security
2009-11-11 19:19:37 ----D---- C:\WINDOWS\ime
2009-11-11 19:19:25 ----D---- C:\WINDOWS\system32\usmt
2009-11-11 19:19:22 ----D---- C:\Program Files\Movie Maker
2009-11-11 19:16:34 ----D---- C:\WINDOWS\system32\Restore
2009-11-11 19:16:34 ----D---- C:\WINDOWS\system32\npp
2009-11-11 19:16:33 ----D---- C:\WINDOWS\msagent
2009-11-11 19:16:32 ----D---- C:\WINDOWS\srchasst
2009-11-11 19:16:31 ----D---- C:\Program Files\NetMeeting
2009-11-11 19:16:30 ----D---- C:\WINDOWS\system32\Com
2009-11-11 19:16:27 ----D---- C:\Program Files\Windows NT
2009-11-11 19:16:24 ----D---- C:\Program Files\Common Files\System
2009-11-11 19:16:11 ----D---- C:\WINDOWS\system32\oobe
2009-11-11 19:16:10 ----D---- C:\WINDOWS\system
2009-11-11 19:13:50 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-11-11 19:09:45 ----D---- C:\WINDOWS\ehome
2009-11-11 18:34:07 ----D---- C:\WINDOWS\Registration
2009-11-11 18:25:10 ----SHD---- C:\System Volume Information
2009-11-11 18:21:30 ----RASH---- C:\boot.ini
2009-11-11 18:15:17 ----RD---- C:\WINDOWS\Web
2009-11-11 18:15:04 ----RASH---- C:\NTDETECT.COM
2009-11-11 17:01:57 ----D---- C:\Program Files\Medion Home CinemaXL
2009-11-11 17:01:56 ----D---- C:\Program Files\CyberLink
2009-11-11 17:00:22 ----D---- C:\Program Files\Microsoft Works
2009-11-11 16:56:46 ----D---- C:\WINDOWS\system32\ShellExt
2009-11-11 16:56:19 ----HD---- C:\Program Files\WindowsUpdate
2009-11-11 16:53:11 ----SHD---- C:\RECYCLER
2009-11-11 16:52:05 ----D---- C:\Documents and Settings
2009-11-11 16:47:18 ----D---- C:\WINDOWS\repair
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-09-15 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-09-15 52368]
R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40448]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-01-28 697084]
R3 Arp1394;1394 ARP-clientprotocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-09-15 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-02-21 1505792]
R3 Cap7134;MEDION (7134) WDM Video Capture; C:\WINDOWS\System32\DRIVERS\Cap7134.sys [2002-11-04 422976]
R3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Intels51;Creatix V.9X DSP Data Fax Modem; C:\WINDOWS\System32\DRIVERS\ctxs51.sys [2002-07-01 638366]
R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-09-06 12288]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART-stuurprogramma; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 NIC1394;1394-stuurprogramma; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-04-19 13780]
R3 PhTVTune;MEDION TV-TUNER 7134 MK2/3; C:\WINDOWS\System32\DRIVERS\PhTVTune.sys [2002-11-04 27520]
R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\sisnic.sys [2002-07-10 32256]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 a83zhzlw;a83zhzlw; C:\WINDOWS\system32\drivers\a83zhzlw.sys []
S3 CCDECODE;Closed Caption-decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-10-28 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-10-28 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-10-28 21568]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video-verbinding; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;World Standard Teletext-codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast4\aswUpdSv.exe [2009-09-15 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-02-21 405504]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast4\ashServ.exe [2009-09-15 138680]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast4\ashMaiSv.exe [2009-09-15 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast4\ashWebSv.exe [2009-09-15 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\Presen tationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 x10nets;X10 Device Network Service; C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [2001-11-12 20480]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------



info.txt


info.txt logfile of random's system information tool 1.06 2009-11-22 12:03:57
======Uninstall list======
-->C:\WINDOWS\IsUn0413.exe -fC:\WINDOWS\orun32.isu
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ct or.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{82F248C6-D392-11D5-9EA2-0050BAE317E1}\setup.exe" -uninst
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\uninstall_activ eX.exe
Adobe Reader 9.2 - Nederlands-->MsiExec.exe /I{AC76BA86-7AD7-1043-7B44-A92000000001}
ATI Control Panel-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ct or.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallI NFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
avast! Antivirus-->C:\Program Files\Avast4\aswRunDll.exe "C:\Program Files\Avast4\Setup\setiface.dll",RunSetup
Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spun inst.exe"
Beveiligingsupdate voor Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spun inst.exe"
Beveiligingsupdate voor Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spun inst.exe"
Beveiligingsupdate voor Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spun inst.exe"
Beveiligingsupdate voor Windows Media Player 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spu ninst.exe"
Beveiligingsupdate voor Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst .exe"
Beveiligingsupdate voor Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst .exe"
BookWorm Deluxe-->"C:\games\bookwormdeluxe\Uninstall.exe" "C:\games\bookwormdeluxe\install.log"
bwin Poker-->"C:\Program Files\bwinPoker\unins000.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Chainz 2: Relinked-->C:\games\CHAINZ~1\UNWISE.EXE /U C:\games\CHAINZ~1\INSTALL.LOG
DivX 5.0.2 Bundle-->C:\WINDOWS\unvise32.exe C:\Program Files\DivX\uninstal.log
EasyTup-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B2CDAFAE-0DF6-4A75-948F-1FAFDF933E21}\setup.exe" -l0x13 -removeonly
ebgcInfra-->MsiExec.exe /X{39B1BD87-561E-4762-AED9-7C5213B06C24}
ebgcRes-->MsiExec.exe /X{03E08F33-216D-4107-9C95-A6AC19B49FA1}
ebgcSDK-->MsiExec.exe /X{53B2D537-21CF-44D5-A03A-0DAF993B5728}
FileZilla (remove only)-->"C:\Program Files\FileZilla\uninstall.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix voor Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst .exe"
Hotfix voor Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst .exe"
Hotfix voor Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
HP Customer Participation Program 7.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart, Officejet and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}\setup\hpzscr01.exe -datfile hposcr11.dat
HP Solution Center 7.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E9640B7DD1}
Informatie over uw PC-->MsiExec.exe /I{B8910DF6-1717-4554-AA96-93430B3F9481}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
KB898458: Beveiligingsupdate voor Step by Step Interactive Training-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst .exe"
KB923723: Beveiligingsupdate voor Step by Step Interactive Training-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst .exe"
K-Lite Codec Pack 5.4.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Medion Flash XL-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ct or.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA1CB7AC-E221-4822-A789-0ADB051DC498}\Setup.exe" -l0x9
Microsoft .NET Framework (Dutch) v1.0.3705-->C:\WINDOWS\Microsoft.NET\Framework\Install.exe /u /p Microsoft .NET Framework Full v1.0.3705 (1043)
Microsoft .NET Framework 1.0 Hotfix (KB928367)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Updat es\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Updat es\M9283671043\M9283671043Uninstall.msp"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft AutoRoute 2002-->MsiExec.exe /I{F7F2DC0A-C22E-49AD-AD37-797309A54E7B}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Word 2002-->MsiExec.exe /I{911B0413-6000-11D3-8CFE-0050048383C9}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero - Burning Rom-->MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ct or.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
SiS 900 PCI Fast Ethernet Adapter Driver-->C:\Progra~1\SiSLan\Uninst.exe
Text Express 2 Deluxe-->C:\games\TEXTEX~1\UNWISE.EXE /U C:\games\TEXTEX~1\INSTALL.LOG
Tiscali-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ct or.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E73D841A-C34A-4F42-84FB-9992B244C232}\Setup.exe" -l0x9 anything
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update voor Windows Internet Explorer 8 (KB975364)-->"C:\WINDOWS\ie8updates\KB975364-IE8\spuninst\spuninst.exe"
Update voor Windows Internet Explorer 8 (KB976749)-->"C:\WINDOWS\ie8updates\KB976749-IE8\spuninst\spuninst.exe"
Update voor Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst .exe"
Update voor Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst .exe"
Update voor Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst .exe"
Update voor Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst .exe"
Update voor Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst .exe"
Windows Back-up-->MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live - Hulpprogramma voor uploaden-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Live aanmeldhulp-->MsiExec.exe /I{1BD6AE96-4742-4498-9D03-9451C7E5A214}
Windows Live Call-->MsiExec.exe /I{2A8F82E8-7B86-4AFD-BFBC-2BA4C2CF52DB}
Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{562B9CA4-6E52-4F87-ACEC-912FC004F1F0}
Windows Live Mail-->MsiExec.exe /I{2869F5EA-93C3-48E5-80DF-DB696BC84A91}
Windows Live Messenger-->MsiExec.exe /X{10F5387D-1728-423A-A578-B00982CF2646}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuni nst.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
X10 Hardware(TM)-->C:\WINDOWS\UNWISE.EXE C:\PROGRA~1\X10HAR~1\Install.log
Zuma Deluxe-->C:\games\zumadeluxe\Uninstal.exe
======Security center information======
AV: avast! antivirus 4.8.1356 [VPS 091121-1] (disabled)
======System event log======
Computer Name: ALICE
Event Code: 20
Message: Printerstuurprogramma HP Deskjet F300 series voor Windows NT x86 Version-3 is toegevoegd of bijgewerkt. Bestanden: - UNIDRV.DLL, UNIDRVUI.DLL, hpoF3003.GPD, UNIDRV.HLP, hpoF300a.ini, hpzst43a.dll, hpoF3003.xml, hpzsc43a.dtd, hpzui43a.dll, hpz3r43a.dll, hpzpr43a.dll, hpcdmc32.dll, hpbcfgre.dll, hpohF300.exp, hpzle43a.dll, hpzsm43a.gpd, hpz3m43a.gpd, hpzev43a.dll, hpzhl43a.cab, STDNAMES.GPD, hpzla43a.dll, hpz3a43a.dll, hpzss43a.dll, hpfie43a.dll, hpfig43a.dll, hpfrs43a.dll, UNIRES.DLL.
Record Number: 911
Source Name: Print
Time Written: 20091113204341.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: ALICE
Event Code: 1003
Message: Deze computer kan het netwerkadres niet vernieuwen (van de DHCP-
server) voor de netwerkkaart met netwerkadres 0010DCEFE4CC. De volgende fout is
opgetreden:
Er is geprobeerd een bewerking uit te voeren op iets anders dan een socket.
.
De computer zal doorgaan om zelf een adres van de netwerkadresserver
(DHCP-server) proberen te krijgen.
Record Number: 864
Source Name: Dhcp
Time Written: 20091113125541.000000+060
Event Type: warning
User:
Computer Name: ALICE
Event Code: 20
Message: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x8024002d: Office XP Service Pack 3.
Record Number: 615
Source Name: Windows Update Agent
Time Written: 20091111212405.000000+060
Event Type: error
User:
Computer Name: ALICE
Event Code: 20
Message: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x8024002d: Office XP Service Pack 3.
Record Number: 586
Source Name: Windows Update Agent
Time Written: 20091111210940.000000+060
Event Type: error
User:
Computer Name: ALICE
Event Code: 20
Message: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x8024002d: Office XP Service Pack 3.
Record Number: 442
Source Name: Windows Update Agent
Time Written: 20091111200202.000000+060
Event Type: error
User:
=====Application event log=====
Computer Name: ALICE
Event Code: 11706
Message: Product: Microsoft Word 2002 -- Fout 1706. Setup kan de vereiste bestanden niet vinden. Controleer de verbinding met het netwerk of het cd-rom-station. Zie voor andere mogelijke oplossingen voor dit probleem C:\Program Files\Microsoft Office\Office10\1043\SETUP.HLP.
Record Number: 62
Source Name: MsiInstaller
Time Written: 20091111200156.000000+060
Event Type: error
User: ALICE\Alice Peeters
Computer Name: ALICE
Event Code: 1517
Message: Windows heeft het register van gebruiker ALICE\Alice Peeters opgeslagen hoewel een toepassing of service tijdens de afmelding van het register gebruikmaakte. Het geheugen voor het register is niet volledig beschikbaar. Het register wordt uit het register verwijderd wanneer het niet langer in gebruik is.

Dit wordt mogelijk veroorzaakt door services die als een gebruikersaccount actief zijn. Probeer om de services zodanig te configureren dat deze als LocalService- of NetworkService-account worden gestart.
Record Number: 40
Source Name: Userenv
Time Written: 20091111192358.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: ALICE
Event Code: 63
Message: De aanbieder, HiPerfCooker_v1, is geregistreerd in de WMI-naamruimte, Root\WMI, om de account LocalSystem te gebruiken. Deze account beschikt over machtigingen, waardoor de aanbieder inbreuken op de beveiliging kan veroorzaken wanneer aanvragen van gebruikers op onjuiste wijze worden geïmiteerd.
Record Number: 39
Source Name: WinMgmt
Time Written: 20091111192016.000000+060
Event Type: warning
User: ALICE\Alice Peeters
Computer Name: ALICE
Event Code: 63
Message: De aanbieder, HiPerfCooker_v1, is geregistreerd in de WMI-naamruimte, Root\WMI, om de account LocalSystem te gebruiken. Deze account beschikt over machtigingen, waardoor de aanbieder inbreuken op de beveiliging kan veroorzaken wanneer aanvragen van gebruikers op onjuiste wijze worden geïmiteerd.
Record Number: 14
Source Name: WinMgmt
Time Written: 20091111182110.000000+060
Event Type: warning
User: ALICE\Alice Peeters
Computer Name: Alice
Event Code: 1517
Message: Windows heeft het register van gebruiker Alice\Alice Peeters opgeslagen hoewel een toepassing of service tijdens de afmelding van het register gebruikmaakte. Het geheugen voor het register is niet volledig beschikbaar. Het register wordt uit het register verwijderd wanneer het niet langer in gebruik is.

Dit wordt mogelijk veroorzaakt door services die als een gebruikersaccount actief zijn. Probeer om de services zodanig te configureren dat deze als LocalService- of NetworkService-account worden gestart.
Record Number: 13
Source Name: Userenv
Time Written: 20091111170225.000000+060
Event Type: warning
User: NT AUTHORITY\SYSTEM
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\S ystem32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0207
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
-----------------EOF-----------------

Hoi,

Probeer deze scanner eens: :)
http://www.eset.com/onlinescan/

hey,

de ESET scanner vindt geen virussen, de bitdefender heb ik ook nog eens geprobeerd, maar die kan niet updaten en niet scannen.

Ik ben nu nog eens een volledige scan met Avast aan het doen, om te kijken of die nog iets vind.


bijkomend vraagje: vind je de bitdefender total security een beter optie als Avast! ?

grtz

Hoi,

Beide staan goed bekend. :)

Ik zie verder geen reden om maar enigzins de gedachte te hebben dat je geïnfecteerd zou zijn.
Ik denk toch dat je het probleem ergens anders moet zoeken...

heb je verder nog vragen? :)

hey,

ik heb zonet een volledige scan gedaan met avast. Daaruit kwamen deze keer geen infecties meer tevoorschijn.
Dus zal Avast het probleem opgelost hebben...

bedankt voor de hulp, en hier mag dan ook een slotje op voor mij.

grtz, tim

Hoi,

Prima. Graag gedaan. :)

Omdat je vraag is opgelost sluit ik dit topic.
Je kunt dan niet meer reageren in dit topic. Wil je je topic heropend hebben, stuur mij of een van de andere Moderators een privébericht, met daarin de aanvraag tot de heropening van je topic.
Alle anderen kunnen hun eigen topic openen.