PC traag door AVP Exe

[marianmer]

De link van combofix werkte niet, dit even buiten beschouwing, dus heb een andere gedownload.

Hier volgt het rapport

ComboFix 10-02-18.09 - Administrator 19-02-2010 15:51:14.1.4 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.3549.3139 [GMT 1:00]

Gestart vanuit: C:\Documents and Settings\Administrator\Bureaublad\ComboFix.exe

AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}

.

ADS - WINDOWS: deleted 24 bytes in 1 streams.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Documents and Settings\Administrator\Application Data\inst.exe

C:\Documents and Settings\All Users\Menu Start\Programma's\Internet Explorer.lnk

C:\WINDOWS\Readme.txt

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_RKHIT

(((((((((((((((((((( Bestanden Gemaakt van 2010-01-19 to 2010-02-19 ))))))))))))))))))))))))))))))

.

2010-02-19 15:06:40 . 2010-02-19 15:06:40 -------- d-----w- C:\WINDOWS\system32\xircom

2010-02-19 15:06:40 . 2010-02-19 15:06:40 -------- d-----w- C:\WINDOWS\system32\wbem\snmp

2010-02-19 15:06:39 . 2010-02-19 15:06:39 -------- d-----w- C:\Program Files\microsoft frontpage

2010-02-19 09:47:45 . 2010-02-19 09:47:45 -------- d-----w- C:\Program Files\TrendMicro

2010-02-18 10:08:40 . 2010-02-18 10:08:40 -------- d-----w- C:\Program Files\Webshots Uploader Desktop

2010-02-18 08:58:32 . 2010-02-18 08:58:32 0 ----a-w- C:\WINDOWS\nsreg.dat

2010-02-18 08:58:25 . 2010-02-18 08:58:25 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla

2010-02-17 12:19:12 . 2010-02-17 12:19:13 -------- d-----w- C:\WINDOWS\system32\custom matrices

2010-02-17 12:18:18 . 2010-02-17 12:18:18 -------- d-----w- C:\WINDOWS\system32\QuickTime

2010-02-17 12:18:13 . 2010-02-17 12:20:25 -------- d-----w- C:\WINDOWS\system32\C2MP

2010-02-17 12:02:07 . 2010-02-17 12:02:07 -------- d-----w- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple

2010-02-17 09:16:07 . 2010-02-19 10:51:58 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\QuickPar

2010-02-16 15:17:18 . 2010-02-16 15:25:53 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Download Manager

2010-02-15 21:30:17 . 2010-02-19 15:10:08 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\LimeWire

2010-02-15 21:25:48 . 2010-02-15 21:29:45 -------- d-----w- C:\Program Files\LimeWire

2010-02-15 16:10:54 . 2010-02-15 16:10:55 -------- d-----w- C:\WINDOWS\system32\NtmsData

2010-02-15 16:08:59 . 2010-02-15 16:08:59 -------- d--h--w- C:\WINDOWS\system32\GroupPolicy

2010-02-15 10:36:50 . 2010-02-15 10:36:51 -------- d-----w- C:\Documents and Settings\All Users\Application Data\PhotoMail

2010-02-15 10:36:45 . 2010-02-15 10:36:47 -------- d-----w- C:\Program Files\PhotoMail Maker

2010-02-15 10:33:23 . 2010-02-15 15:25:45 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\IM

2010-02-15 10:32:27 . 2010-02-15 10:32:27 -------- d-----w- C:\Documents and Settings\All Users\Application Data\IncrediMail

2010-02-15 10:32:23 . 2010-02-15 10:37:11 -------- d-----w- C:\Documents and Settings\All Users\Application Data\IM

2010-02-15 10:29:47 . 2010-02-15 10:32:22 -------- d-----w- C:\Program Files\IncrediMail

2010-02-14 23:33:47 . 2008-04-13 23:15:14 60032 ----a-w- C:\WINDOWS\system32\drivers\USBAUDIO.sys

2010-02-14 23:27:28 . 2008-04-14 21:32:46 54272 ----a-w- C:\WINDOWS\system32\vfwwdm32.dll

2010-02-14 23:27:28 . 2001-09-06 20:26:48 236032 ----a-w- C:\WINDOWS\system\camext20.dll

2010-02-14 23:27:28 . 2001-08-17 21:04:46 223232 ----a-w- C:\WINDOWS\system32\drivers\camdrv21.sys

2010-02-12 21:12:37 . 2010-02-12 21:12:37 -------- d-sh--w- C:\Documents and Settings\Administrator\IECompatCache

2010-02-12 12:41:17 . 2010-02-12 12:41:17 -------- d-----w- C:\found.000

2010-02-11 16:46:12 . 2010-02-11 16:46:12 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Threat Expert

2010-02-11 16:31:26 . 2010-02-11 16:31:26 -------- d-----w- C:\Program Files\Spyware Doctor Setup

2010-02-11 08:50:59 . 2010-02-11 08:51:00 160603 ----a-w- C:\WINDOWS\Sqirlz Water Reflections Uninstaller.exe

2010-02-11 08:50:59 . 2010-02-11 08:50:59 -------- d-----w- C:\Program Files\Sqirlz Water Reflections

2010-02-11 07:53:29 . 2010-02-11 07:56:03 -------- d-----w- C:\Program Files\MP3CD

2010-02-11 05:52:21 . 2010-02-11 05:52:21 -------- d-----w- C:\Program Files\NortonInstaller

2010-02-11 05:52:21 . 2010-02-11 05:52:21 -------- d-----w- C:\Documents and Settings\All Users\Application Data\NortonInstaller

2010-02-11 05:51:19 . 2010-02-11 05:51:19 -------- d--h--w- C:\Program Files\DeviceVM

2010-02-11 05:34:51 . 2009-10-22 13:28:56 1002008 ----a-r- C:\WINDOWS\system32\igxpun.exe

2010-02-11 05:24:49 . 2010-02-11 05:24:49 -------- d-----w- C:\Program Files\Intel

2010-02-11 05:24:49 . 2009-08-18 05:44:44 53248 ----a-r- C:\WINDOWS\system32\CSVer.dll

2010-02-11 05:24:19 . 2010-02-11 05:24:19 -------- d-----w- C:\Intel

2010-02-11 05:21:40 . 2009-04-02 12:30:14 10296 ----a-w- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS

2010-02-10 20:23:01 . 2010-02-17 15:00:28 -------- d-----w- C:\Program Files\FTD Watchdog

2010-02-10 19:30:39 . 2010-02-17 09:30:54 -------- d-----w- C:\Program Files\FTDv3.8

2010-02-10 19:17:12 . 2008-12-03 16:40:32 81408 ----a-w- C:\WINDOWS\system32\devcon_x64.exe

2010-02-10 19:17:12 . 2002-11-14 21:32:08 55808 ----a-w- C:\WINDOWS\system32\devcon.exe

2010-02-10 19:17:11 . 2010-02-10 19:17:25 -------- d-----w- C:\Program Files\Driver Checker

2010-02-10 19:05:18 . 2010-02-10 19:05:18 -------- d-----w- C:\Program Files\Common Files\Wise Installation Wizard

2010-02-10 16:47:34 . 2010-02-10 16:47:36 -------- d-----w- C:\Program Files\AdvancedDefrag

2010-02-10 15:13:21 . 2003-04-01 05:56:20 65536 ----a-w- C:\WINDOWS\system32\vbalIcoM6.dll

2010-02-10 15:13:21 . 2003-01-26 14:48:58 147456 ----a-w- C:\WINDOWS\system32\vbzip11.dll

2010-02-10 15:13:21 . 2003-01-26 11:41:24 40960 ----a-w- C:\WINDOWS\system32\SSubTmr6.dll

2010-02-10 15:13:21 . 2002-07-03 07:22:04 233472 ----a-w- C:\WINDOWS\system32\XDockFloat.dll

2010-02-10 15:13:21 . 1998-12-02 08:11:02 143360 ----a-w- C:\WINDOWS\system32\vbuzip10.dll

2010-02-10 15:13:20 . 2010-02-10 15:13:20 -------- d-----w- C:\Program Files\Veign

2010-02-10 11:20:44 . 2010-02-10 11:20:44 -------- d-----w- C:\Program Files\QuickPar

2010-02-10 06:09:59 . 2010-02-10 06:09:59 -------- d-----w- C:\Documents and Settings\All Users\Application Data\BVRP Software

2010-02-10 06:09:48 . 2010-02-10 06:09:48 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Avanquest

2010-02-10 06:06:28 . 2010-02-10 06:06:28 -------- d-----w- C:\Program Files\Avanquest

2010-02-09 13:49:11 . 2010-02-09 13:49:11 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Malwarebytes

2010-02-09 13:49:05 . 2010-01-07 15:07:14 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

2010-02-09 13:49:04 . 2010-02-19 13:23:44 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware

2010-02-09 13:49:04 . 2010-02-09 13:49:04 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2010-02-09 13:49:04 . 2010-01-07 15:07:04 19160 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys

2010-02-09 13:21:31 . 2010-02-09 13:21:52 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\ACD Systems

2010-02-09 13:21:31 . 2010-02-09 13:21:31 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\ACD Systems

2010-02-09 13:19:54 . 2010-02-10 06:32:52 -------- d-----w- C:\Program Files\Common Files\ACD Systems

2010-02-09 13:16:20 . 2010-02-09 13:16:20 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Downloaded Installations

2010-02-09 13:15:10 . 2010-02-05 21:02:48 -------- d-----w- C:\Program Files\ACDSee Photomanager 9 NL

2010-02-09 13:09:38 . 2010-01-07 19:20:22 93096 ----a-w- C:\WINDOWS\system32\IncContxMenu.dll

2010-02-09 13:09:38 . 2010-01-07 19:20:14 2169256 ----a-w- C:\WINDOWS\system32\Incinerator.dll

2010-02-09 13:09:35 . 2009-08-26 13:42:00 30208 ----a-w- C:\WINDOWS\system32\iolobtdfg.exe

2010-02-09 13:09:35 . 2009-08-26 13:42:00 12288 ----a-w- C:\WINDOWS\system32\smrgdf.exe

2010-02-09 13:09:33 . 2010-02-09 13:09:33 -------- d-----w- C:\Program Files\iolo

2010-02-09 11:05:39 . 2010-02-11 16:47:05 -------- d---a-w- C:\Documents and Settings\All Users\Application Data\TEMP

2010-02-09 11:04:13 . 2010-02-11 16:48:44 -------- d-----w- C:\Program Files\Common Files\PC Tools

2010-02-09 10:21:05 . 2010-02-09 10:21:05 -------- d-----w- C:\Program Files\Photodex Presenter

2010-02-09 10:20:06 . 2010-02-09 10:20:06 -------- d-----w- C:\Program Files\Photodex

2010-02-09 09:17:03 . 2010-02-09 09:17:03 -------- d-----w- C:\Program Files\Common Files\xing shared

2010-02-09 09:15:09 . 2010-02-09 09:15:09 -------- d-----w- C:\Program Files\Real

2010-02-09 09:15:03 . 2010-02-09 09:18:15 -------- d-----w- C:\Program Files\Common Files\Real

2010-02-09 09:06:35 . 2010-02-09 10:24:01 -------- d-----w- C:\Documents and Settings\All Users\Application Data\NOS

2010-02-09 08:21:26 . 2010-02-09 08:21:26 -------- d-----w- C:\Program Files\Plugin Manager

2010-02-09 08:16:14 . 2010-02-09 08:16:14 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Sonic

2010-02-09 08:16:10 . 2010-02-09 08:16:10 -------- d-----w- C:\Program Files\Common Files\Sonic

2010-02-09 08:14:38 . 2010-02-09 08:14:38 -------- d-----w- C:\Program Files\Sonic

2010-02-09 08:12:22 . 2010-02-19 15:08:00 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\HDD Thermometer

2010-02-09 08:11:30 . 2010-02-09 08:11:30 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage

2010-02-09 08:11:19 . 2010-02-09 08:11:19 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Office Genuine Advantage

2010-02-09 08:04:11 . 1999-10-21 18:06:32 59392 ----a-w- C:\WINDOWS\system32\imhost32.dll

2010-02-09 08:04:11 . 1999-10-21 10:06:30 304640 ----a-w- C:\WINDOWS\system32\imgman32.dll

2010-02-09 08:04:11 . 1998-05-05 20:19:58 210944 ----a-w- C:\WINDOWS\system32\Msvcrt10.dll

2010-02-09 08:04:08 . 2010-02-09 08:04:11 -------- d-----w- C:\Program Files\Plugin Commander Light

2010-02-09 07:57:59 . 2005-03-07 18:44:18 45056 ----a-w- C:\WINDOWS\system32\PhDi2.sys

2010-02-09 07:57:40 . 2010-02-09 07:57:40 -------- d-----w- C:\Program Files\Panasonic

2010-02-09 07:57:15 . 2010-02-09 07:57:15 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\InstallShield

2010-02-09 07:50:40 . 2010-02-17 11:52:24 -------- d-----w- C:\Program Files\Ahead

2010-02-09 07:50:16 . 2010-02-17 12:04:47 -------- d-----w- C:\Program Files\GoldEsel

2010-02-09 07:02:53 . 2010-02-09 07:03:03 -------- d-----w- C:\Program Files\Flash Movie Player

2010-02-09 07:02:26 . 2010-02-09 07:02:26 -------- d-----w- C:\Program Files\DAMN NFO Viewer

2010-02-08 19:49:03 . 2010-02-08 19:49:03 552 ----a-w- C:\WINDOWS\system32\d3d8caps.dat

2010-02-08 19:22:52 . 2010-02-09 06:30:51 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Corel

2010-02-08 19:14:43 . 2010-02-08 19:14:43 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Ulead Systems

2010-02-08 19:13:09 . 2010-02-08 19:13:09 -------- d-----w- C:\WINDOWS\system32\windows media

2010-02-08 19:08:57 . 2010-02-08 19:13:10 -------- d--h--w- C:\WINDOWS\msdownld.tmp

2010-02-08 19:06:55 . 2010-02-08 19:06:55 -------- d-----w- C:\Documents and Settings\All Users\Application Data\InterVideo

2010-02-08 19:06:36 . 2010-02-17 12:04:47 -------- d--h--w- C:\Program Files\InstallShield Installation Information

2010-02-08 18:59:02 . 2010-02-08 19:00:48 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Corel

2010-02-08 18:45:36 . 2010-02-08 18:45:36 -------- d-----w- C:\Program Files\Common Files\Protexis

2010-02-08 18:40:26 . 2010-02-08 18:40:26 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Corel

2010-02-08 18:14:05 . 2010-02-08 18:43:21 -------- d-----w- C:\Program Files\Common Files\Corel

2010-02-08 18:10:15 . 2010-02-08 18:10:15 -------- d-----w- C:\Program Files\Windows Media Components

2010-02-08 18:07:28 . 2010-02-17 19:31:02 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Ulead Systems

2010-02-08 18:07:28 . 2010-02-08 18:07:29 -------- d-----w- C:\Program Files\Common Files\Ulead Systems

2010-02-08 18:06:40 . 2010-02-08 19:02:43 -------- d-----w- C:\Program Files\Corel

2010-02-08 14:57:51 . 2006-03-28 07:55:42 155648 ----a-w- C:\WINDOWS\system32\ssleay32.dll

2010-02-08 14:57:51 . 2006-03-28 07:54:46 696320 ----a-w- C:\WINDOWS\system32\libeay32.dll

2010-02-08 14:44:22 . 2010-02-08 14:44:22 -------- d-----w- C:\Documents and Settings\Administrator\Local Settings\Application Data\Centered Systems

2010-02-08 14:41:43 . 2005-07-13 13:26:18 493400 ----a-w- C:\WINDOWS\system32\XceedZip.dll

2010-02-08 14:41:40 . 2010-02-08 14:42:03 -------- d-----w- C:\Program Files\SecCopy

2010-02-08 14:18:08 . 2010-02-08 14:18:08 -------- d-----w- C:\Documents and Settings\LocalService\Application Data\iolo

2010-02-08 13:59:10 . 2010-02-09 13:11:59 -------- d-----w- C:\Documents and Settings\All Users\Application Data\iolo

2010-02-08 13:59:10 . 2010-02-09 13:04:04 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\iolo

2010-02-08 13:56:12 . 2010-02-08 13:56:49 -------- d-----w- C:\Documents and Settings\Administrator\Application Data\Total Recorder Editor Pro

2010-02-08 13:26:47 . 2010-02-08 13:28:28 -------- d-----w- C:\Program Files\Error Repair Professional

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-19 15:11:38 . 2010-02-06 21:57:52 32 --sha-w- C:\WINDOWS\system32\drivers\fidbox.idx

2010-02-19 15:05:28 . 2010-02-06 21:57:52 231368 --sha-w- C:\WINDOWS\system32\drivers\fidbox2.idx

2010-02-19 13:22:06 . 2010-02-19 13:22:03 5115824 ----a-w- C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe

2010-02-19 09:47:53 . 2010-02-19 09:47:53 388096 ----a-r- C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe

2010-02-11 05:33:03 . 2010-02-11 05:28:55 -------- d-----w- C:\Program Files\Realtek

2010-02-09 19:23:52 . 2008-05-21 12:00:00 91688 ----a-w- C:\WINDOWS\system32\perfc013.dat

2010-02-09 19:23:52 . 2008-05-21 12:00:00 511526 ----a-w- C:\WINDOWS\system32\perfh013.dat

2010-02-09 10:21:01 . 2010-02-09 10:21:05 122880 ----a-w- C:\Documents and Settings\Administrator\Application Data\Mozilla\Plugins\npPxPlay.dll

2010-02-09 09:15:09 . 2003-03-19 02:14:52 499712 ----a-w- C:\WINDOWS\system32\msvcp71.dll

2010-02-09 09:07:06 . 2010-02-09 09:06:59 1956528 ----a-w- C:\Documents and Settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player_ax.exe

2010-02-09 06:25:10 . 2010-02-08 19:18:09 2516 --sha-w- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys

2010-02-09 06:25:10 . 2010-02-08 19:18:09 2516 --sha-w- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys

2010-02-08 21:14:00 . 2010-02-06 20:28:08 86327 ----a-w- C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat

2010-02-08 19:22:18 . 2010-02-08 19:18:09 88 --sh--r- C:\Documents and Settings\All Users\Application Data\9FBFD7CD98.sys

2010-02-08 19:22:18 . 2010-02-08 19:18:09 88 --sh--r- C:\Documents and Settings\All Users\Application Data\9FBFD7CD98.sys

2010-02-08 17:21:20 . 2010-02-08 17:21:20 518 ----a-w- C:\Documents and Settings\Administrator\Application Data\iolo\Registry\Last\restore.bat

2010-02-08 17:20:22 . 2010-02-08 17:20:22 523 ----a-w- C:\Documents and Settings\Administrator\Application Data\iolo\restore.bat

2010-02-08 13:55:22 . 2010-02-08 13:54:56 -------- d-----w- C:\Program Files\Total Recorder Editor Pro

2010-02-08 13:19:24 . 2010-02-08 13:19:24 47360 ----a-w- C:\Documents and Settings\Administrator\Application Data\pcouffin.sys

2010-02-08 13:19:24 . 2010-02-08 13:19:24 47360 ----a-w- C:\Documents and Settings\Administrator\Application Data\pcouffin.sys

2010-02-06 23:32:47 . 2010-02-06 20:44:57 -------- d-----w- C:\Program Files\Microsoft Silverlight

2010-02-06 21:01:39 . 2010-02-06 20:19:20 -------- d-----w- C:\Program Files\Windows Sidebar

2010-02-06 20:59:57 . 2010-02-06 20:59:57 -------- d-----w- C:\Program Files\Windows Journal Viewer

2010-02-06 20:53:57 . 2010-02-06 20:53:57 55533 ----a-w- C:\WINDOWS\BricoPackUninst.cmd

2010-02-06 20:53:57 . 2010-02-06 20:52:08 6120 ----a-w- C:\WINDOWS\BricoPackFoldersDelete.cmd

2010-02-06 20:53:57 . 2008-05-21 12:00:00 219136 ----a-w- C:\WINDOWS\system32\uxtheme.dll

2010-02-06 20:50:10 . 2010-02-06 20:50:10 717296 ----a-w- C:\WINDOWS\system32\drivers\sptd.sys

2010-02-06 20:50:04 . 2010-02-06 20:49:11 -------- d-----w- C:\Program Files\Java

2010-02-06 20:49:08 . 2010-02-06 20:49:08 -------- d-----w- C:\Program Files\Common Files\Java

2010-02-06 20:45:40 . 2010-02-06 20:45:40 -------- d-----w- C:\Program Files\Alky for Applications

2010-02-06 20:41:24 . 2010-02-06 20:57:54 86 ----a-w- C:\Documents and Settings\Administrator\DelDB1.bat

2010-02-06 20:41:24 . 2010-02-06 20:54:55 86 ----a-w- C:\WINDOWS\system32\config\systemprofile\DelDB1.bat

2010-02-06 20:41:24 . 2010-02-06 20:41:24 86 ----a-w- C:\Documents and Settings\Default User\DelDB1.bat

2010-02-06 20:36:34 . 2010-02-06 20:36:34 -------- d-----w- C:\Program Files\MSBuild

2010-02-06 20:36:15 . 2010-02-06 20:36:15 -------- d-----w- C:\Program Files\Reference Assemblies

2010-02-06 20:22:12 . 2010-02-06 20:22:13 21748 ----a-w- C:\WINDOWS\system32\emptyregdb.dat

2010-02-06 20:19:22 . 2010-02-06 20:19:21 -------- d-----w- C:\Program Files\VistaExperience.org

2010-02-06 20:19:18 . 2010-02-06 20:19:18 -------- d-----w- C:\Program Files\Utilities

2010-02-06 20:16:02 . 2010-02-06 20:15:40 -------- d-----w- C:\Program Files\Windows Media Connect 2

2009-12-31 16:50:03 . 2008-05-21 12:00:00 353792 ----a-w- C:\WINDOWS\system32\drivers\srv.sys

2009-12-21 19:10:30 . 2008-05-21 12:00:00 916480 ----a-w- C:\WINDOWS\system32\wininet.dll

2009-12-17 07:42:53 . 2010-02-06 20:15:07 345600 ----a-w- C:\WINDOWS\system32\mspaint.exe

2009-12-14 07:10:21 . 2008-05-21 12:00:00 33280 ----a-w- C:\WINDOWS\system32\csrsrv.dll

2009-12-09 10:11:52 . 2008-05-21 12:00:00 2149888 ----a-w- C:\WINDOWS\system32\ntoskrnl.exe

2009-12-09 10:11:52 . 2008-05-11 12:51:04 2028544 ----a-w- C:\WINDOWS\system32\ntkrnlpa.exe

2009-12-04 18:22:22 . 2008-05-21 12:00:00 455424 ----a-w- C:\WINDOWS\system32\drivers\mrxsmb.sys

2009-11-27 17:14:13 . 2008-05-21 12:00:00 1295872 ----a-w- C:\WINDOWS\system32\quartz.dll

2009-11-27 17:14:12 . 2008-04-14 22:32:34 17920 ----a-w- C:\WINDOWS\system32\msyuv.dll

2009-11-27 16:10:19 . 2008-05-21 12:00:00 85504 ----a-w- C:\WINDOWS\system32\avifil32.dll

2009-11-27 16:10:19 . 2008-05-21 12:00:00 28672 ----a-w- C:\WINDOWS\system32\msvidc32.dll

2009-11-27 16:10:19 . 2008-05-21 12:00:00 11264 ----a-w- C:\WINDOWS\system32\msrle32.dll

2009-11-27 16:10:19 . 2008-04-14 22:32:30 48128 ----a-w- C:\WINDOWS\system32\iyuv_32.dll

2009-11-27 16:10:19 . 2001-09-06 21:27:04 8704 ----a-w- C:\WINDOWS\system32\tsbyuv.dll

2009-11-21 16:03:19 . 2008-05-21 12:00:00 471552 ----a-w- C:\WINDOWS\AppPatch\aclayers.dll

2003-09-09 07:39:20 . 2003-09-09 22:28:08 1172480 ----a-w- C:\Program Files\PGE_PlugIn.8bf

2003-06-01 10:02:32 . 2003-06-01 21:05:35 6138368 ----a-w- C:\Program Files\MysticalTTC.exe

2003-05-28 16:50:12 . 2003-06-01 21:05:35 1408000 ----a-w- C:\Program Files\Mystical_PlugIn_TTC.8bf

2003-01-31 03:43:19 . 2003-01-20 12:07:54 6065152 ----a-w- C:\Program Files\Mystical.exe

2003-01-30 18:20:26 . 2003-01-20 12:07:55 1396736 ----a-w- C:\Program Files\Mystical_PlugIn.8bf

2001-07-17 16:15:08 . 2002-09-19 12:20:36 66680 ------w- C:\Program Files\ARDS1.ttf

.

------- Sigcheck -------

[-] 2008-05-21 12:00:00 . 0667A612D847BD87667F3CB1FC4C0D6C . 979456 . . [6.00.2900.5512 (xpsp.080413-2105)] . . C:\WINDOWS\explorer.exe

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"VisualTaskTips"="C:\Program Files\Utilities\VisualTaskTips\VisualTaskTips.exe" [2007-09-05 10:20:12 36352]

"SkinClock"="C:\Program Files\Desktop Tray Clock\DTClock.exe" [2007-10-22 14:49:12 563519]

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-04-09 08:23:20 1275392]

"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe" [2010-02-08 11:02:12 2530240]

"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2010-02-08 13:07:06 4608]

"Second Copy"="C:\Program Files\SecCopy\SecCopy.exe" [2006-04-18 11:59:46 2643456]

"RSD_HDDThermo"="E:\Downloads Newsleecher\alt.binaries.cd.image\Thermometer HDD\HDD Thermometer.exe" [2004-04-12 07:50:36 249856]

"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 15:44:30 3883856]

"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2010-02-08 15:49:54 349640]

"FTD Watchdog Monitor"="C:\Program Files\FTD Watchdog\FtdMonitor.exe" [2009-03-14 09:38:46 176640]

"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-05-21 12:00:00 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"VistaDrive"="C:\WINDOWS\VistaDrive\VistaDrive.exe" [2006-10-05 19:56:28 280779]

"SkinClock"="C:\Program Files\Desktop Tray Clock\DTClock.exe" [2007-10-22 14:49:12 563519]

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 14:57:56 948672]

"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 09:50:42 155648]

"Standby"="c:\Program Files\Common Files\Corel\Standby\Standby.exe" [2010-01-07 12:09:38 105632]

"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 00:01:00 110592]

"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2010-02-09 09:15:08 198160]

"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2009-10-22 13:29:12 141336]

"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2009-10-22 13:28:58 173592]

"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2009-10-22 13:29:08 142872]

"BCU"="C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-10-26 12:15:56 375000]

"RTHDCPL"="RTHDCPL.EXE" [2009-05-21 13:01:02 17881600]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2009-11-10 22:08:18 417792]

"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2008-02-08 18:36:14 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-05-21 12:00:00 15360]

"VisualTaskTips"="C:\Program Files\Utilities\VisualTaskTips\VisualTaskTips.exe" [2007-09-05 10:20:12 36352]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"PackNoVs"="C:\WINDOWS\BricoPacks\Vista Inspirat 2\pack-it.exe" [2007-04-22 08:18:34 98304]

C:\Documents and Settings\Administrator\Menu Start\Programma's\Opstarten\

Dialog Helper.lnk - C:\Program Files\Avanquest\PowerDesk\pddlghlp.exe [2008-4-22 46336]

LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2009-12-16 503808]

Webshots.lnk - C:\Program Files\Webshots\3.1.5.7617\Launcher.exe [2010-2-7 157088]

C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\

RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-3-18 630784]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\system]

"SetVisualStyle"= C:\WINDOWS\Resources\Themes\Inspirat2\Inspirat2.msstyles

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"ForceClassicControlPanel"= 1 (0x1)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0pgdfgsvc C 1\0smrgdf C:\Documents and Settings\Administrator\Application Data\iolo"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^PHOTOfunSTUDIO -viewer-.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\PHOTOfunSTUDIO -viewer-.lnk

backup=C:\WINDOWS\pss\PHOTOfunSTUDIO -viewer-.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^RocketDock.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\RocketDock.lnk

backup=C:\WINDOWS\pss\RocketDock.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\WinZip Quick Pick.lnk

backup=C:\WINDOWS\pss\WinZip Quick Pick.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]

2006-09-28 19:21:04 57344 ----a-w- C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryMechanic]

2009-10-14 14:43:06 3217368 ----a-w- C:\Program Files\Registry Mechanic\RegMech.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]

2009-12-21 05:45:56 39424 ----a-w- C:\Program Files\Winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]

"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"C:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"C:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=

"C:\\Program Files\\IncrediMail\\Bin\\IncMail.exe"=

"C:\\Program Files\\IncrediMail\\Bin\\ImApp.exe"=

"C:\\Program Files\\IncrediMail\\Bin\\ImpCnt.exe"=

"C:\\Program Files\\IncrediMail\\Bin\\ImLc.exe"=

"C:\\Program Files\\LimeWire\\LimeWire.exe"=

R0 PQV2i;PQV2i;C:\WINDOWS\system32\drivers\PQV2i.sys [12-9-2003 14:19:44 132899]

R0 sptd;sptd;C:\WINDOWS\system32\drivers\sptd.sys [6-2-2010 21:50:10 717296]

R1 PQIMount;PQIMount;C:\WINDOWS\system32\drivers\PQIMount.sys [12-9-2003 14:48:10 46810]

R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [18-9-2009 4:54:20 169312]

R2 AGCoreService;AG Core Services;C:\Program Files\AGI\core\4.2.0.10752\AGCoreService.exe [7-2-2010 20:06:41 20480]

R2 BCUService;Browser Configuration Utility Service;C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [26-10-2009 13:16:00 223464]

R2 ioloFileInfoList;iolo FileInfoList Service;C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [9-2-2010 14:09:37 650672]

R2 ioloSystemService;iolo System Service;C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe [9-2-2010 14:09:37 650672]

R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [9-2-2010 12:04:13 583640]

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\drivers\klim5.sys [13-12-2007 14:28:40 24592]

S3 Ambfilt;Ambfilt;C:\WINDOWS\system32\drivers\Ambfilt.sys [11-2-2010 6:28:57 1684736]

S3 camvid20;Philips ToUcam Camera; Video;C:\WINDOWS\system32\drivers\camdrv21.sys [15-2-2010 0:27:28 223232]

S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [7-2-2010 17:34:48 1527900]

S3 UPnPService;UPnPService;C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [7-2-2010 17:38:47 544768]

--- Andere Services/Drivers In Geheugen ---

*Deregistered* - uphcleanhlp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D58F39FF-953E-4F45-898F-59F243B9A523}]

2009-03-08 03:32:48 128512 ----a-w- C:\WINDOWS\system32\advpack.dll

.

Inhoud van de 'Gedeelde Taken' map

2010-02-17 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34:12 . 2008-07-30 11:34:12]

2010-02-19 C:\WINDOWS\Tasks\OGALogon.job

- C:\WINDOWS\system32\OGAEXEC.exe [2009-08-03 14:07:42 . 2009-08-03 14:07:42]

2010-02-19 C:\WINDOWS\Tasks\User_Feed_Synchronization-{930FA912-4D07-4B41-8D9B-53FF8F9C0008}.job

- C:\WINDOWS\system32\msfeedssync.exe [2010-02-06 20:18:43 . 2009-03-08 03:31:54]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.startkabel.nl/

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

FF - ProfilePath - C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\7c7kpfnc.default\

FF - plugin: C:\Documents and Settings\Administrator\Application Data\Mozilla\plugins\npPxPlay.dll

FF - plugin: C:\Program Files\Microsoft\Office Live\npOLW.dll

FF - plugin: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "Firefox web browser | Faster, more secure, & customizable");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

.

.

------- Bestandsassociaties -------

.

JSEFile=NOTEPAD.EXE %1

.

- - - - ORPHANS VERWIJDERD - - - -

Toolbar-{9b339f6e-ddcd-401b-8764-230adbd01761} - (no file)

WebBrowser-{9B339F6E-DDCD-401B-8764-230ADBD01761} - (no file)

HKLM-Run-Corel File Shell Monitor - c:\Program Files\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe

MSConfigStartUp-SpywareCease - C:\Program Files\Spyware Cease\SpywareCease.exe

[marianmer]

Halo Kape,

Internet is iets sneller geworden, maar de PC isverder haast niet vooruit te branden.

Progamma's openen heel traag, en kan haast geen merdere dingen tegelijkertijd doen.

Ik had me dat anders voorgesteld met 4 Gig. werkgeheugen.

Dus ik hoop dat je een oplossing hebt?

[stegisoft]

Je ziet onderaan heel veel icoontjes.

Deze worden mee opgestart met uw computer.

Dat zijn geheugenvreters.

Veel van uw programma hoeven niet opgestart worden.

Limwire opstarten met de computer hoeft niet. Wilt je het toch wel dan moet je ook aanvaarden dat die veel geheugen vraagt.

Moet messenger met de computer opgestart worden.

Sidebar is mooi maar hebt je dat wel nodig. Het verbruikt heel veel geheugen.

Zo zijn er nog programma die onnodig opgestart worden.

Ik heb ook messenger maar die wordt niet met de computer opgestart.

Wil ik messenger dan start ik die gewoon en daarna sluit ik weer.

[marianmer]

Ja begrijp ik, maaar het vreemde is dat het cpu gebruik als ik bezig ben met de PC een procent of 3 tot 4 is, dus daar ligt het niet aan.

[kape]

Heb je identieke problemen als je de PC eens in "veilige modus" laat werken ?

[marianmer]

Ga ik zo meteen even doen.

Zou het misschien ook zo kunnen zijn dat quad core processor of het geheugen niet werkt met Windows Xp,omdat het eerst een Windows 7 PC was?

20 februari 2010 aangepast door marianmer

[marianmer]

in veilige modus is hij ook niet supersnel!

[marianmer]

Waarschijnlijk de oplossing gevonden, omdat het cpu verbruik ook zo laag was. We hadden de schijf er uit gehaald en heel tevallig stond daar informatie op, dat als je de WD schijf geschikt wilde maken voor Windows XP je align software moest installeren.

De loopt nu al anderhalve dag (is met behoud van data) en zal morgen klaar zijn.

laten we hopen dat dat de oplossing is van het probleem, maar moet haast wel.

In ieder geval bedankt voor al jullie hulp!