Ga naar inhoud

Pc vernieuwen


bernard

Aanbevolen berichten

  • Reacties 85
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Nu kom je bij het tweede gedeelte van bericht #24:

  • Klik op Scan.
  • Klik vervolgens op Clean.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.

Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[s0].txt.

Logbestand plaatsen

  • Voeg het logbestand met de naam C:\AdwCleaner\AdwCleaner[s0].txt als bijlage toe aan het volgende bericht.
  • Hoe u een bijlage kunt toevoegen aan het bericht leest u hier.

Link naar reactie
Delen op andere sites

En toen had ik ook een mooi logje .

Maar toen ik het wilde versturen naar jullie was alles weg , en kreeg het beeld : de webpagina kan niet worden weergegeven , en moet ik de verbindingsproblemen vast stellen .

De uitkomst daarvan is :

er kan geen internetverbinding via HTTP,HTTPS, of FTP wordengemaakt.

Dit wordt waarschijnlijk veroorzaakt door de instellingen van de firewall op deze computer .

Controleer de instellingen van de firewall voor HTTP poort ( 80 HTTPS- poort ( 21 )

Als ik firewall controleer staat deze gewoon aangevinkt

Link naar reactie
Delen op andere sites

Nog even een aanvulling op de vorige :

Volgens mij is het mis gegaan bij opdracht #34 . Daarna kreeg ik het scherm webpagina kan niet ......

Stond er in foto # 31 iets aangevinkt wat niet moest misschien ?

ik vind dit echt balen , want we zaten heel dicht bij een leuk draaiende computer .

Mocht ik iets fout hebben gedaan , dan sorry !

Link naar reactie
Delen op andere sites

Op het eerste zicht lijkt dat niet het geval te zijn. Wat je nu best doet is de PC met Systeemherstel terugzetten naar een ouder herstelpunt (best eentje van eergisteren, als dat aanwezig is bij de herstelpunten). Dan zet je de PC terug naar zijn toestand van die dag en zijn alle (mogelijke) foute bewerkingen hersteld. Probeer dit eerst even ... en laat dan weten of dit gelukt is ?

Link naar reactie
Delen op andere sites

Logfile of random's system information tool 1.10 (written by random/random)

Run by Gerda at 2014-08-12 13:33:09

Microsoft Windows XP Home Edition Service Pack 3

System drive C: has 135 GB (89%) free of 153 GB

Total RAM: 510 MB (13% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:33:17, on 12-8-2014

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ACS.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Apoint2K\Apoint.exe

C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

C:\WINDOWS\AGRSMMSG.exe

C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe

C:\Program Files\TOSHIBA\TouchPad\TPTray.exe

C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe

C:\WINDOWS\system32\ZoomingHook.exe

C:\WINDOWS\system32\TCtrlIOHook.exe

C:\WINDOWS\system32\TPSMain.exe

C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe

C:\Program Files\Apoint2K\Apntex.exe

C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe

C:\Program Files\TOSHIBA\Tvs\TvsTray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\WINDOWS\system32\TPSBattM.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

C:\Program Files\Java\jre7\bin\jqs.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\RSIT[1].exe

C:\Program Files\trend micro\Gerda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = WebSearches

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Webssearches}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = {searchTerms - (13)}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = {searchTerms - (13)}

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl | Jouw startpagina voor weer, verkeer en meer

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = WebSearches

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Webssearches}

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Webssearches}

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Gadgetbox Search

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = {searchTerms - (13)}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = {searchTerms - (13)}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Webssearches}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = Webssearches}

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe

O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe

O4 - HKLM\..\Run: [TOSHIBA Accessibility] C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe

O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP

O4 - HKLM\..\Run: [sVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL

O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe

O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe

O4 - HKLM\..\Run: [TPSMain] TPSMain.exe

O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe

O4 - HKLM\..\Run: [TFncKy] TFncKy.exe

O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: DesktopWeatherAlerts.lnk = C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\DesktopWeatherAlertsApp.exe

O4 - Startup: Weather Alerts.lnk = C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

O8 - Extra context menu item: &Search - http://tbedits.videodownloadconverter.com/one-toolbaredits/menusearch.jhtml?s=205320000&p2=^HJ^xdm069^YY^nl&si=pconverter&a=E2693A0F-6DE3-4CD5-929D-B4A2AE06A7D7&n=2013021607&cv=2

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1296993521765

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe

--

End of file - 10237 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

C:\WINDOWS\tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

C:\WINDOWS\tasks\bench-S-1-5-21-1705022645-2691431146-1015858574-1007.job - C:\Program Files\Bench\Updater\updater.exe -runmode=checkupdate

C:\WINDOWS\tasks\bench-sys.job - C:\Program Files\Bench\Updater\updater.exe -runmode=checkupdate

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges

C:\WINDOWS\tasks\Microsoft Windows XP - aanmelding voor kennisgeving over einde van service.job - C:\WINDOWS\system32\xp_eos.exe -c

C:\WINDOWS\tasks\Microsoft Windows XP - maandelijkse kennisgeving over einde van service.job - C:\WINDOWS\system32\xp_eos.exe

C:\WINDOWS\tasks\MpIdleTask.job - c:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask

C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job - C:\Program Files\RCP\RegCleanPro.exe -default

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]

DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2005-01-14 118842]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]

Search Assistant BHO - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-02-16 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-08-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{ae07101b-46d4-4a98-af68-0333ea26e113}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2003-10-30 192512]

"PadTouch"=C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [2004-12-01 1077327]

"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2004-10-28 88363]

"CeEKEY"=C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [2005-01-21 675840]

"TPNF"=C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [2004-11-29 53248]

"TOSHIBA Accessibility"=C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe [2004-12-07 24576]

"HWSetup"=C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [2004-12-23 28672]

"SVPWUTIL"=C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [2005-02-25 65536]

"Zooming"=C:\WINDOWS\system32\ZoomingHook.exe [2004-07-14 24576]

"TCtryIOHook"=C:\WINDOWS\system32\TCtrlIOHook.exe [2005-02-16 28672]

"TPSMain"=C:\WINDOWS\system32\TPSMain.exe [2005-01-21 266240]

"SmoothView"=C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe [2004-11-15 118784]

"TFncKy"=TFncKy.exe []

"Tvs"=C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [2004-11-12 73728]

"dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2005-01-14 122939]

"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-02-22 339968]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]

"VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe [2013-02-16 42536]

"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2005-03-02 65536]

C:\Documents and Settings\Gerda\Menu Start\Programma's\Opstarten

DesktopWeatherAlerts.lnk - C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\DesktopWeatherAlertsApp.exe

Weather Alerts.lnk - C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2005-02-22 61440]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=1

"NoDriveAutoRun"=67108863

"NoDriveTypeAutoRun"=323

"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Java\jre1.6.0_01\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_01\bin\javaw.exe:*:Enabled:Java Platform SE binary"

"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java Platform SE binary"

"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"midimapper"=midimap.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.trspch"=tssoft32.acm

"vidc.cvid"=iccvid.dll

"vidc.I420"=msh263.drv

"vidc.iv31"=ir32_32.dll

"vidc.iv32"=ir32_32.dll

"vidc.iv41"=ir41_32.ax

"vidc.iyuv"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvu9"=tsbyuv.dll

"vidc.yvyu"=msyuv.dll

"wavemapper"=msacm32.drv

"msacm.msg723"=msg723.acm

"vidc.M263"=msh263.drv

"vidc.M261"=msh261.drv

"msacm.msaudio1"=msaud32.acm

"msacm.sl_anet"=sl_anet.acm

"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax

"vidc.iv50"=ir50_32.dll

"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-08-11 16:33:01 ----D---- C:\Program Files\VideoDownloadConverter_4z

2014-08-11 16:33:01 ----D---- C:\Documents and Settings\Gerda\Application Data\VideoDownloadConverter_4z

2014-08-11 16:33:00 ----D---- C:\Program Files\Giant Savings Extension

2014-08-11 16:33:00 ----D---- C:\Program Files\DealPly

2014-08-11 16:33:00 ----D---- C:\Program Files\cosstminn

2014-08-11 16:33:00 ----D---- C:\Program Files\ComPlus Applications

2014-08-11 16:32:59 ----D---- C:\Program Files\MyPC Backup

2014-08-11 16:32:58 ----D---- C:\SUPPORT

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\webssearches

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\Babylon

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\BabSolution

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\All Users\Application Data\Ask

2014-08-11 16:32:48 ----SHD---- C:\RECYCLER

2014-08-11 16:32:26 ----D---- C:\Program Files\FLVM Player

2014-08-11 16:32:24 ----D---- C:\Program Files\Zebar

2014-08-10 21:56:51 ----D---- C:\AdwCleaner

2014-08-10 18:56:16 ----D---- C:\Documents and Settings\Gerda\Application Data\Protect

2014-08-10 18:54:55 ----D---- C:\Documents and Settings\Gerda\Application Data\{1EDE0D83-B129-4ABC-923B-725D5B0C0DAC}

2014-08-09 19:24:54 ----D---- C:\RECYCLER(2)

2014-08-09 19:00:45 ----D---- C:\WINDOWS\Temp

2014-08-08 15:18:46 ----A---- C:\WINDOWS\system32\javaws.exe

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\javaw.exe

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\java.exe

2014-08-08 07:23:27 ----D---- C:\zoek_backup

2014-08-07 22:00:53 ----D---- C:\0f0b43306f7d6932ea0a7992c9fdf0f5

2014-08-07 20:01:28 ----D---- C:\6ac175bc091376da9a251c

2014-08-07 15:30:29 ----D---- C:\Documents and Settings\All Users\Application Data\AVAST Software

2014-08-07 14:53:24 ----D---- C:\rsit

2014-08-06 19:56:52 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$

2014-08-06 19:20:56 ----D---- C:\WINDOWS\system32\XPSViewer

2014-08-06 19:20:09 ----D---- C:\Program Files\Reference Assemblies

2014-08-06 19:18:28 ----N---- C:\WINDOWS\system32\prntvpt.dll

2014-08-06 19:18:27 ----N---- C:\WINDOWS\system32\xpssvcs.dll

2014-08-06 19:18:27 ----N---- C:\WINDOWS\system32\xpsshhdr.dll

2014-08-06 19:18:25 ----D---- C:\dec4a3b3339f90200e6f2657a9e372

2014-08-04 22:58:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$

2014-08-04 22:52:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$

2014-08-04 22:51:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$

2014-08-04 22:50:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$

2014-08-04 22:50:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$

2014-08-04 22:47:47 ----D---- C:\Program Files\Common Files\DESIGNER

2014-08-04 22:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$

2014-08-04 22:05:53 ----A---- C:\WINDOWS\imsins.BAK

2014-08-04 22:04:23 ----A---- C:\WINDOWS\system32\drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt.sys

2014-08-04 21:38:26 ----D---- C:\Program Files\CCleaner

2014-08-04 19:43:00 ----N---- C:\WINDOWS\system32\xp_eos.exe

2014-08-03 15:16:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$

======List of files/folders modified in the last 1 month======

2014-08-12 13:33:13 ----D---- C:\Program Files\Trend Micro

2014-08-12 13:29:02 ----D---- C:\WINDOWS\Microsoft.NET

2014-08-12 08:40:02 ----SHD---- C:\WINDOWS\Installer

2014-08-12 08:40:02 ----D---- C:\WINDOWS\WinSxS

2014-08-12 08:40:02 ----D---- C:\Config.Msi

2014-08-12 08:40:00 ----D---- C:\Program Files\Common Files\Microsoft Shared

2014-08-12 00:10:36 ----A---- C:\WINDOWS\SchedLgU.Txt

2014-08-11 16:33:50 ----D---- C:\WINDOWS\system32\config

2014-08-11 16:33:28 ----D---- C:\WINDOWS\system32\wbem

2014-08-11 16:33:28 ----D---- C:\WINDOWS\Registration

2014-08-11 16:32:50 ----D---- C:\WINDOWS

2014-08-11 16:32:22 ----D---- C:\WINDOWS\system32

2014-08-10 22:45:16 ----D---- C:\WINDOWS\network diagnostic

2014-08-10 22:31:18 ----D---- C:\WINDOWS\system32\drivers

2014-08-10 22:31:15 ----D---- C:\Program Files

2014-08-10 20:32:54 ----SD---- C:\WINDOWS\Tasks

2014-08-10 20:27:12 ----D---- C:\WINDOWS\Prefetch

2014-08-08 17:42:37 ----A---- C:\WINDOWS\win.ini

2014-08-08 16:36:10 ----RSD---- C:\WINDOWS\assembly

2014-08-08 15:18:54 ----D---- C:\Program Files\Common Files\Java

2014-08-08 15:18:08 ----D---- C:\Program Files\Java

2014-08-07 16:16:07 ----D---- C:\WINDOWS\system32\CatRoot2

2014-08-07 16:03:41 ----D---- C:\Program Files\Microsoft Security Client

2014-08-06 19:57:26 ----D---- C:\WINDOWS\inf

2014-08-06 19:57:14 ----D---- C:\WINDOWS\system32\CatRoot

2014-08-06 19:57:01 ----RSHDC---- C:\WINDOWS\system32\dllcache

2014-08-06 19:31:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2014-08-06 19:20:43 ----D---- C:\WINDOWS\system32\en-US

2014-08-06 19:20:40 ----D---- C:\Program Files\MSBuild

2014-08-06 19:20:29 ----RSD---- C:\WINDOWS\Fonts

2014-08-06 19:19:08 ----D---- C:\WINDOWS\system32\spool

2014-08-05 19:04:40 ----D---- C:\Program Files\Microsoft Silverlight

2014-08-04 22:57:25 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help

2014-08-04 22:52:51 ----D---- C:\WINDOWS\ie8updates

2014-08-04 22:47:47 ----D---- C:\Program Files\Common Files

2014-08-04 22:19:59 ----D---- C:\WINDOWS\system32\MRT

2014-08-04 22:13:17 ----D---- C:\WINDOWS\Debug

2014-08-04 22:05:45 ----D---- C:\Program Files\Internet Explorer

2014-08-04 21:21:35 ----D---- C:\Program Files\Google

2014-08-04 21:13:00 ----D---- C:\Documents and Settings\All Users\Application Data\Google

2014-08-04 19:32:06 ----D---- C:\Documents and Settings

2014-08-03 15:20:51 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 drvmcdb;drvmcdb; C:\WINDOWS\system32\drivers\drvmcdb.sys [2004-08-17 87168]

R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2014-01-25 231960]

R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-02-23 43872]

R1 {9f93bd66-d3d2-427d-b37f-743603e2388d}Gt;{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt; C:\WINDOWS\system32\drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt.sys [2014-07-25 55224]

R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]

R1 SerTVOutCtlr;TOSHIBA Controls Driver -EPIOMngr; C:\WINDOWS\system32\drivers\EPIOMngr.sys [2004-07-30 6400]

R1 SrvcEKIOMngr;SrvcEKIOMngr; C:\WINDOWS\System32\Drivers\EKIoMngr.sys [2004-07-29 6400]

R1 SrvcSSIOMngr;SrvcSSIOMngr; C:\WINDOWS\System32\Drivers\SSIoMngr.sys [2004-07-29 6400]

R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-12-02 5627]

R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-12-02 23545]

R1 TPwSav;Common Driver; C:\WINDOWS\System32\Drivers\TPwSav.sys [2005-02-25 8704]

R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-12-23 40544]

R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]

R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.10; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2011-02-06 15890]

R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2005-01-14 25883]

R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2005-01-14 34843]

R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2005-01-14 4123]

R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2005-01-14 2271]

R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2005-01-14 87706]

R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2005-01-14 15227]

R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2005-01-14 6363]

R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2005-01-14 99098]

R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2005-01-14 100603]

R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-10-28 1270572]

R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-10-27 2284864]

R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-05-08 101833]

R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2004-12-22 393600]

R3 Arp1394;1394 ARP-clientprotocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-22 986624]

R3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288]

R3 NIC1394;1394-stuurprogramma; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]

R3 Rasirda;WAN-minipoort (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]

R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-06-28 69760]

R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]

R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-02-11 157056]

R3 Tvs;Toshiba Virtual Sound with SRS technologies; C:\WINDOWS\system32\DRIVERS\Tvs.sys [2005-01-08 29184]

R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]

S1 StickyMesger;StickyMesger; \??\C:\Program Files\TOSHIBA\Accessibility\StickyMesger.sys []

S3 catchme;catchme; \??\C:\DOCUME~1\BERNAR~1\LOCALS~1\Temp\catchme.sys []

S3 rtl8139;NT-stuurprogramma voor Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]

S3 sffdisk;SFF Storage Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]

S3 sffp_sd;Stuurprogramma volgens SFF-opslagprotocol voor SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]

S3 SMCIRDA;SMSC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2004-06-16 46080]

S3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]

S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;Atheros Configuration Service; C:\WINDOWS\system32\ACS.exe [2004-07-07 36864]

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-22 352256]

R2 Irmon;Infraroodmonitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-08-08 182696]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]

R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]

S2 40030ae4;Supporter; c:\progra~1\suppor~1\SupporterSvc.dll,service []

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 135664]

S2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-03 262320]

S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 135664]

S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

- - - Updated - - -

Logfile of random's system information tool 1.10 (written by random/random)

Run by Gerda at 2014-08-12 13:33:09

Microsoft Windows XP Home Edition Service Pack 3

System drive C: has 135 GB (89%) free of 153 GB

Total RAM: 510 MB (13% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:33:17, on 12-8-2014

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ACS.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Apoint2K\Apoint.exe

C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

C:\WINDOWS\AGRSMMSG.exe

C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe

C:\Program Files\TOSHIBA\TouchPad\TPTray.exe

C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe

C:\WINDOWS\system32\ZoomingHook.exe

C:\WINDOWS\system32\TCtrlIOHook.exe

C:\WINDOWS\system32\TPSMain.exe

C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe

C:\Program Files\Apoint2K\Apntex.exe

C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe

C:\Program Files\TOSHIBA\Tvs\TvsTray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\WINDOWS\system32\TPSBattM.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

C:\Program Files\Java\jre7\bin\jqs.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Documents and Settings\Gerda\Local Settings\Temporary Internet Files\Content.IE5\G87U6WV0\RSIT[1].exe

C:\Program Files\trend micro\Gerda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489&q={searchTerms}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPGr6Jy1Ks2e111hOmaVHQAxQHSlVfcqvikmWF5fOHNtCjEKa5Dd2hrra5r9ZYFNVoXlG-oGyh7x_3hLkVBBFpNAbrym2NQhSkcw0euGgntdURKsKyJzOqxj7OKEVar5-6-PyTv50sdFkcCHkoummsYlZ9n2cEPsx_ove4LNWbyX18h3_5nIA,,&q={searchTerms}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPGr6Jy1Ks2e111hOmaVHQAxQHSlVfcqvikmWF5fOHNtCjEKa5Dd2hrra5r9ZYFNVoXlG-oGyh7x_3hLkVBBFpNAbrym2NQhSkcw0euGgntdURKsKyJzOqxj7OKEVar5-6-PyTv50sdFkcCHkoummsYlZ9n2cEPsx_ove4LNWbyX18h3_5nIA,,&q={searchTerms}

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startpagina.nl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?type=ds&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489&q={searchTerms}

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489&q={searchTerms}

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPGr6Jy1Ks2e111hOmaVHQAxQHSlVfcqvikmWF5fOHNtCjEKa5Dd2hrra5r9ZYFNVoXlG-oGyh7x_3hLkVBBFpNAbrym2NQhSkcw0euGgntdURKsKyJzOqxj7OKEVar5-6-PyTv50sdFkcCHkoummsYlZ9n2cEPsx_ove4LNWbyX18h3_5nIA,,&q={searchTerms}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperbar.com/?p=mKO_AwFzXIpYRbPGr6Jy1Ks2e111hOmaVHQAxQHSlVfcqvikmWF5fOHNtCjEKa5Dd2hrra5r9ZYFNVoXlG-oGyh7x_3hLkVBBFpNAbrym2NQhSkcw0euGgntdURKsKyJzOqxj7OKEVar5-6-PyTv50sdFkcCHkoummsYlZ9n2cEPsx_ove4LNWbyX18h3_5nIA,,&q={searchTerms}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://istart.webssearches.com/web/?type=ds&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489&q={searchTerms}

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://istart.webssearches.com/web/?type=ds&ts=1407423989&from=obw&uid=WDCXWD1600BEVE-00A0HT0_WD-WX10E495148951489&q={searchTerms}

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)

O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe

O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe

O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe

O4 - HKLM\..\Run: [TOSHIBA Accessibility] C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe

O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP

O4 - HKLM\..\Run: [sVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL

O4 - HKLM\..\Run: [Zooming] ZoomingHook.exe

O4 - HKLM\..\Run: [TCtryIOHook] TCtrlIOHook.exe

O4 - HKLM\..\Run: [TPSMain] TPSMain.exe

O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe

O4 - HKLM\..\Run: [TFncKy] TFncKy.exe

O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h

O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: DesktopWeatherAlerts.lnk = C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\DesktopWeatherAlertsApp.exe

O4 - Startup: Weather Alerts.lnk = C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

O8 - Extra context menu item: &Search - http://tbedits.videodownloadconverter.com/one-toolbaredits/menusearch.jhtml?s=205320000&p2=^HJ^xdm069^YY^nl&si=pconverter&a=E2693A0F-6DE3-4CD5-929D-B4A2AE06A7D7&n=2013021607&cv=2

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1296993521765

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe

--

End of file - 10237 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

C:\WINDOWS\tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

C:\WINDOWS\tasks\bench-S-1-5-21-1705022645-2691431146-1015858574-1007.job - C:\Program Files\Bench\Updater\updater.exe -runmode=checkupdate

C:\WINDOWS\tasks\bench-sys.job - C:\Program Files\Bench\Updater\updater.exe -runmode=checkupdate

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges

C:\WINDOWS\tasks\Microsoft Windows XP - aanmelding voor kennisgeving over einde van service.job - C:\WINDOWS\system32\xp_eos.exe -c

C:\WINDOWS\tasks\Microsoft Windows XP - maandelijkse kennisgeving over einde van service.job - C:\WINDOWS\system32\xp_eos.exe

C:\WINDOWS\tasks\MpIdleTask.job - c:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask

C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job - C:\Program Files\RCP\RegCleanPro.exe -default

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]

DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2005-01-14 118842]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]

Search Assistant BHO - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-02-16 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-08-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{ae07101b-46d4-4a98-af68-0333ea26e113}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2003-10-30 192512]

"PadTouch"=C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [2004-12-01 1077327]

"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2004-10-28 88363]

"CeEKEY"=C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [2005-01-21 675840]

"TPNF"=C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [2004-11-29 53248]

"TOSHIBA Accessibility"=C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe [2004-12-07 24576]

"HWSetup"=C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [2004-12-23 28672]

"SVPWUTIL"=C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [2005-02-25 65536]

"Zooming"=C:\WINDOWS\system32\ZoomingHook.exe [2004-07-14 24576]

"TCtryIOHook"=C:\WINDOWS\system32\TCtrlIOHook.exe [2005-02-16 28672]

"TPSMain"=C:\WINDOWS\system32\TPSMain.exe [2005-01-21 266240]

"SmoothView"=C:\Program Files\TOSHIBA\TOSHIBA-zoomutility\SmoothView.exe [2004-11-15 118784]

"TFncKy"=TFncKy.exe []

"Tvs"=C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [2004-11-12 73728]

"dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2005-01-14 122939]

"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-02-22 339968]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]

"VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zsrchmn.exe [2013-02-16 42536]

"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2005-03-02 65536]

C:\Documents and Settings\Gerda\Menu Start\Programma's\Opstarten

DesktopWeatherAlerts.lnk - C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\DesktopWeatherAlertsApp.exe

Weather Alerts.lnk - C:\Documents and Settings\Gerda\Local Settings\Application Data\WeatherAlerts\WeatherAlerts.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2005-02-22 61440]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"HonorAutoRunSetting"=1

"NoDriveAutoRun"=67108863

"NoDriveTypeAutoRun"=323

"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Java\jre1.6.0_01\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_01\bin\javaw.exe:*:Enabled:Java Platform SE binary"

"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java Platform SE binary"

"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

"midimapper"=midimap.dll

"msacm.imaadpcm"=imaadp32.acm

"msacm.msadpcm"=msadp32.acm

"msacm.msg711"=msg711.acm

"msacm.msgsm610"=msgsm32.acm

"msacm.trspch"=tssoft32.acm

"vidc.cvid"=iccvid.dll

"vidc.I420"=msh263.drv

"vidc.iv31"=ir32_32.dll

"vidc.iv32"=ir32_32.dll

"vidc.iv41"=ir41_32.ax

"vidc.iyuv"=iyuv_32.dll

"vidc.mrle"=msrle32.dll

"vidc.msvc"=msvidc32.dll

"vidc.uyvy"=msyuv.dll

"vidc.yuy2"=msyuv.dll

"vidc.yvu9"=tsbyuv.dll

"vidc.yvyu"=msyuv.dll

"wavemapper"=msacm32.drv

"msacm.msg723"=msg723.acm

"vidc.M263"=msh263.drv

"vidc.M261"=msh261.drv

"msacm.msaudio1"=msaud32.acm

"msacm.sl_anet"=sl_anet.acm

"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax

"vidc.iv50"=ir50_32.dll

"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm

"wave"=wdmaud.drv

"midi"=wdmaud.drv

"mixer"=wdmaud.drv

======List of files/folders created in the last 1 month======

2014-08-11 16:33:01 ----D---- C:\Program Files\VideoDownloadConverter_4z

2014-08-11 16:33:01 ----D---- C:\Documents and Settings\Gerda\Application Data\VideoDownloadConverter_4z

2014-08-11 16:33:00 ----D---- C:\Program Files\Giant Savings Extension

2014-08-11 16:33:00 ----D---- C:\Program Files\DealPly

2014-08-11 16:33:00 ----D---- C:\Program Files\cosstminn

2014-08-11 16:33:00 ----D---- C:\Program Files\ComPlus Applications

2014-08-11 16:32:59 ----D---- C:\Program Files\MyPC Backup

2014-08-11 16:32:58 ----D---- C:\SUPPORT

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\webssearches

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\Babylon

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\Gerda\Application Data\BabSolution

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect

2014-08-11 16:32:58 ----D---- C:\Documents and Settings\All Users\Application Data\Ask

2014-08-11 16:32:48 ----SHD---- C:\RECYCLER

2014-08-11 16:32:26 ----D---- C:\Program Files\FLVM Player

2014-08-11 16:32:24 ----D---- C:\Program Files\Zebar

2014-08-10 21:56:51 ----D---- C:\AdwCleaner

2014-08-10 18:56:16 ----D---- C:\Documents and Settings\Gerda\Application Data\Protect

2014-08-10 18:54:55 ----D---- C:\Documents and Settings\Gerda\Application Data\{1EDE0D83-B129-4ABC-923B-725D5B0C0DAC}

2014-08-09 19:24:54 ----D---- C:\RECYCLER(2)

2014-08-09 19:00:45 ----D---- C:\WINDOWS\Temp

2014-08-08 15:18:46 ----A---- C:\WINDOWS\system32\javaws.exe

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\javaw.exe

2014-08-08 15:18:34 ----A---- C:\WINDOWS\system32\java.exe

2014-08-08 07:23:27 ----D---- C:\zoek_backup

2014-08-07 22:00:53 ----D---- C:\0f0b43306f7d6932ea0a7992c9fdf0f5

2014-08-07 20:01:28 ----D---- C:\6ac175bc091376da9a251c

2014-08-07 15:30:29 ----D---- C:\Documents and Settings\All Users\Application Data\AVAST Software

2014-08-07 14:53:24 ----D---- C:\rsit

2014-08-06 19:56:52 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$

2014-08-06 19:20:56 ----D---- C:\WINDOWS\system32\XPSViewer

2014-08-06 19:20:09 ----D---- C:\Program Files\Reference Assemblies

2014-08-06 19:18:28 ----N---- C:\WINDOWS\system32\prntvpt.dll

2014-08-06 19:18:27 ----N---- C:\WINDOWS\system32\xpssvcs.dll

2014-08-06 19:18:27 ----N---- C:\WINDOWS\system32\xpsshhdr.dll

2014-08-06 19:18:25 ----D---- C:\dec4a3b3339f90200e6f2657a9e372

2014-08-04 22:58:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$

2014-08-04 22:52:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$

2014-08-04 22:51:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$

2014-08-04 22:50:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$

2014-08-04 22:50:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$

2014-08-04 22:47:47 ----D---- C:\Program Files\Common Files\DESIGNER

2014-08-04 22:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$

2014-08-04 22:05:53 ----A---- C:\WINDOWS\imsins.BAK

2014-08-04 22:04:23 ----A---- C:\WINDOWS\system32\drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt.sys

2014-08-04 21:38:26 ----D---- C:\Program Files\CCleaner

2014-08-04 19:43:00 ----N---- C:\WINDOWS\system32\xp_eos.exe

2014-08-03 15:16:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$

======List of files/folders modified in the last 1 month======

2014-08-12 13:33:13 ----D---- C:\Program Files\Trend Micro

2014-08-12 13:29:02 ----D---- C:\WINDOWS\Microsoft.NET

2014-08-12 08:40:02 ----SHD---- C:\WINDOWS\Installer

2014-08-12 08:40:02 ----D---- C:\WINDOWS\WinSxS

2014-08-12 08:40:02 ----D---- C:\Config.Msi

2014-08-12 08:40:00 ----D---- C:\Program Files\Common Files\Microsoft Shared

2014-08-12 00:10:36 ----A---- C:\WINDOWS\SchedLgU.Txt

2014-08-11 16:33:50 ----D---- C:\WINDOWS\system32\config

2014-08-11 16:33:28 ----D---- C:\WINDOWS\system32\wbem

2014-08-11 16:33:28 ----D---- C:\WINDOWS\Registration

2014-08-11 16:32:50 ----D---- C:\WINDOWS

2014-08-11 16:32:22 ----D---- C:\WINDOWS\system32

2014-08-10 22:45:16 ----D---- C:\WINDOWS\network diagnostic

2014-08-10 22:31:18 ----D---- C:\WINDOWS\system32\drivers

2014-08-10 22:31:15 ----D---- C:\Program Files

2014-08-10 20:32:54 ----SD---- C:\WINDOWS\Tasks

2014-08-10 20:27:12 ----D---- C:\WINDOWS\Prefetch

2014-08-08 17:42:37 ----A---- C:\WINDOWS\win.ini

2014-08-08 16:36:10 ----RSD---- C:\WINDOWS\assembly

2014-08-08 15:18:54 ----D---- C:\Program Files\Common Files\Java

2014-08-08 15:18:08 ----D---- C:\Program Files\Java

2014-08-07 16:16:07 ----D---- C:\WINDOWS\system32\CatRoot2

2014-08-07 16:03:41 ----D---- C:\Program Files\Microsoft Security Client

2014-08-06 19:57:26 ----D---- C:\WINDOWS\inf

2014-08-06 19:57:14 ----D---- C:\WINDOWS\system32\CatRoot

2014-08-06 19:57:01 ----RSHDC---- C:\WINDOWS\system32\dllcache

2014-08-06 19:31:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2014-08-06 19:20:43 ----D---- C:\WINDOWS\system32\en-US

2014-08-06 19:20:40 ----D---- C:\Program Files\MSBuild

2014-08-06 19:20:29 ----RSD---- C:\WINDOWS\Fonts

2014-08-06 19:19:08 ----D---- C:\WINDOWS\system32\spool

2014-08-05 19:04:40 ----D---- C:\Program Files\Microsoft Silverlight

2014-08-04 22:57:25 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help

2014-08-04 22:52:51 ----D---- C:\WINDOWS\ie8updates

2014-08-04 22:47:47 ----D---- C:\Program Files\Common Files

2014-08-04 22:19:59 ----D---- C:\WINDOWS\system32\MRT

2014-08-04 22:13:17 ----D---- C:\WINDOWS\Debug

2014-08-04 22:05:45 ----D---- C:\Program Files\Internet Explorer

2014-08-04 21:21:35 ----D---- C:\Program Files\Google

2014-08-04 21:13:00 ----D---- C:\Documents and Settings\All Users\Application Data\Google

2014-08-04 19:32:06 ----D---- C:\Documents and Settings

2014-08-03 15:20:51 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 drvmcdb;drvmcdb; C:\WINDOWS\system32\drivers\drvmcdb.sys [2004-08-17 87168]

R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2014-01-25 231960]

R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-02-23 43872]

R1 {9f93bd66-d3d2-427d-b37f-743603e2388d}Gt;{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt; C:\WINDOWS\system32\drivers\{9f93bd66-d3d2-427d-b37f-743603e2388d}Gt.sys [2014-07-25 55224]

R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]

R1 SerTVOutCtlr;TOSHIBA Controls Driver -EPIOMngr; C:\WINDOWS\system32\drivers\EPIOMngr.sys [2004-07-30 6400]

R1 SrvcEKIOMngr;SrvcEKIOMngr; C:\WINDOWS\System32\Drivers\EKIoMngr.sys [2004-07-29 6400]

R1 SrvcSSIOMngr;SrvcSSIOMngr; C:\WINDOWS\System32\Drivers\SSIoMngr.sys [2004-07-29 6400]

R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-12-02 5627]

R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-12-02 23545]

R1 TPwSav;Common Driver; C:\WINDOWS\System32\Drivers\TPwSav.sys [2005-02-25 8704]

R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-12-23 40544]

R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]

R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.10; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2011-02-06 15890]

R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2005-01-14 25883]

R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2005-01-14 34843]

R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2005-01-14 4123]

R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2005-01-14 2271]

R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2005-01-14 87706]

R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2005-01-14 15227]

R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2005-01-14 6363]

R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2005-01-14 99098]

R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2005-01-14 100603]

R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-10-28 1270572]

R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-10-27 2284864]

R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-05-08 101833]

R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2004-12-22 393600]

R3 Arp1394;1394 ARP-clientprotocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-22 986624]

R3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288]

R3 NIC1394;1394-stuurprogramma; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]

R3 Rasirda;WAN-minipoort (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]

R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-06-28 69760]

R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]

R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-02-11 157056]

R3 Tvs;Toshiba Virtual Sound with SRS technologies; C:\WINDOWS\system32\DRIVERS\Tvs.sys [2005-01-08 29184]

R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]

S1 StickyMesger;StickyMesger; \??\C:\Program Files\TOSHIBA\Accessibility\StickyMesger.sys []

S3 catchme;catchme; \??\C:\DOCUME~1\BERNAR~1\LOCALS~1\Temp\catchme.sys []

S3 rtl8139;NT-stuurprogramma voor Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]

S3 sffdisk;SFF Storage Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]

S3 sffp_sd;Stuurprogramma volgens SFF-opslagprotocol voor SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]

S3 SMCIRDA;SMSC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2004-06-16 46080]

S3 usbccgp;Microsoft generiek hoofd-USB-stuurprogramma; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]

S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]

S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2004-08-10 18944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;Atheros Configuration Service; C:\WINDOWS\system32\ACS.exe [2004-07-07 36864]

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-22 352256]

R2 Irmon;Infraroodmonitor; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2014-08-08 182696]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]

R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]

S2 40030ae4;Supporter; c:\progra~1\suppor~1\SupporterSvc.dll,service []

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 gupdate;Google Updateservice (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 135664]

S2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-03 262320]

S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]

S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]

S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-01-29 135664]

S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]

S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.