Mededeling

**smeenk** · 22-05-08, 16:42

Download VirtumundoBegone (mirror)
Sla dit op op je bureaublad.

Dubbelklik op VirtumundoBeGone.exe en volg de aanwijzingen.
Schrik niet als je een blauw scherm met een foutmelding te zien krijgt - dit is normaal.
Als de fix klaar is, start je de pc opnieuw op.
Plaats de inhoud van het logbestand VBG.TXT, dat nu op je bureaublad staat, hier in je volgende bericht.

Download: RVAXO.exe

Sla het bestand op je bureaublad op, dubbelklik het en kies voor "Unzip" om het uit te pakken.
Start de computer in veilige modus.
Open nu de map RVAXO op je bureaublad en dubbeklik RunMe.cmd
Er zal een cmd-schermpje openen, daarin zullen snel enkele regels over niet gevonden bestanden voorbijkomen, dit is normaal.
Mogelijk start er ook een uninstaller van een rogue scanner op, sluit deze niet af maar volg eventuele aanwijzingen en laat deze gewoon zijn werk doen.
Daarna zal je PC herstarten, laat hem nu weer in normale modus starten. Na de herstart opent het cmd-venster van RVAXO opnieuw.
Laat deze lopen en wacht tot er een logfile opent: C:\RVAXO-results.log
Herstart je computer niet vanzelf, of start de tool niet na de reboot, doe dit dan handmatig.
Post de inhoud van de logfile in je volgende bericht.

Download Deckard's System Scanner naar je Bureaublad.

Sluit alle toepassingen en vensters.
Dubbelklik op dss.exe om het te activeren, en volg de aanwijzingen.
Wanneer de scan volledig is, zal een tekstbestand - main.txt - openen.
Kopiëer (Ctrl+A gevolgd door Ctrl+C) en plak (Ctrl+V) de inhoud van main.txt in je volgende antwoord.

Opmerking: Sommige firewalls kunnen waarschuwen dat sigcheck.exe probeert verbinding te maken met het internet
- zorg dat sigcheck.exe toestemming krijgt om dit te doen !
Tevens kan het gebeuren dat je Antivirus DSS als verdacht aangeeft, of zelfs probeert te verwijderen.
Laat je Antivirus dit niet verwijderen ! (In dit geval is het misschien beter om tijdens de scan van DSS je Antivirus even uit te schakelen)

**TVR** · 22-05-08, 16:56

"Stop C000021a {onherstelbare systeemfout}. Het systeemproces Windows Logon Process is onverwacht afgebroken met de status: 0XC0000005 (0x00000000 0x00000000). Het systeem is afgesloten."
fysieke geheugendump is voltooid/gestart oid.

dit is niet het blauwe scherm wat bedoeld wordt neem ik aan?

**smeenk** · 22-05-08, 17:01

Kan je wel gewoon opnieuw opstarten?

**TVR** · 22-05-08, 17:03

excuses na het opstarten kwam de log. alle benodigde info komt er aan!

**TVR** · 22-05-08, 17:17

VBG.TXT

[05/22/2008, 16:51:51] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Tom van Rheeden\Bureaublad\VirtumundoBeGone.exe" )
[05/22/2008, 16:51:56] - Detected System Information:
[05/22/2008, 16:51:56] - Windows Version: 5.1.2600, Service Pack 2
[05/22/2008, 16:51:56] - Current Username: Tom van Rheeden (Admin)
[05/22/2008, 16:51:56] - Windows is in NORMAL mode.
[05/22/2008, 16:51:56] - Searching for Browser Helper Objects:
[05/22/2008, 16:51:56] - BHO 1: {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\ddcBQgeE
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\ddcBQgeE, continuing.
[05/22/2008, 16:51:56] - BHO 2: {2CF19059-9614-4A05-B898-D057D14C8391} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\nnnnNFxy
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\nnnnNFxy, continuing.
[05/22/2008, 16:51:56] - BHO 3: {663656DF-6BAE-460C-A612-8133DF519346} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\jkkIATJC
[05/22/2008, 16:51:56] - Found: HKLM\...\Winlogon\Notify\jkkIATJC - This is probably Virtumundo.
[05/22/2008, 16:51:56] - Assigning {663656DF-6BAE-460C-A612-8133DF519346} MSEvents Object
[05/22/2008, 16:51:56] - BHO list has been changed! Starting over...
[05/22/2008, 16:51:56] - BHO 1: {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\ddcBQgeE
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\ddcBQgeE, continuing.
[05/22/2008, 16:51:56] - BHO 2: {2CF19059-9614-4A05-B898-D057D14C8391} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\nnnnNFxy
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\nnnnNFxy, continuing.
[05/22/2008, 16:51:56] - BHO 3: {663656DF-6BAE-460C-A612-8133DF519346} (MSEvents Object)
[05/22/2008, 16:51:56] - ALERT: Found MSEvents Object!
[05/22/2008, 16:51:56] - BHO 4: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[05/22/2008, 16:51:56] - BHO 5: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Aanmelden - Help)
[05/22/2008, 16:51:56] - BHO 6: {A353D702-584F-4777-B442-B56CC67812E5} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\fccCUmji
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\fccCUmji, continuing.
[05/22/2008, 16:51:56] - BHO 7: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[05/22/2008, 16:51:56] - BHO 8: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[05/22/2008, 16:51:56] - BHO 9: {D8CEBE1F-15D3-4A83-8088-DB0E3587EB50} ()
[05/22/2008, 16:51:56] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:56] - Checking for HKLM\...\Winlogon\Notify\fccdbayX
[05/22/2008, 16:51:56] - Key not found: HKLM\...\Winlogon\Notify\fccdbayX, continuing.
[05/22/2008, 16:51:56] - Finished Searching Browser Helper Objects
[05/22/2008, 16:51:56] - *** Detected MSEvents Object
[05/22/2008, 16:51:56] - Trying to remove MSEvents Object...
[05/22/2008, 16:51:57] - Terminating Process: IEXPLORE.EXE
[05/22/2008, 16:51:57] - Terminating Process: RUNDLL32.EXE
[05/22/2008, 16:51:57] - Disabling Automatic Shell Restart
[05/22/2008, 16:51:58] - Terminating Process: EXPLORER.EXE
[05/22/2008, 16:51:58] - Suspending the NT Session Manager System Service
[05/22/2008, 16:51:58] - Terminating Windows NT Logon/Logoff Manager
[05/22/2008, 16:51:58] - Re-enabling Automatic Shell Restart
[05/22/2008, 16:51:58] - File to disable: C:\WINDOWS\system32\jkkIATJC.dll
[05/22/2008, 16:51:58] - Renaming C:\WINDOWS\system32\jkkIATJC.dll -> C:\WINDOWS\system32\jkkIATJC.dll.vir
[05/22/2008, 16:51:58] - File successfully renamed!
[05/22/2008, 16:51:58] - Removing HKLM\...\Browser Helper Objects\{663656DF-6BAE-460C-A612-8133DF519346}
[05/22/2008, 16:51:58] - Removing HKCR\CLSID\{663656DF-6BAE-460C-A612-8133DF519346}
[05/22/2008, 16:51:58] - Adding Kill Bit for ActiveX for GUID: {663656DF-6BAE-460C-A612-8133DF519346}
[05/22/2008, 16:51:58] - Deleting ATLEvents/MSEvents Registry entries
[05/22/2008, 16:51:58] - Removing HKLM\...\Winlogon\Notify\jkkIATJC
[05/22/2008, 16:51:58] - Searching for Browser Helper Objects:
[05/22/2008, 16:51:58] - BHO 1: {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} ()
[05/22/2008, 16:51:58] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:58] - Checking for HKLM\...\Winlogon\Notify\ddcBQgeE
[05/22/2008, 16:51:58] - Key not found: HKLM\...\Winlogon\Notify\ddcBQgeE, continuing.
[05/22/2008, 16:51:58] - BHO 2: {2CF19059-9614-4A05-B898-D057D14C8391} ()
[05/22/2008, 16:51:58] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:58] - Checking for HKLM\...\Winlogon\Notify\nnnnNFxy
[05/22/2008, 16:51:58] - Key not found: HKLM\...\Winlogon\Notify\nnnnNFxy, continuing.
[05/22/2008, 16:51:58] - BHO 3: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[05/22/2008, 16:51:58] - BHO 4: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Aanmelden - Help)
[05/22/2008, 16:51:58] - BHO 5: {A353D702-584F-4777-B442-B56CC67812E5} ()
[05/22/2008, 16:51:58] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:58] - Checking for HKLM\...\Winlogon\Notify\fccCUmji
[05/22/2008, 16:51:58] - Key not found: HKLM\...\Winlogon\Notify\fccCUmji, continuing.
[05/22/2008, 16:51:58] - BHO 6: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[05/22/2008, 16:51:58] - BHO 7: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[05/22/2008, 16:51:58] - BHO 8: {D8CEBE1F-15D3-4A83-8088-DB0E3587EB50} ()
[05/22/2008, 16:51:58] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:51:58] - Checking for HKLM\...\Winlogon\Notify\fccdbayX
[05/22/2008, 16:51:58] - Key not found: HKLM\...\Winlogon\Notify\fccdbayX, continuing.
[05/22/2008, 16:51:59] - Finished Searching Browser Helper Objects
[05/22/2008, 16:51:59] - Finishing up...
[05/22/2008, 16:51:59] - A restart is needed.
[05/22/2008, 16:51:59] - Automatic Reboot on STOP Error is not set. User will have to manually restart.
[05/22/2008, 16:52:06] - Attempting to Restart via STOP error (Blue Screen!)

[05/22/2008, 16:58:31] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Tom van Rheeden\Bureaublad\VirtumundoBeGone.exe" )
[05/22/2008, 16:58:47] - Detected System Information:
[05/22/2008, 16:58:47] - Windows Version: 5.1.2600, Service Pack 2
[05/22/2008, 16:58:47] - Current Username: Tom van Rheeden (Admin)
[05/22/2008, 16:58:47] - Windows is in NORMAL mode.
[05/22/2008, 16:58:47] - Searching for Browser Helper Objects:
[05/22/2008, 16:58:47] - BHO 1: {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} ()
[05/22/2008, 16:58:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:58:47] - Checking for HKLM\...\Winlogon\Notify\ddcBQgeE
[05/22/2008, 16:58:47] - Key not found: HKLM\...\Winlogon\Notify\ddcBQgeE, continuing.
[05/22/2008, 16:58:47] - BHO 2: {2CF19059-9614-4A05-B898-D057D14C8391} ()
[05/22/2008, 16:58:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:58:47] - Checking for HKLM\...\Winlogon\Notify\nnnnNFxy
[05/22/2008, 16:58:47] - Key not found: HKLM\...\Winlogon\Notify\nnnnNFxy, continuing.
[05/22/2008, 16:58:47] - BHO 3: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[05/22/2008, 16:58:47] - BHO 4: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Aanmelden - Help)
[05/22/2008, 16:58:47] - BHO 5: {A353D702-584F-4777-B442-B56CC67812E5} ()
[05/22/2008, 16:58:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:58:47] - Checking for HKLM\...\Winlogon\Notify\fccCUmji
[05/22/2008, 16:58:47] - Key not found: HKLM\...\Winlogon\Notify\fccCUmji, continuing.
[05/22/2008, 16:58:47] - BHO 6: {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)
[05/22/2008, 16:58:47] - BHO 7: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)
[05/22/2008, 16:58:47] - BHO 8: {D8CEBE1F-15D3-4A83-8088-DB0E3587EB50} ()
[05/22/2008, 16:58:47] - WARNING: BHO has no default name. Checking for Winlogon reference.
[05/22/2008, 16:58:47] - Checking for HKLM\...\Winlogon\Notify\fccdbayX
[05/22/2008, 16:58:47] - Key not found: HKLM\...\Winlogon\Notify\fccdbayX, continuing.
[05/22/2008, 16:58:47] - Finished Searching Browser Helper Objects
[05/22/2008, 16:58:47] - Finishing up...
[05/22/2008, 16:58:47] - Nothing found! Exiting...

RVAXO-results.log

---RVAXO.exe Updated: 2008-05-21---first run---
Uninstallers:

Files found:
C:\WINDOWS\system32\jkkIATJC.dll.vir
C:\WINDOWS\BM8b5fdb10.xml
C:\WINDOWS\BM8b5fdb10.txt
C:\WINDOWS\system32\EegQBcdd.ini2
C:\WINDOWS\system32\ijmUCccf.ini2
C:\WINDOWS\system32\Xyabdccf.ini2
C:\WINDOWS\system32\yxFNnnnn.ini2
C:\WINDOWS\pskt.ini
C:\WINDOWS\wininit.ini
C:\WINDOWS\system32\clkcnt.txt
C:\WINDOWS\system32\vbzip11.dll

Folders Found:

Hosts-file was reset, If you use a custom hosts file please replace it...

--------------RVAXO.exe last run---------------
Not deleted items:

--------------RVAXO.exe finished----------------

Deckard's Log

Main

Deckard's System Scanner v20071014.68
Run by Tom van Rheeden on 2008-05-22 17:09:51
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.

-- Last 5 Restore Point(s) --
33: 2008-05-22 15:09:58 UTC - RP549 - Deckard's System Scanner Restore Point
32: 2008-05-21 14:31:45 UTC - RP548 - Controlepunt van systeem
31: 2008-05-20 13:54:55 UTC - RP547 - Last known good configuration
30: 2008-05-20 13:54:36 UTC - RP546 - Last known good configuration
29: 2008-05-20 13:54:35 UTC - RP545 - Installed Adobe Reader 7.1.0

-- First Restore Point --
1: 2008-05-20 13:54:25 UTC - RP517 - Controlepunt van systeem

Backed up registry hives.
Performed disk cleanup.

System Drive C: has 1.67 GiB (less than 15%) free.

-- HijackThis (run as Tom van Rheeden.exe) -------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 17:11:06, on 22-5-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Cisco Systems\cvpnd.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\setup\avast.setup
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
C:\Documents and Settings\Tom van Rheeden\Bureaublad\dss.exe
C:\PROGRA~1\HIJACK~1\Tom van Rheeden.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: (no name) - {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} - C:\WINDOWS\system32\ddcBQgeE.dll (file missing)
O2 - BHO: (no name) - {2CF19059-9614-4A05-B898-D057D14C8391} - C:\WINDOWS\system32\nnnnNFxy.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A353D702-584F-4777-B442-B56CC67812E5} - C:\WINDOWS\system32\fccCUmji.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: (no name) - {D8CEBE1F-15D3-4A83-8088-DB0E3587EB50} - C:\WINDOWS\system32\fccdbayX.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [hcenter] "C:\Program Files\Support.com\bin\tgcmd.exe" /server /startmonitor /deaf
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BM8b5fdb10] Rundll32.exe "C:\WINDOWS\system32\xlfyvmcn.dll",s
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Yahoo! Widget Engine.lnk = C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: UvA - Informatiseringscentrum CISCO VPN Client.lnk = C:\Program Files\Cisco Systems\vpngui.exe
O4 - Global Startup: WlanUtility.lnk = C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\Party Poker\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\Party Poker\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {BF985246-09BF-11D2-BE62-006097DF57F6} (SimCityX Control) - http://simcity3000unlimited.ea.com/us/guide/classic/simcityx/SimCityX.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

-- File Associations -----------------------------------------------------------

All associations okay.

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 Teefer (Teefer for NT) - c:\windows\system32\drivers\teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
R1 StarOpen - c:\windows\system32\drivers\staropen.sys
R1 wpsdrvnt - c:\windows\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
R3 PCANDIS5 (PCANDIS5 NDIS Protocol Driver) - c:\windows\system32\pcandis5.sys <Not Verified; Printing Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>

S3 NBService - c:\program files\nero\nero 7\nero backitup\nbservice.exe

-- Device Manager: Disabled ----------------------------------------------------

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Cisco Systems VPN Adapter
Device ID: ROOT\NET\0000
Manufacturer: Cisco Systems
Name: Cisco Systems VPN Adapter
PNP Device ID: ROOT\NET\0000
Service: CVirtA

-- Scheduled Tasks -------------------------------------------------------------

2008-05-08 16:21:01 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

-- Files created between 2008-04-22 and 2008-05-22 -----------------------------

2008-05-22 17:07:51 0 d-------- C:\RVAXO
2008-05-22 17:07:49 16384 --a------ C:\WINDOWS\system32\Restart.exe <Not Verified; WareSoft Software; restart>
2008-05-22 17:04:56 826539 --a------ C:\WINDOWS\system32\RVAXO.bat
2008-05-22 17:04:56 69632 --a------ C:\WINDOWS\system32\remove.exe
2008-05-22 15:17:05 2560 --a------ C:\WINDOWS\system32\ldylvtux.exe
2008-05-22 14:10:13 2560 --a------ C:\WINDOWS\system32\qnxhypdy.exe
2008-05-21 15:33:51 3160 --a------ C:\WINDOWS\system32\tmp.reg
2008-05-21 13:43:17 134144 --a------ C:\WINDOWS\system32\fhmwgubr.dll
2008-05-21 13:37:17 2560 --a------ C:\WINDOWS\system32\wytlpaps.exe
2008-05-21 13:34:56 126464 --a------ C:\WINDOWS\system32\ttlyxhvh.dll
2008-05-21 08:22:02 2560 --a------ C:\WINDOWS\system32\pabxraqv.exe
2008-05-20 15:57:50 59392 --a------ C:\WINDOWS\system32\efcATmNf.dll
2008-05-20 15:50:46 59392 --a------ C:\WINDOWS\system32\iifgDsSI.dll
2008-05-20 15:47:54 59392 --a------ C:\WINDOWS\system32\khfFutrr.dll
2008-05-19 12:23:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2008-04-30 05:38:45 0 d-------- C:\Program Files\PPLive
2008-04-30 05:38:44 0 d-------- C:\Program Files\Common Files\Synacast
2008-04-28 03:40:30 0 d-------- C:\Program Files\Microsoft Silverlight

-- Find3M Report ---------------------------------------------------------------

2008-05-22 17:10:41 443522 --a------ C:\WINDOWS\system32\perfh013.dat
2008-05-22 17:10:41 70312 --a------ C:\WINDOWS\system32\perfc013.dat
2008-05-22 16:31:58 0 d-------- C:\Program Files\IDT
2008-05-22 16:31:57 0 d-------- C:\Program Files\Guitar and Drums Trainer
2008-05-22 16:31:55 0 d-------- C:\Program Files\DivX
2008-05-21 08:34:56 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\EarMaster
2008-05-20 15:45:37 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\Azureus
2008-05-19 12:23:40 0 d-------- C:\Program Files\Common Files\Adobe
2008-05-19 12:22:33 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\AdobeUM
2008-05-15 19:02:19 0 d-------- C:\Program Files\Java
2008-04-30 05:38:44 0 d-------- C:\Program Files\Common Files
2008-04-22 13:33:51 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\Real
2008-04-09 19:23:20 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\Move Networks
2008-04-07 14:14:31 0 d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-04-06 15:51:56 0 d-------- C:\Program Files\Windows Live
2008-04-06 15:51:36 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2008-04-01 05:43:55 0 d-------- C:\Program Files\Winamp
2008-04-01 05:42:53 0 d-------- C:\Documents and Settings\Tom van Rheeden\Application Data\Winamp
2008-03-26 19:00:34 664 --a------ C:\WINDOWS\system32\d3d9caps.dat

-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{15CE2DE7-7E66-435D-88AB-3D5C6956D55E}]
C:\WINDOWS\system32\ddcBQgeE.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2CF19059-9614-4A05-B898-D057D14C8391}]
C:\WINDOWS\system32\nnnnNFxy.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A353D702-584F-4777-B442-B56CC67812E5}]
C:\WINDOWS\system32\fccCUmji.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D8CEBE1F-15D3-4A83-8088-DB0E3587EB50}]
C:\WINDOWS\system32\fccdbayX.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [14-10-2005 21:49]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [14-10-2005 21:46]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [14-10-2005 21:50]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22-02-2008 04:25]
"DMXLauncher"="C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [05-10-2005 04:12]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [10-06-2005 11:44]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [10-06-2005 11:44]
"DLA"="C:\WINDOWS\System32\DLA\DLACTRLW.EXE" [08-09-2005 06:20]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="C:\Program Files\Google\Gmail Notifier\gnotify.exe" [15-07-2005 23:48]
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [15-10-2004 19:40]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [19-08-2006 19:30]
"MSKDetectorExe"="C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" [12-08-2005 16:16]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [16-05-2008 01:19]
"hcenter"="C:\Program Files\Support.com\bin\tgcmd.exe" [20-05-2005 13:22]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [12-01-2006 15:40]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe"

"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [01-02-2008 00:13]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [19-02-2008 14:10]
"BM8b5fdb10"="C:\WINDOWS\system32\xlfyvmcn.dll"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [04-08-2004 13:00]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [13-10-2004 18:24]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [18-10-2007 11:34]
"Creative Detector"="C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" [05-10-2004 10:52]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [30-07-2007 20:33]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [16-11-2006 19:04]

C:\Documents and Settings\Tom van Rheeden\Menu Start\Programma's\Opstarten\
Yahoo! Widget Engine.lnk - C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe [20-7-2007 19:57:16]

C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [23-4-2008 3:38:16]
UvA - Informatiseringscentrum CISCO VPN Client.lnk - C:\Program Files\Cisco Systems\vpngui.exe [21-9-2006 10:17:04]
WlanUtility.lnk - C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe [24-7-2003 10:10:18]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

-- End of Deckard's System Scanner: finished at 2008-05-22 17:13:12 ------------

**TVR** · 22-05-08, 17:18

Dit is de extra log van DSS

Extra

Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: Dutch

CPU 0: Intel(R) Pentium(R) 4 CPU 3.00GHz
CPU 1: Intel(R) Pentium(R) 4 CPU 3.00GHz
Percentage of Memory in Use: 38%
Physical Memory (total/avail): 1014.07 MiB / 623.63 MiB
Pagefile Memory (total/avail): 2441.21 MiB / 2089.77 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1933.04 MiB

C: is Fixed (NTFS) - 229.77 GiB total, 1.67 GiB free.
D: is CDROM (No Media)
E: is Removable (FAT32)

\\.\PHYSICALDRIVE0 - SAMSUNG SP2504C - 232.83 GiB - 3 partitions
\PARTITION0 - Unknown - 39.19 MiB
\PARTITION1 (bootable) - Installable File System - 229.77 GiB - C:
\PARTITION2 - Unknown - 3 GiB

\\.\PHYSICALDRIVE1 - USB 2.0 Flash Drive USB Device - 243.17 MiB - 1 partition
\PARTITION0 (bootable) - Unknown - 249.98 MiB - E:

-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.

FW: Sygate Personal Firewall v4.6 (Sygate Technologies, Inc.)
AV: avast! antivirus 4.8.1201 [VPS 080521-0] v4.8.1201 (ALWIL Software) Disabled

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Authoriz edApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled

xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Author izedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled

xpsp2res.dll,-22019"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\natmgr.exe"="C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\natmgr.exe:*:Enabled:SpeedTouch NAT manager"
"C:\\Program Files\\Azureus\\Azureus.exe"="C:\\Program Files\\Azureus\\Azureus.exe:*:Enabled:Azureus"
"C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\UpgradeWizard\\upgradeST.exe"="C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\UpgradeWizard\\upgradeST.exe:*:Enabled:SpeedTouch Upgrade Wizard"
"C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\stInstall.exe"="C:\\Documents and Settings\\Tom van Rheeden\\Local Settings\\Temp\\WZSE0.TMP\\stInstall.exe:*:Enabled:SpeedTouch Home Install Wizard"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Tom van Rheeden\Application Data
CLASSPATH=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=TOM_PC
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Tom van Rheeden
LOGONSERVER=\\TOM_PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared;C:\Program Files\Samsung\Samsung PC Studio 3;C:\Program Files\QuickTime\QTSystem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 4 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0409
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
SESSIONNAME=Console
SonicCentral=C:\Program Files\Common Files\Sonic Shared\Sonic Central\
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\TOMVAN~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\TOMVAN~1\LOCALS~1\Temp
USERDOMAIN=TOM_PC
USERNAME=Tom van Rheeden
USERPROFILE=C:\Documents and Settings\Tom van Rheeden
windir=C:\WINDOWS

-- User Profiles ---------------------------------------------------------------

Tom van Rheeden (admin)
Huisgenoten
Gast (guest)

-- Add/Remove Programs ---------------------------------------------------------

--> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
--> C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
--> C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
--> C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
--> C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
--> C:\WINDOWS\UNNeroVision.exe /UNINSTALL
--> C:\WINDOWS\UNRecode.exe /UNINSTALL
--> MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9104A09A-EC83-11D8-8469-00D0B726B56E}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9104A09A-EC83-11D8-8469-00D0B726B56E}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9744AE38-1CC6-414F-96CE-0643AEE30A9B}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9744AE38-1CC6-414F-96CE-0643AEE30A9B}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9AB14DF5-3B04-4E3B-9969-695DBA7F2008}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9AB14DF5-3B04-4E3B-9969-695DBA7F2008}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E54F486-CD4A-44A5-B041-16D4E1E56A53}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E54F486-CD4A-44A5-B041-16D4E1E56A53}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D524239C-FD5C-4183-A49C-7930915A9C0A}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D524239C-FD5C-4183-A49C-7930915A9C0A}\setup.exe" -l0x13 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DD2D9012-E5A1-4717-8EE9-8DB3F36E2F8C}\setup.exe" -l0x13
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DD2D9012-E5A1-4717-8EE9-8DB3F36E2F8C}\setup.exe" -l0x13 /remove
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware 2007 --> MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.1.0 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A71000000002}
Adobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
ADSL Support Wizard --> MsiExec.exe /X{1066E724-271D-404F-B6EB-F0FF7B3ACD36}
Apple Mobile Device Support --> MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
ARTEuro --> MsiExec.exe /I{1D3C662A-F6C6-4767-A788-7AA43A9A1317}
avast! Antivirus --> C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Azureus --> C:\Program Files\Azureus\Uninstall.exe
Beveiligingsupdate for Windows XP (KB923689) --> "C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Beveiligingsupdate for Windows XP (KB941569) --> "C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB890046) --> "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB893756) --> "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB896358) -->
Beveiligingsupdate voor Windows XP (KB896422) -->
Beveiligingsupdate voor Windows XP (KB896423) -->
Beveiligingsupdate voor Windows XP (KB896424) -->
Beveiligingsupdate voor Windows XP (KB896428) --> "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB899587) --> "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB899588) -->
Beveiligingsupdate voor Windows XP (KB899591) -->
Beveiligingsupdate voor Windows XP (KB900725) --> "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB901017) --> "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB901190) --> "C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB901214) -->
Beveiligingsupdate voor Windows XP (KB902400) --> "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB904706) -->
Beveiligingsupdate voor Windows XP (KB905414) --> "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB905749) --> "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB908519) -->
Beveiligingsupdate voor Windows XP (KB911562) -->
Beveiligingsupdate voor Windows XP (KB911567) --> "C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB911927) --> "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB912919) -->
Beveiligingsupdate voor Windows XP (KB913580) --> "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB914388) --> "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB914389) --> "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB916281) --> "C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB917159) --> "C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB917344) -->
Beveiligingsupdate voor Windows XP (KB917422) --> "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB917953) --> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB918118) --> "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB918439) -->
Beveiligingsupdate voor Windows XP (KB918899) --> "C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB919007) --> "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB920213) --> "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB920214) --> "C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB920670) --> "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB920683) --> "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB920685) --> "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB921398) --> "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB921503) --> "C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB921883) --> "C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB922616) --> "C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB922760) --> "C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB922819) --> "C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB923191) --> "C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB923414) --> "C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB923694) --> "C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB923980) --> "C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB924191) --> "C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB924270) --> "C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB924496) --> "C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB924667) --> "C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB925454) --> "C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB925486) --> "C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB925902) --> "C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB926255) --> "C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB926436) --> "C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB927779) --> "C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB927802) --> "C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB928090) --> "C:\WINDOWS\$NtUninstallKB928090$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB928255) --> "C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB928843) --> "C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB929123) --> "C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB929969) --> "C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB930178) --> "C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB931261) --> "C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB931768) --> "C:\WINDOWS\$NtUninstallKB931768$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB931784) --> "C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB932168) --> "C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB933566) --> "C:\WINDOWS\$NtUninstallKB933566$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB933729) --> "C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB935839) --> "C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB935840) --> "C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB936021) --> "C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB937143) --> "C:\WINDOWS\$NtUninstallKB937143$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB938127) --> "C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB938829) --> "C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB939653) --> "C:\WINDOWS\$NtUninstallKB939653$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB941202) --> "C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB941568) --> "C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB941644) --> "C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB941693) --> "C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB942615) --> "C:\WINDOWS\$NtUninstallKB942615$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB943055) --> "C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB943460) --> "C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB943485) --> "C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB944338) --> "C:\WINDOWS\$NtUninstallKB944338$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB944533) --> "C:\WINDOWS\$NtUninstallKB944533$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB944653) --> "C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB945553) --> "C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB946026) --> "C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB947864) --> "C:\WINDOWS\$NtUninstallKB947864$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB948590) --> "C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB948881) --> "C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
Beveiligingsupdate voor Windows XP (KB950749) --> "C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
Creative-systeeminformatie --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x13 /remove
Creative Jukebox Driver --> C:\Program Files\Creative\Jukebox 3 Drivers\DrvUnins.exe /s
Creative MediaSource --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\setup.exe" -l0x13 /remove
Creative Removable Disk Manager --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x13 /remove
Creative Zen Micro --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D944236D-7992-41D6-8257-930B5832F1CC}\SETUP.EXE" -l0x13 /remove
Dell CinePlayer --> MsiExec.exe /I{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
Dell Driver Reset Tool --> MsiExec.exe /I{5905F42D-3F5F-4916-ADA6-94A3646AEE76}
DivX --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter --> C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Easy Video Joiner 5.21 --> "C:\Program Files\Easy Video Joiner\unins000.exe"
Easy Video Splitter 1.28 --> "C:\Program Files\Easy Video Splitter\unins000.exe"
EVEREST Home Edition v2.20 --> "C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
ffdshow --> "C:\Program Files\ffdshow\uninstall.exe"
FileZilla Client 3.0.7.1 --> C:\Program Files\FileZilla FTP Client\uninstall.exe
Free YouTube to Mp3 Converter version 2.4 --> "C:\Program Files\DVDVideoSoft\Free YouTube to Mp3 Converter\unins000.exe"
Full Tilt Poker --> "C:\Program Files\InstallShield Installation Information\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}\setup.exe" -runfromtemp -l0x0013 -removeonly
Functional Ear Trainer - Advanced --> MsiExec.exe /I{C079FC85-D6D5-428E-A2B1-B2DC60865FDE}
Functional Ear Trainer v1.1 --> MsiExec.exe /I{29C00AEB-D97A-4C91-80A0-B2AA910CE32C}
Google Gmail Notifier --> "C:\Program Files\Google\Gmail Notifier\UninstallGmail.exe"
Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar3.dll"
GTK+ Runtime 2.6.9 rev a (remove only) --> C:\Program Files\Common Files\GTK\2.0\uninst.exe
Guitar Pro 5.2 --> "C:\Program Files\Guitar Pro 5\unins000.exe"
High Definition Audio Driver Package - KB835221 --> C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
HijackThis 1.99.1 --> C:\Program Files\HijackThis\HijackThis.exe /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix voor Windows XP (KB896256) -->
Hotfix voor Windows XP (KB906569) -->
Hotfix voor Windows XP (KB908673) -->
IDT Audio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -l0x13 -remove -removeonly
IEEE802.11b/g Wireless LAN Software --> MsiExec.exe /I{902C0D79-8D7F-4956-9DCB-A223D5BF55B3}
Intel(R) Graphics Media Accelerator Driver --> RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_2782 PCI\VEN_8086&DEV_2582
Intel(R) PRO Network Connections Drivers --> Prounstl.exe
Intel(R) PROSet for Wired Connections --> MsiExec.exe /I{83F793B5-8BBF-42FD-A8A6-868CB3E2AAEA}
IsoBuster 1.9.1 --> "C:\Program Files\IsoBuster\Uninst\unins000.exe"
iTunes --> MsiExec.exe /I{80FD852F-5AAC-4129-B931-06AAFFA43138}
J2SE Runtime Environment 5.0 Update 10 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 3 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150030}
J2SE Runtime Environment 5.0 Update 8 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150080}
J2SE Runtime Environment 5.0 Update 9 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java 2 Runtime Environment, SE v1.4.2_03 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142030}
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) SE Runtime Environment 6 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Kluwer Collegebundel --> C:\PROGRA~1\KLUCB\KCB\uninstal.exe
LimeWire 4.12.6 --> "C:\Program Files\LimeWire\uninstall.exe"
MCU --> MsiExec.exe /I{D2988E9B-C73F-422C-AD4B-A66EBE257120}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office PowerPoint Viewer 2003 --> MsiExec.exe /X{90AF0413-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight --> MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Works 7.0 --> MsiExec.exe /I{A29D0501-02A2-48DD-BC1B-09B27406FE9B}
Mozilla Firefox (2.0.0.14) --> C:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
Nero 7 Premium --> MsiExec.exe /I{7A963CAF-C32C-4299-AC35-009EE6DC1043}
Opera 9.02 --> MsiExec.exe /X{738179D8-3D76-4AFF-A7BE-AEF3B4370CB4}
PitchPerfect Uninstall --> C:\Program Files\NCH Swift Sound\PitchPerfect\uninst.exe
Power Tab Editor 1.7 --> MsiExec.exe /I{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}
QuickPar 0.9 --> C:\Program Files\QuickPar\uninst.exe
QuickTime --> MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Renegade Minds Guitar and Drums Trainer --> MsiExec.exe /I{57FC8DAF-C686-40AE-AF8A-F07996224237}
Roxio DLA --> MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Roxio MyDVD LE --> MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
Roxio RecordNow Audio --> MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Roxio RecordNow Copy --> MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Roxio RecordNow Data --> MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
SAMSUNG CDMA Modem Driver Set --> C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile USB Modem ^^ --> C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software --> C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software --> C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x13 -removeonly
Security Update for CAPICOM (KB931906) --> MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) --> MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SigmaTel Audio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x13 -remove -removeonly
Sonic Activation Module --> MsiExec.exe /I{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
Sonic Update Manager --> MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
SopCast 1.1.2 --> C:\Program Files\SopCast\uninst.exe
SpywareBlaster v3.5.1 --> "C:\Program Files\SpywareBlaster\unins000.exe"
SuperMegaSpoof 2.0 --> "C:\Program Files\SMS\unins000.exe"
Sygate Personal Firewall --> MsiExec.exe /I{F34D9A5F-484A-4E31-A9D3-908CB265B289}
The Rosetta Stone --> C:\WINDOWS\unvise32.exe C:\Program Files\The Rosetta Stone\TRS Support\uninstal.log
TVAnts 1.0 --> C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
Uninstall 1.0.0.0 --> "C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
Unix Utilities for Yahoo! Widgets --> C:\Program Files\Yahoo!\Yahoo! Widget Engine\UnixUtils\uninstall.exe
Update voor Windows XP (KB894391) --> "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
Update voor Windows XP (KB898461) --> "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update voor Windows XP (KB900485) --> "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
Update voor Windows XP (KB908531) --> "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
Update voor Windows XP (KB910437) --> "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
Update voor Windows XP (KB911280) --> "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
Update voor Windows XP (KB912945) -->
Update voor Windows XP (KB916595) --> "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
Update voor Windows XP (KB920872) --> "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
Update voor Windows XP (KB922582) --> "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
Update voor Windows XP (KB927891) --> "C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
Update voor Windows XP (KB929338) --> "C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe"
Update voor Windows XP (KB930916) --> "C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
Update voor Windows XP (KB931836) --> "C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
Update voor Windows XP (KB933360) --> "C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe"
Update voor Windows XP (KB936357) --> "C:\WINDOWS\$NtUninstallKB936357$\spuninst\spuninst.exe"
Update voor Windows XP (KB938828) --> "C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe"
Update voor Windows XP (KB942763) --> "C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
Update voor Windows XP (KB942840) --> "C:\WINDOWS\$NtUninstallKB942840$\spuninst\spuninst.exe"
Update voor Windows XP (KB946627) --> "C:\WINDOWS\$NtUninstallKB946627$\spuninst\spuninst.exe"
VideoLAN VLC media player 0.8.5 --> C:\Program Files\VLC\uninstall.exe
Virtools 3D Life Player --> C:\Program Files\Virtools\3D Life Player\WebplayerConfig.exe -u
VPN Client --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5624C000-B109-11D4-9DB4-00E0290FCAC5}\Setup.exe" -l0x9 VpnUninstall
Winamp --> "C:\Program Files\Winamp\UninstWA.exe"
Windows Live aanmeldhulp --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Live installer --> MsiExec.exe /X{A258173E-F308-475A-951B-F1BF76A4451B}
Windows Live Messenger --> MsiExec.exe /X{A0C978B8-B82B-4FAD-8C31-EBEE8E57468A}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
WinRAR --> C:\Program Files\WinRAR\uninstall.exe
x264 Revision 558 x264.nl (remove only) --> "C:\Program Files\x264\x264-uninstall.exe"
XviD Video Codec 04102002-1 (Koepi's build with EPSZ ME) --> "C:\Program Files\XviD\UninstXviD.exe"
Yahoo! Install Manager --> C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Widgets --> C:\PROGRA~1\Yahoo!\YAHOO!~1\uninstall.exe

-- Application Event Log -------------------------------------------------------

Event Record #/Type25 / Error
Event Submitted/Written: 05/22/2008 05:11:25 PM
Event ID/Source: 8 / crypt32
Event Description:
Het bij <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> opvragen van de automatische update van het basislijstvolgordenummer van derden is mislukt met de fout: Deze netwerkverbinding bestaat niet.

Event Record #/Type24 / Error
Event Submitted/Written: 05/22/2008 05:11:25 PM
Event ID/Source: 8 / crypt32
Event Description:
Het bij <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> opvragen van de automatische update van het basislijstvolgordenummer van derden is mislukt met de fout: Deze bewerking is geretourneerd omdat de time-outperiode verlopen is.

Event Record #/Type19 / Warning
Event Submitted/Written: 05/22/2008 05:06:43 PM
Event ID/Source: 32068 / Microsoft Fax
Event Description:
De regel voor uitgaande routing is niet geldig omdat er geen geldig apparaat kan worden gevonden. De uitgaande faxberichten die van deze regel gebruikmaken, zullen niet worden omgeleid. Controleer of het doelapparaat (of de doelapparaten) op de juiste manier is aangesloten, geïnstalleerd en ingeschakeld.
Landnummer: *
Netnummer: *

Event Record #/Type18 / Warning
Event Submitted/Written: 05/22/2008 05:06:43 PM
Event ID/Source: 32026 / Microsoft Fax
Event Description:
Er kunnen geen toegewezen faxapparaten (virtueel of TAPI) worden geïnitialiseerd.
Er kunnen pas faxberichten worden verzonden nadat er een faxapparaat is geïnstalleerd.

Event Record #/Type10 / Warning
Event Submitted/Written: 05/22/2008 04:56:18 PM
Event ID/Source: 32068 / Microsoft Fax
Event Description:
De regel voor uitgaande routing is niet geldig omdat er geen geldig apparaat kan worden gevonden. De uitgaande faxberichten die van deze regel gebruikmaken, zullen niet worden omgeleid. Controleer of het doelapparaat (of de doelapparaten) op de juiste manier is aangesloten, geïnstalleerd en ingeschakeld.
Landnummer: *
Netnummer: *

-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.

-- System Event Log ------------------------------------------------------------

Event Record #/Type98771 / Error
Event Submitted/Written: 05/22/2008 05:04:40 PM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM kreeg foutmelding '%%1084' bij het starten van de EventSystem-service met de argumenten ''
om de server
{1BE1F766-5536-11D1-B726-00C04FB926AF} te starten

Event Record #/Type98770 / Error
Event Submitted/Written: 05/22/2008 05:04:35 PM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM kreeg foutmelding '%%1084' bij het starten van de netman-service met de argumenten ''
om de server
{BA126AE5-2166-11D1-B1D0-00805FC1270E} te starten

Event Record #/Type98769 / Error
Event Submitted/Written: 05/22/2008 05:04:33 PM
Event ID/Source: 7026 / Service Control Manager
Event Description:
De volgende opstartstuurprogramma's zijn niet geladen:
Aavmker4
AFD
aswSP
aswTdi
Fips
intelppm
IPSec
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
StarOpen
Tcpip
wpsdrvnt

Event Record #/Type98768 / Error
Event Submitted/Written: 05/22/2008 05:04:33 PM
Event ID/Source: 7001 / Service Control Manager
Event Description:
De IPSEC-services-service is afhankelijk van de IPSEC-stuurprogramma-service, die vanwege de volgende fout niet kan worden gestart:
%%31

Event Record #/Type98767 / Error
Event Submitted/Written: 05/22/2008 05:04:33 PM
Event ID/Source: 7001 / Service Control Manager
Event Description:
De Cisco Systems, Inc. VPN Service-service is afhankelijk van de Stuurprogramma voor TCP/IP-protocol-service, die vanwege de volgende fout niet kan worden gestart:
%%31

-- End of Deckard's System Scanner: finished at 2008-05-22 17:13:12 ------------

**smeenk** · 22-05-08, 17:52

Wat veel logjes

Kijk even of je het volgende logje ook vinden kan: C:\RVAXO-Vfind.log (zou als het goed is ook op de C-schijf moeten staan, net zoals C:\RVAXO-results.log)

**TVR** · 22-05-08, 17:59

Eh, ja behoorlijk veel inderdaad. Maar dat was de bedoeling toch

Eh, alsjeblieft iig:

======C:\WINDOWS====
----a-w 0 2008-05-22 15:06:44 C:\WINDOWS\0.log
--s-a-w 2,048 2008-05-22 15:06:25 C:\WINDOWS\bootstat.dat
----a-w 271,409 2008-05-14 05:25:24 C:\WINDOWS\comsetup.log
----a-w 803,663 2008-05-14 05:25:24 C:\WINDOWS\FaxSetup.log
----a-w 1,185 2008-05-01 13:56:45 C:\WINDOWS\ie7_main.log
----a-w 123,630 2008-05-14 05:25:25 C:\WINDOWS\iis6.log
----a-w 1,374 2008-05-14 05:25:24 C:\WINDOWS\imsins.log
----a-w 16,388 2008-05-14 05:25:24 C:\WINDOWS\KB950749.log
----a-w 39,925 2008-05-14 05:25:24 C:\WINDOWS\msgsocm.log
----a-w 69 2008-05-21 06:36:31 C:\WINDOWS\NeroDigital.ini
----a-w 651,810 2008-05-22 15:03:05 C:\WINDOWS\ntbtlog.txt
----a-w 164,260 2008-05-14 05:25:24 C:\WINDOWS\ntdtcsetup.log
----a-w 390,457 2008-05-14 05:25:24 C:\WINDOWS\ocgen.log
----a-w 49,331 2008-05-14 05:25:24 C:\WINDOWS\ocmsn.log
---ha-w 54,156 2008-05-22 15:07:17 C:\WINDOWS\QTFont.qfn
----a-w 32,546 2008-05-22 15:01:14 C:\WINDOWS\SchedLgU.Txt
----a-w 2,458 2008-05-22 12:39:22 C:\WINDOWS\setupact.log
----a-w 554,775 2008-05-22 14:33:12 C:\WINDOWS\setupapi.log
----a-w 308,126 2008-05-14 05:25:24 C:\WINDOWS\tsoc.log
----a-w 216 2008-05-07 16:32:56 C:\WINDOWS\wiadebug.log
----a-w 48 2008-05-05 13:10:26 C:\WINDOWS\wiaservc.log
----a-w 1,729,631 2008-05-22 15:02:03 C:\WINDOWS\WindowsUpdate.log

Entries: 22 (20)
Directories: 0 Files: 22
Bytes: 5,197,505 Blocks: 10,162
======C:\WINDOWS\system32=====
----a-w 1,152,888 2008-05-15 23:24:43 C:\WINDOWS\System32\aswBoot.exe
----a-w 95,608 2008-05-15 23:12:36 C:\WINDOWS\System32\AVASTSS.scr
----a-w 2,894 2008-05-21 14:11:39 C:\WINDOWS\System32\CONFIG.NT
--sha-w 1,741 2008-05-20 14:13:43 C:\WINDOWS\System32\EegQBcdd.ini
----a-w 59,392 2008-05-20 13:57:50 C:\WINDOWS\System32\efcATmNf.dll
----a-w 134,144 2008-05-21 11:43:18 C:\WINDOWS\System32\fhmwgubr.dll
--sh--w 1,498,976 2008-05-21 06:31:26 C:\WINDOWS\System32\ibvjiffu.ini
----a-w 59,392 2008-05-20 13:50:46 C:\WINDOWS\System32\iifgDsSI.dll
--sha-w 442,185 2008-05-22 13:45:39 C:\WINDOWS\System32\ijmUCccf.ini
----a-w 6,242 2008-05-15 17:02:19 C:\WINDOWS\System32\jupdate-1.6.0_05-b13.log
----a-w 59,392 2008-05-20 13:47:54 C:\WINDOWS\System32\khfFutrr.dll
----a-w 2,560 2008-05-22 13:17:05 C:\WINDOWS\System32\ldylvtux.exe
----a-w 16,863,864 2008-05-09 21:35:04 C:\WINDOWS\System32\MRT.exe
--sh--w 1,499,187 2008-05-21 06:19:42 C:\WINDOWS\System32\oqnchali.ini
----a-w 2,560 2008-05-21 06:22:02 C:\WINDOWS\System32\pabxraqv.exe
----a-w 57 2008-05-08 01:59:28 C:\WINDOWS\System32\peer.ini
----a-w 53,436 2008-05-22 15:00:16 C:\WINDOWS\System32\perfc009.dat
----a-w 70,312 2008-05-22 15:00:16 C:\WINDOWS\System32\perfc013.dat
----a-w 381,692 2008-05-22 15:00:16 C:\WINDOWS\System32\perfh009.dat
----a-w 443,522 2008-05-22 15:00:16 C:\WINDOWS\System32\perfh013.dat
----a-w 959,226 2008-05-22 15:00:16 C:\WINDOWS\System32\PerfStringBackup.INI
----a-w 2,560 2008-05-22 12:10:13 C:\WINDOWS\System32\qnxhypdy.exe
----a-w 826,539 2008-05-21 10:16:14 C:\WINDOWS\System32\RVAXO.bat
--sha-w 15,360 2008-05-22 12:46:32 C:\WINDOWS\System32\Thumbs.db
----a-w 3,160 2008-05-22 12:37:40 C:\WINDOWS\System32\tmp.reg
----a-w 0 2008-05-22 12:37:40 C:\WINDOWS\System32\tmp.txt
----a-w 126,464 2008-05-21 11:34:57 C:\WINDOWS\System32\ttlyxhvh.dll
----a-w 2,206 2008-05-22 15:06:49 C:\WINDOWS\System32\wpa.dbl
--sh--w 1,521,972 2008-05-22 12:04:55 C:\WINDOWS\System32\wqphgfbg.ini
----a-w 2,560 2008-05-21 11:37:17 C:\WINDOWS\System32\wytlpaps.exe
--sh--w 1,380,760 2008-05-22 13:39:06 C:\WINDOWS\System32\xhhodxlv.ini
--sha-w 448,341 2008-05-22 12:59:14 C:\WINDOWS\System32\Xyabdccf.ini
--sha-w 538,083 2008-05-21 08:15:31 C:\WINDOWS\System32\yxFNnnnn.ini
--sh--w 1,381,980 2008-05-22 12:45:43 C:\WINDOWS\System32\yxuyekxp.ini

Entries: 34 (24)
Directories: 0 Files: 34
Bytes: 30,039,255 Blocks: 58,683
======C:\WINDOWS\system32\drivers=====
----a-w 26,944 2008-05-15 23:13:26 C:\WINDOWS\System32\drivers\aavmker4.sys
----a-w 20,560 2008-05-15 23:16:06 C:\WINDOWS\System32\drivers\aswFsBlk.sys
----a-w 94,416 2008-05-15 23:18:33 C:\WINDOWS\System32\drivers\aswmon2.sys
----a-w 23,152 2008-05-15 23:15:29 C:\WINDOWS\System32\drivers\aswRdr.sys
----a-w 78,416 2008-05-15 23:20:32 C:\WINDOWS\System32\drivers\aswSP.sys
----a-w 42,912 2008-05-15 23:14:11 C:\WINDOWS\System32\drivers\aswTdi.sys

Entries: 6 (6)
Directories: 0 Files: 6
Bytes: 286,400 Blocks: 563
=======C:\Program Files=====
Entries: 0 (0)
Directories: 0 Files: 0
Bytes: 0 Blocks: 0
=======C:=====
----a-w 557 2008-05-22 15:05:48 C:\firstrun6.log
--sha-w 1,063,407,616 2008-05-22 15:06:25 C:\hiberfil.sys
--sha-w 1,598,029,824 2008-05-22 15:06:24 C:\pagefile.sys
----a-w 1,629 2008-05-22 12:40:29 C:\rapport.txt
----a-w 692 2008-05-22 15:08:14 C:\RVAXO-results.log
----a-w 5,517 2008-05-22 15:08:14 C:\RVAXO-Vfind.log

Entries: 6 (4)
Directories: 0 Files: 6
Bytes: 2,661,445,835 Blocks: 5,198,139
======C:\Documents and Settings\Tom van Rheeden\Application Data======
Entries: 0 (0)
Directories: 0 Files: 0
Bytes: 0 Blocks: 0
======C:\Documents and Settings\Tom van Rheeden======
---ha-w 5,505,024 2008-05-22 15:05:57 C:\Documents and Settings\Tom van Rheeden\NTUSER.DAT
---ha-w 61,440 2008-05-22 15:08:08 C:\Documents and Settings\Tom van Rheeden\ntuser.dat.LOG
--sh--w 188 2008-05-22 15:00:23 C:\Documents and Settings\Tom van Rheeden\ntuser.ini

Entries: 3 (0)
Directories: 0 Files: 3
Bytes: 5,566,652 Blocks: 10,873
======C:\WINDOWS\Downloaded Program Files====
Entries: 0 (0)
Directories: 0 Files: 0
Bytes: 0 Blocks: 0
=============

**smeenk** · 22-05-08, 18:07

Helemaal prima hoor

Open een kladblokbestand.
Kopieer onderstaande (alles wat vetgedrukt is) in dit kladblokbestand.

@ECHO OFF
IF EXIST log.txt DEL log.txt
ECHO Deleting files>>log.txt
FOR %%g in (
C:\WINDOWS\System32\EegQBcdd.ini
C:\WINDOWS\System32\efcATmNf.dll
C:\WINDOWS\System32\fhmwgubr.dll
C:\WINDOWS\System32\ibvjiffu.ini
C:\WINDOWS\System32\iifgDsSI.dll
C:\WINDOWS\System32\ijmUCccf.ini
C:\WINDOWS\System32\khfFutrr.dll
C:\WINDOWS\System32\ldylvtux.exe
C:\WINDOWS\System32\oqnchali.ini
C:\WINDOWS\System32\pabxraqv.exe
C:\WINDOWS\System32\qnxhypdy.exe
C:\WINDOWS\System32\tmp.reg
C:\WINDOWS\System32\tmp.txt
C:\WINDOWS\System32\ttlyxhvh.dll
C:\WINDOWS\System32\wqphgfbg.ini
C:\WINDOWS\System32\wytlpaps.exe
C:\WINDOWS\System32\xhhodxlv.ini
C:\WINDOWS\System32\Xyabdccf.ini
C:\WINDOWS\System32\yxFNnnnn.ini
C:\WINDOWS\System32\yxuyekxp.ini) DO (
DEL /Q %%gNUCIA
IF EXIST %%g (
ATTRIB -r -s -h %%g
DEL %%g
REN %%g *NUCIA
IF EXIST %%gNUCIA (
ECHO renamed to %%gNUCIA>>log.txt)
IF EXIST %%g (
ECHO %%g not deleted>>log.txt
) ELSE (
ECHO %%g deleted>>log.txt)
) ELSE (
ECHO %%g not found>>log.txt))
START NOTEPAD.EXE log.txt

Ga naar Bestand - Opslaan als.
Bij "Opslaan in" kies je: Bureaublad
Bij "Bestandsnaam" zet je: del.bat
Bij "Opslaan als type" selecteer je: Alle bestanden (*.*).
Klik op de knop Opslaan.

Dubbelklik op del.bat en post de inhoud van de logfile die opent.

**TVR** · 22-05-08, 18:15

Deleting files
C:\WINDOWS\System32\EegQBcdd.ini deleted
C:\WINDOWS\System32\efcATmNf.dll deleted
C:\WINDOWS\System32\fhmwgubr.dll deleted
C:\WINDOWS\System32\ibvjiffu.ini deleted
C:\WINDOWS\System32\iifgDsSI.dll deleted
C:\WINDOWS\System32\ijmUCccf.ini deleted
C:\WINDOWS\System32\khfFutrr.dll deleted
C:\WINDOWS\System32\ldylvtux.exe deleted
C:\WINDOWS\System32\oqnchali.ini deleted
C:\WINDOWS\System32\pabxraqv.exe deleted
C:\WINDOWS\System32\qnxhypdy.exe deleted
C:\WINDOWS\System32\tmp.reg deleted
C:\WINDOWS\System32\tmp.txt deleted
C:\WINDOWS\System32\ttlyxhvh.dll deleted
C:\WINDOWS\System32\wqphgfbg.ini deleted
C:\WINDOWS\System32\wytlpaps.exe deleted
C:\WINDOWS\System32\xhhodxlv.ini deleted
C:\WINDOWS\System32\Xyabdccf.ini deleted
C:\WINDOWS\System32\yxFNnnnn.ini deleted
C:\WINDOWS\System32\yxuyekxp.ini deleted

sounds good, right?

**smeenk** · 22-05-08, 18:20

Lijkt goed te gaan

Start Hijackthis en vink alleen de volgende regels aan:
O2 - BHO: (no name) - {15CE2DE7-7E66-435D-88AB-3D5C6956D55E} - C:\WINDOWS\system32\ddcBQgeE.dll (file missing)
O2 - BHO: (no name) - {2CF19059-9614-4A05-B898-D057D14C8391} - C:\WINDOWS\system32\nnnnNFxy.dll (file missing)
O2 - BHO: (no name) - {A353D702-584F-4777-B442-B56CC67812E5} - C:\WINDOWS\system32\fccCUmji.dll (file missing)
O2 - BHO: (no name) - {D8CEBE1F-15D3-4A83-8088-DB0E3587EB50} - C:\WINDOWS\system32\fccdbayX.dll (file missing)
O4 - HKLM\..\Run: [BM8b5fdb10] Rundll32.exe "C:\WINDOWS\system32\xlfyvmcn.dll",s
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\Party Poker\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\Party Poker\PartyPoker\RunApp.exe (file missing)
Sluit alle openstaande vensters(behalve Hijackthis) en klik op de knop "Fix checked".

Herstart de computer.

Post na de herstart een nieuw logje van Hijackthis en vertel of je nog problemen ondervindt

**TVR** · 22-05-08, 18:32

Logfile of HijackThis v1.99.1
Scan saved at 18:29:27, on 22-5-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Cisco Systems\cvpnd.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
C:\Program Files\Alwil Software\Avast4\setup\avast.setup
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [hcenter] "C:\Program Files\Support.com\bin\tgcmd.exe" /server /startmonitor /deaf
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Yahoo! Widget Engine.lnk = C:\Program Files\Yahoo!\Yahoo! Widget Engine\YahooWidgetEngine.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: UvA - Informatiseringscentrum CISCO VPN Client.lnk = C:\Program Files\Cisco Systems\vpngui.exe
O4 - Global Startup: WlanUtility.lnk = C:\Program Files\MicroStar\WLANUtility\WlanUtility.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {BF985246-09BF-11D2-BE62-006097DF57F6} (SimCityX Control) - http://simcity3000unlimited.ea.com/us/guide/classic/simcityx/SimCityX.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

**smeenk** · 22-05-08, 18:37

Doe dit nog:

Download ATF cleaner (mirror)(gemaakt door Atribune)

Belangrijk: Sluit al je browservensters(IE en/of Firefox en/of Opera) om de tool goed te kunnen laten werken.

Dubbelklik op ATF cleaner om het programma te starten.
Op het tabblad "Main", plaats je een vinkje bij Select All.
Klik op de knop Empty Selected.

Het volgende doen als je ook FireFox als browser hebt:
Klik op tabblad "Firefox", plaats een vinkje bij Select All.
Wil je de door Firefox opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
(dit haalt het vinkje weer weg bij "Firefox saved passwords")
Klik op de knop Empty Selected.

Het volgende doen als je ook Opera als browser hebt:
Klik op tabblad "Opera", plaats een vinkje bij Select All.
Wil je de door Opera opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
Klik op de knop Empty Selected.
Ga naar het tabblad "Main" en klik op de knop Exit om het programma af te sluiten.

Schakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.
Kijk hier hoe je je systeemherstel moet uitschakelen.
Hiermee verwijder je eventuele restanten van de infecties uit je systeemherstel.

Dan denk ik dat alles weer OK is.

Groeten smeenk

**TVR** · 22-05-08, 19:40

Ik wacht het af

Moet nu weg, ik hoop dat morgen alles goed werkt.
En dan volgt een donatie, vanzelfsprekend

alvast bedankt!

Mededeling

scvhost.exe virus? onmogelijk hijackthis te runnen.

scvhost.exe virus? onmogelijk hijackthis te runnen.

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment