Het is nu di jul 29, 2014 12:29 am

Forumoverzicht » RSIT/DDS/HijackThis logfiles » Opgeloste RSIT/DDS/HijackThis logfiles




Dit onderwerp is gesloten, je kunt geen berichten wijzigen of nieuwe antwoorden plaatsen  [ 24 berichten ]  Ga naar pagina Vorige  1, 2
Auteur Bericht
BerichtGeplaatst: di aug 28, 2012 2:59 pm 
Offline
Lid

Geregistreerd: di feb 14, 2012 2:43 pm
Berichten: 15
Besturingssysteem: windows xp
Bescherming: Norton
Hallo, 2e log

EXTRAS.txt

OTL Extras logfile created on: 8/28/2012 2:36:36 PM - Run 1
OTL by OldTimer - Version 3.2.59.1 Folder = C:\Users\Joachim\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

2.99 Gb Total Physical Memory | 1.65 Gb Available Physical Memory | 55.18% Memory free
5.98 Gb Paging File | 4.58 Gb Available in Paging File | 76.61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 900.41 Gb Total Space | 474.67 Gb Free Space | 52.72% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 11.36 Gb Free Space | 37.86% Space Free | Partition Type: NTFS

Computer Name: WINDOWS1 | User Name: Joachim | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon
"C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00E5B257-84B6-4542-9971-7FE435373B8C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{1080D6AC-0F35-4C9B-A61B-CDD43F517251}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{11025A5D-7086-425A-969B-B402046DC98B}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{13A0E1A6-6EDB-4995-B58D-796649172D97}" = rport=138 | protocol=17 | dir=out | app=system |
"{1DB5FD6B-4A8E-4E92-B225-AD26ABD08732}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{203438FE-6AEA-4270-9B5B-138F316CFB06}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{22B13481-4238-4F82-96F4-58D372EC10DC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{250042E0-DC27-4440-87F1-A22A913AB8DD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{2C66F841-8742-47C8-BFCF-DD977E51319B}" = lport=139 | protocol=6 | dir=in | app=system |
"{2E0D2C96-6B52-47F2-9195-D88D2DA85768}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{324844A7-7607-476B-8F8E-274E7E80D9C3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{35BD881B-5897-4A14-A7E3-43BBC891EC77}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{362AC38A-9CD3-4193-A701-A78BE57BD1C6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{43B88979-B00B-467C-9205-31E2EF813A4D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{463D249F-2062-43DA-9244-01F31209EEA4}" = lport=2869 | protocol=6 | dir=in | app=system |
"{61A4E8A5-E024-4DA2-8AB1-AA28B6331C25}" = lport=138 | protocol=17 | dir=in | app=system |
"{6242B694-0CF6-4297-83DA-2AE7B9D35AF3}" = rport=10243 | protocol=6 | dir=out | app=system |
"{6A2C91F1-7F76-4873-99E6-EB4D5BFC296D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{72CE8700-4483-4A64-903C-D8E66C1A43EB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8748A837-D495-43F6-9511-A15E7F694CF7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9B387C61-89CA-4EF3-B52D-8878AB5C6B45}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9F9979E6-89C6-4F3A-ABEA-B28516C12E12}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A81CBB34-6FBB-4AC6-A349-DA942118912B}" = rport=445 | protocol=6 | dir=out | app=system |
"{AD564B12-0C91-4542-A6EE-FAD72D9C42B8}" = rport=139 | protocol=6 | dir=out | app=system |
"{B35297A2-EBED-49B3-A4AC-0D566989A84A}" = lport=445 | protocol=6 | dir=in | app=system |
"{B5BFBE19-C907-47FC-B8AA-FD9DA7C0E611}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{B9128CD7-60DA-467D-B687-FE7BBAB48F5D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BA9DBD61-05D9-465B-82B9-C0331E427BDC}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BF501E98-FE62-482F-A6D4-B822A141CCC2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C43B4E46-724D-4FC7-91CD-77FBB68C4258}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D446E756-55B7-43A0-B0CF-012FF040A4A6}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D5A48185-A8B4-4C69-8609-72377EC0DDC1}" = rport=137 | protocol=17 | dir=out | app=system |
"{DB7F82D6-59DF-48FD-85F2-33BD156691A2}" = lport=137 | protocol=17 | dir=in | app=system |
"{E81FA705-5984-4B48-9BEA-8B15D3D1713E}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F326D4D8-25BF-4FFD-8ECD-F98FBA70914C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01C41BF7-DD27-4BFC-81B0-520AE9C7DF7B}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{0BC82F86-AE06-4F36-84B8-43F46B2191A9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1701949B-46A6-453C-AEB3-EAAEA5505C9D}" = protocol=17 | dir=in | app=c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe |
"{23F6ECC9-456A-4867-A192-1026816A9FF0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{254A8E6B-B7C3-4B92-9BF5-7D7C5F2699DE}" = dir=in | app=c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe |
"{2B43E92B-0777-4A93-96CD-C8CB8D78203E}" = protocol=6 | dir=in | app=c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe |
"{2C90D7E9-1511-4B45-A905-B7D60B8EFFDA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{2D164ED2-64D5-4235-B5DD-A2E8FC49A10B}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3120B807-F234-4257-8BD8-7F7BFF9558E0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3143C953-3E30-4C5B-A0A2-F3355239E094}" = dir=in | app=c:\program files\cyberlink\powerdirector10\pdr10.exe |
"{32AEC64E-E301-48C6-A174-41260BFDB667}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{369C5102-670D-4DB6-9AA9-905B60188BC3}" = protocol=6 | dir=out | app=system |
"{43925E3A-F8A6-44E3-AAE2-9624D475CA93}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{45064AE8-395D-40BA-B1BA-F7144848679F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4C71FBB0-E0D6-4C40-8B3C-555DDD88AF4A}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{4FB477FD-D470-4554-972B-F7C91171CC36}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{51CF7D4C-155A-48A0-A2C9-E8CB3B2CFD82}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{583D98D2-AE37-448D-BE1D-3F474064EBFD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7402FD5D-F5AC-4552-A295-B8AD6C1C9F68}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{99FCE0CB-F6A4-40DE-B3AE-25B79701E9AA}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{9DFFA672-09D7-4ADC-A3E1-C04B89916512}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{B0A9C309-DFC1-4E31-83AA-A4DA70138649}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B193A143-BD0F-4A44-880A-0BFE32D02010}" = protocol=6 | dir=in | app=c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe |
"{B51B635A-5B32-4C33-8BDE-F1CFB862F4BE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B93CA15C-91D4-401C-9EAD-E49BBF5012BE}" = protocol=17 | dir=in | app=c:\program files\cerberus llc\cerberus ftp server\cerberusgui.exe |
"{BC917FBE-3117-4191-9D03-E9586147B0A2}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{C2D8B782-3EDF-41C9-B6D9-4401920D10FA}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C3D15B41-4CF4-4CC2-906B-C0A53024C32B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{DA37209E-9770-4C14-ADDC-4F0141033CF8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E8E3520E-5D60-4075-A6B5-0EF375FF6CC7}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F1FA4361-CAD7-451B-8F48-54CC30D9CF07}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F32C3987-12FE-46BB-91AF-A79983D77F74}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FA790609-66A6-495F-BCC4-099EFC9B3AAC}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{FC33E46C-7004-4004-BBDC-ADB1353F462D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{093561FF-BC54-CD42-77BD-4885F16C60B7}" = CCC Help Danish
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{12947715-B6F0-4597-816F-5E13FB647921}_is1" = Spotnet
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}" = Browser Manager
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{17270CE4-6952-4A5B-B633-87D7527944F0}" = Nitro Pro 7
"{17D39326-BF2B-FCE9-DE84-58EE76F945CD}" = CCC Help French
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 33
"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java(TM) 7 Update 5
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10 Platinum HD
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2D6E3D97-1FDF-4993-AC75-72F59EC445C5}" = Windows Live Family Safety
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{39CEE1F2-12B6-4C50-9131-04BFCA110578}" = PowerCinema NE for Everio
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{42C8B7DF-FEB0-4D51-B169-506B6BEC5797}" = Nero 10 Menu TemplatePack 1
"{43FBAB46-5969-4200-9958-1FF81FEE506F}" = Nero 10 Movie ThemePack 1
"{4412F224-3849-4461-A3E9-DEEF8D252790}" = Visual Studio C++ 10.0 Runtime
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A4940D6-418E-867B-F214-2B0C58E7961D}" = CCC Help Swedish
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5677F7F0-8F79-4D41-B1CC-B2D27E58B8CF}" = Similarity 1.3.1
"{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM)
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1" = Auslogics Duplicate File Finder
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}" = iTunes
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{701BDB1B-8D00-8C67-6F64-BDD3B58EC827}" = CCC Help Norwegian
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{70F19404-B96C-4EBB-AD2B-3574F8736197}" = Nero 10 Movie ThemePack 2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7148F0A8-6813-11D6-A77B-00B0D0142190}" = Java 2 Runtime Environment, SE v1.4.2_19
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{8142D25E-028A-4563-86ED-5755783C8029}" = Messenger Companion
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{845E0BCB-8C8D-4FAB-8588-AD5FFD156C95}" = Windows Live Remote Service Resources
"{85BEC8F6-9AA3-43FF-B56B-8276277137B3}" = Nero 10 Video TransitionPack 1
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows Vista and Later
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{8F1ADE4D-EFAC-4F5A-B346-23C2687FAF50}" = Apple Mobile Device Support
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007
"{90120000-0016-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007
"{90120000-0018-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007
"{90120000-001B-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007
"{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007
"{90120000-006E-0413-0000-0000000FF1CE}_HOMESTUDENTR_{1D12BC91-360E-424C-97C4-813651313660}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007
"{90120000-00A1-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9017CEAF-BE5A-4F73-8A0E-C87E26971E55}" = TomTom HOME
"{91065458-A5CF-474C-9160-B44B974B3C25}" = MAGIX USB-Videowandler 2
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92146419-AE44-4C8B-A48B-0ABB1B5EC026}" = Nero 10 Menu TemplatePack 3
"{92A10E9D-EA00-4A46-8F22-EEA660992D61}" = Nero 10 Sample Videos
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{92EC1A84-7FFC-42DF-A8F6-79C21C4765A5}" = Nero DiscCopy Gadget 10
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96ED4B78-300E-4033-AE6C-C115CEB4DF07}" = Nero 10 ClipartPack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A70B0C7B-3527-4D53-A694-E9492ECE9EE1}" = Nero 10 Movie ThemePack 4
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB770FDE-8087-4C98-9A85-BD64262C104C}" = Medion Home Cinema
"{AC76BA86-7AD7-1043-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Nederlands
"{ACD15FDF-FC42-4175-B477-576F92FF2256}" = Nero 10 Sample ImagePack
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"{B355AD55-ED88-4A46-015D-51AAD00EB57D}" = CCC Help Japanese
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B95FB6E3-8373-52BC-C824-8DDB1D6DD049}" = CCC Help Dutch
"{BE4AE3A7-190D-BCB8-A953-A708C9E8E8AA}" = ATI Catalyst Install Manager
"{C09C15F5-DDB7-3820-CF1A-798051174EC7}" = CCC Help Italian
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C2214950-8342-4878-1286-31D0F07FDC34}" = Catalyst Control Center Localization All
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C32CE55C-12BA-4951-8797-0967FDEF556F}" = Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C39F6C00-142E-48AC-633F-15E6AA7E24D8}" = Catalyst Control Center Graphics Previews Vista
"{C47D990B-5D5C-B6A6-A04D-676379D39170}" = CCC Help English
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C7105B49-9E6E-C93C-74E6-858B0863F604}" = Catalyst Control Center InstallProxy
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF52C7EA-BDEF-A58F-6F33-0431076766C8}" = ccc-utility
"{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}" = Digital Photo Navigator 1.5
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D54CF38B-9B9D-4DB7-A57F-EF0852ED1392}" = SlimCleaner
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{D7C7EA35-4C51-F874-3AB7-95DC40DDA494}" = CCC Help German
"{D81845B4-5239-AD56-39A5-9FCFE528330F}" = ccc-core-static
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.19.365
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DD238642-14C7-4D54-8BD7-FAD6DEA9999B}" = Nero 10 Movie ThemePack 3
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DF33FDAF-22DE-4E3E-AFF7-A8648B473596}" = Windows Live Family Safety
"{DFD284CD-501F-B36C-67D9-05D4D7D590AB}" = CCC Help Spanish
"{DFE24605-EA40-478A-ABD9-083ECEFFDBA4}" = Cerberus FTP Server
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E34F703A-1C9D-4B1F-ABBE-D7E8800B860D}" = Windows Live Sync
"{E3D04529-6EDB-11D8-A372-0050BAE317E1}" = CyberLink PowerDVD Copy
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E712C273-7564-4C8E-AA59-0FA19BC35117}" = Nero 10 Menu TemplatePack 2
"{EAC1A606-1D31-AC37-90DD-5684A6E7D2E8}" = CCC Help Finnish
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF3A4DAE-F16F-4AC1-87BB-FE00A784084F}" = Nero 10 PiP EffectPack 1
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0CCBE54-9132-44E9-82DF-CD364AD5C22D}" = Windows Live Remote Client Resources
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4U MP4 Video Converter_is1" = 4U MP4 Video Converter (version 4.0.3)
"7-Zip" = 7-Zip 9.22beta
"Aangifte inkomstenbelasting 2011" = Aangifte inkomstenbelasting 2011
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced SystemCare 5_is1" = Advanced SystemCare 5
"Anti-phishing Domain Advisor" = Anti-phishing Domain Advisor
"Audacity_is1" = Audacity 2.0
"Best Removal Tool_is1" = Best Removal Tool
"CCleaner" = CCleaner
"Cisco Connect" = Cisco Connect
"Driver Performer_is1" = Driver Performer
"Duplicate Cleaner" = Duplicate Cleaner 2.1b
"Duplicate Cleaner Free" = Duplicate Cleaner Free 3.0.0
"Duplicate Music Files Finder_is1" = Duplicate Music Files Finder 1.5.5
"DVD Audio Extractor_is1" = DVD Audio Extractor 6.3.0
"DVD Flick_is1" = DVD Flick 1.3.0.7
"FileHippo.com" = FileHippo.com Update Checker
"Firebird SQL Server NL" = Firebird SQL Server - MAGIX Edition
"FormatFactory" = FormatFactory 2.90
"GemistDownloader" = GemistDownloader
"Glary Utilities_is1" = Glary Utilities 2.47.0.1539
"Glarysoft Toolbar" = Glarysoft Toolbar
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HTMLKit_is1" = HTML-Kit 292
"ImgBurn" = ImgBurn
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}" = MAGIX USB-Videowandler 2
"InstallShield_{AB770FDE-8087-4C98-9A85-BD64262C104C}" = Medion Home Cinema
"InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}" = CyberLink PowerDVD Copy
"MAGIX Film op DVD 8 NL" = MAGIX Film op DVD 8 8.0.2.1 (NL)
"MAGIX Foto Manager 2008 NL" = MAGIX Foto Manager 2008 5.0.3.354 (NL)
"MAGIX Screenshare NL" = MAGIX Screenshare 4.3.6.1987 (NL)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versie 1.62.0.1300
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mufin MusicFinder Base NL" = Mufin MusicFinder Base 1.5.3.248 (NL)
"MyTomTom" = MyTomTom 3.2.0.700
"N360" = Norton 360
"NewBlue Art Effects for PDR10" = Art Effects for PDR10
"Picasa 3" = Picasa 3
"RegClean Pro_is1" = RegClean Pro
"Revo Uninstaller" = Revo Uninstaller 1.94
"Savings Sidekick" = Savings Sidekick
"Secunia PSI" = Secunia PSI (3.0.0.3001)
"Smart Defrag 2_is1" = Smart Defrag 2
"Softonic" = Softonic toolbar on IE
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"ST6UNST #1" = MultyCollect
"ST6UNST #2" = Filapost
"SuperNZB_is1" = SuperNZB v4.0.6
"t@b ZS4 Video Editor_is1" = t@b ZS4 Video Editor v0.958-686
"Temp File Cleaner" = Temp File Cleaner
"TVEpaDrv" = MAGIXUSB-Videowandler 2 Device Driver
"Updater Service" = Updater Service
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"WinLiveSuite" = Windows Live Essentials
"Wise Disk Cleaner_is1" = Wise Disk Cleaner 7.56
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 7.36

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Applicatie Detect
"Winamp Toolbar" = Winamp Toolbar

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5/3/2012 10:18:39 AM | Computer Name = WINDOWS7 | Source = SideBySide | ID = 16842815
Description = Kan activeringscontext voor 'c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll' niet maken. Fout in manifest of beleidsbestand 'c:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll' op regel 3. De waarde MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR
van kenmerk version in element assemblyIdentity is ongeldig.

Error - 5/4/2012 8:54:35 AM | Computer Name = WINDOWS7 | Source = Application Error | ID = 1000
Description = Naam van toepassing met fout: waveedit.exe, versie: 5.8.1.100, tijdstempel:
0x4c5a6bca Naam van module met fout: waveedit.dll, versie: 5.8.1.100, tijdstempel:
0x4c5a6bc0 Uitzonderingscode: 0xc0000005 Foutoffset: 0x00028c24 Id van proces met
fout: 0x1338 Starttijd van toepassing met fout: 0x01cd29f17794dca0 Pad naar toepassing
met fout: C:\Program Files\Nero\Nero 10\Nero WaveEditor\waveedit.exe Pad naar module
met fout: C:\Program Files\Nero\Nero 10\Nero WaveEditor\WEDll\waveedit.dll Rapport-id:
4c54cbad-95e8-11e1-b8cf-6c626d82a5cb

Error - 5/4/2012 10:43:24 AM | Computer Name = WINDOWS7 | Source = Application Hang | ID = 1002
Description = Het programma chrome.exe, versie 18.0.1025.168 reageert niet meer
op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem
beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum
in het Configuratiescherm. Proces-id: 112c Starttijd: 01cd2a0420d68766 Eindtijd: 15

Toepassingspad:
C:\Program Files\Google\Chrome\Application\chrome.exe Rapport-id: 7989da9b-95f7-11e1-b8cf-6c626d82a5cb


Error - 5/4/2012 10:44:05 AM | Computer Name = WINDOWS7 | Source = Application Hang | ID = 1002
Description = Het programma chrome.exe, versie 18.0.1025.168 reageert niet meer
op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem
beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum
in het Configuratiescherm. Proces-id: 888 Starttijd: 01cd2a04441939b0 Eindtijd: 0 Toepassingspad:
C:\Program Files\Google\Chrome\Application\chrome.exe Rapport-id: 951ebf7f-95f7-11e1-b8cf-6c626d82a5cb


Error - 5/5/2012 12:25:16 PM | Computer Name = WINDOWS7 | Source = SideBySide | ID = 16842787
Description = Kan activeringscontext voor 'C:\Program Files\Nero\Nero 10\Nero SoundTrax\NMDllHost.exe.Manifest'
niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Nero\Nero 10\Nero
SoundTrax\NFD\NFD.MANIFEST op regel 3. Onderdeel-id in manifest komt niet overeen
met de id van het gevraagde onderdeel. Verwijzing is NFD,type="win32",version="5.2.0.0".
Definitie
is NFD,type="win32",version="5.0.0.0". Gebruik sxstrace.exe voor gedetailleerde
diagnose.

Error - 5/5/2012 12:25:16 PM | Computer Name = WINDOWS7 | Source = SideBySide | ID = 16842787
Description = Kan activeringscontext voor 'C:\Program Files\Nero\Nero 10\Nero WaveEditor\NMDllHost.exe.Manifest'
niet maken. Fout in manifest of beleidsbestand 'C:\Program Files\Nero\Nero 10\Nero
WaveEditor\NScCoreComponents\NScCoreComponents.MANIFEST op regel 3. Onderdeel-id
in manifest komt niet overeen met de id van het gevraagde onderdeel. Verwijzing
is NScCoreComponents,type="win32",version="5.3.2.0". Definitie is NScCoreComponents,type="win32",version="5.3.0.0".
Gebruik
sxstrace.exe voor gedetailleerde diagnose.

Error - 5/5/2012 12:25:45 PM | Computer Name = WINDOWS7 | Source = SideBySide | ID = 16842815
Description = Kan activeringscontext voor 'c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll' niet maken. Fout in manifest of beleidsbestand 'c:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll' op regel 3. De waarde MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR
van kenmerk version in element assemblyIdentity is ongeldig.

Error - 5/5/2012 8:37:19 PM | Computer Name = WINDOWS7 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/5/2012 8:37:19 PM | Computer Name = WINDOWS7 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 999

Error - 5/5/2012 8:37:19 PM | Computer Name = WINDOWS7 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 999

[ OSession Events ]
Error - 12/8/2011 4:23:03 PM | Computer Name = Huma | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 407
seconds with 0 seconds of active time. This session ended with a crash.

Error - 12/16/2011 10:07:46 AM | Computer Name = Huma | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 8290
seconds with 240 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 8/28/2012 3:44:34 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7000
Description = De Spybot-S&D 2 Updating Service-service kan vanwege de volgende fout
niet worden gestart: %%1053

Error - 8/28/2012 4:05:38 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7009
Description = Time-out (30000 seconden) tijdens het wachten op het verbinden van
deze service: Spybot-S&D 2 Scanner Service.

Error - 8/28/2012 4:05:38 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7000
Description = De Spybot-S&D 2 Scanner Service-service kan vanwege de volgende fout
niet worden gestart: %%1053

Error - 8/28/2012 4:05:45 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7009
Description = Time-out (30000 seconden) tijdens het wachten op het verbinden van
deze service: Spybot-S&D 2 Updating Service.

Error - 8/28/2012 4:05:45 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7000
Description = De Spybot-S&D 2 Updating Service-service kan vanwege de volgende fout
niet worden gestart: %%1053

Error - 8/28/2012 7:10:18 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7009
Description = Time-out (30000 seconden) tijdens het wachten op het verbinden van
deze service: Spybot-S&D 2 Scanner Service.

Error - 8/28/2012 7:10:18 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7000
Description = De Spybot-S&D 2 Scanner Service-service kan vanwege de volgende fout
niet worden gestart: %%1053

Error - 8/28/2012 7:10:26 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7009
Description = Time-out (30000 seconden) tijdens het wachten op het verbinden van
deze service: Spybot-S&D 2 Updating Service.

Error - 8/28/2012 7:10:26 AM | Computer Name = WINDOWS1 | Source = Service Control Manager | ID = 7000
Description = De Spybot-S&D 2 Updating Service-service kan vanwege de volgende fout
niet worden gestart: %%1053

Error - 8/28/2012 7:17:18 AM | Computer Name = WINDOWS1 | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installatiefout: de volgende update kan niet worden geïnstalleerd,
foutcode 0x80070643: Definition Update for Windows Defender - KB915597 (Definition
1.133.510.0).


< End of report >


Omhoog
 Profiel  
 
BerichtGeplaatst: wo aug 29, 2012 10:54 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: ma aug 10, 2009 11:16 am
Berichten: 12123
Woonplaats: @ the world wide web
Besturingssysteem: Windows 7
Bescherming: EAM & OA
Hoi,

Start OTL opnieuw.

  • In het Custom Scans/Fixes veld onderaan plak je het volgende:

    Citaat:
    :OTL
    IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://www.searchqu.com/web?src=ieb&app ... 06&sr=0&q={searchTerms}
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.conduit.com?SearchSource= ... =CT3227982
    IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110819&tt=090812_ppc_3212_3&babsrc=SP_ss&mntrId=2c09137b0000000000006c626d82a5cb
    IE - HKCU\..\SearchScopes\{14AC6CF1-5E1B-4057-8348-33FAE0ADBD71}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3201318
    IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?clien ... src=crm&q={searchTerms}&locale=nl_NL&apn_ptnrs=EV&apn_dtid=YYYYYYYYNL&apn_uid=EB2FBA94-7EB6-48B2-AA41-CB0020D08071&apn_sauid=4F43C3A9-A9CA-4013-ADFC-1D23D4E037FA
    IE - HKCU\..\SearchScopes\{1C3CCB7D-A8F2-49D9-8BF3-2BBE84BF0135}: "URL" = http://nl.search.yahoo.com/search?fr=ch ... =616163&p={searchTerms}
    IE - HKCU\..\SearchScopes\{1ED0AA13-78EA-441C-B49E-173D6290B92B}: "URL" = http://search.softonic.com/MON00016/tb_v1?q={searchTerms}&SearchSource=4&cc=
    IE - HKCU\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://blekko.com/?source=c3348dd4&tbp=rbox&q={searchTerms}
    IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://www.searchqu.com/web?src=ieb&app ... 06&sr=0&q={searchTerms}
    IE - HKCU\..\SearchScopes\{CD7E8706-82BD-4C9D-BC1B-C1473FF68ED2}: "URL" = http://searchya.com/?chnl=dcom-100&s=1& ... DyEtCtD&q={searchTerms}
    IE - HKCU\..\SearchScopes\{D5764D08-00E5-4612-92EB-624BE3FF69B0}: "URL" = http://search.igeared.com/dispatcher.as ... =chrome&q={searchTerms}
    CHR - default_search_provider: Search the web (Babylon) (Enabled)
    CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&affID=110819&tt=090812_ppc_3212_3&babsrc=SP_ss&mntrId=2c09137b0000000000006c626d82a5cb
    O2 - BHO: (Savings Sidekick) - {11111111-1111-1111-1111-110011501160} - C:\Program Files\Savings Sidekick\Savings Sidekick.dll (215 Apps)
    O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
    O2 - BHO: (no name) - {2EECD738-5844-4a99-B4B6-146BF802613B} - No CLSID value found.
    O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\Softonic\1.6.7.4\bh\Softonic.dll (Softonic.com)
    O3 - HKLM\..\Toolbar: (no name) - {0cc09160-108c-4759-bab1-5c12c216e005} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Glarysoft Toolbar) - {32D47EA5-9473-4CAD-805D-9999F15D5AE2} - C:\Program Files\Glarysoft Toolbar\tbcore3.dll ()
    O3 - HKLM\..\Toolbar: (MapsGalaxy) - {364ea597-e728-4ce4-bb4a-ed846ef47970} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll File not found
    O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll (Softonic.com)
    O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\6.3.0.14\coieplg.dll (Symantec Corporation)
    O3 - HKLM\..\Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0CC09160-108C-4759-BAB1-5C12C216E005} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {3BBD3C14-4C16-4989-8366-95BC9179779D} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - No CLSID value found.
    O9 - Extra Button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 File not found
    O9 - Extra 'Tools' menuitem : eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 File not found
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:D3A96964
    @Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:D1B5B4F1
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:D287FACF

    :Files
    C:\Program Files\Softonic
    C:\ProgramData\Babylon
    :Commands
    [emptytemp]
    [EMPTYFLASH]
    [Reboot]

  • Klik op Run Fix bovenaan.
  • Laat het programma ongehinderd werken, herstart de computer als het klaar is en sla de log op die verschijnt.
  • Open OTL weer en klik op Quick Scan bovenaan. Post de log die je krijgt in je volgende post samen met de vorige log (van de fix) die je net opgeslagen hebt.

Groet Maxstar

_________________
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.

Member of UNITE Unified Network of Instructors and Trained Eliminators (Unite Against Malware)

Malwarepreventie| Installeren van essentiële updates.


Omhoog
 Profiel  
 
BerichtGeplaatst: do aug 30, 2012 11:38 am 
Offline
Lid

Geregistreerd: di feb 14, 2012 2:43 pm
Berichten: 15
Besturingssysteem: windows xp
Bescherming: Norton
Hallo Maxstar, hier de log van de fix

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\bProtector Start Page| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{14AC6CF1-5E1B-4057-8348-33FAE0ADBD71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14AC6CF1-5E1B-4057-8348-33FAE0ADBD71}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1C3CCB7D-A8F2-49D9-8BF3-2BBE84BF0135}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1C3CCB7D-A8F2-49D9-8BF3-2BBE84BF0135}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1ED0AA13-78EA-441C-B49E-173D6290B92B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1ED0AA13-78EA-441C-B49E-173D6290B92B}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CD7E8706-82BD-4C9D-BC1B-C1473FF68ED2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CD7E8706-82BD-4C9D-BC1B-C1473FF68ED2}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D5764D08-00E5-4612-92EB-624BE3FF69B0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5764D08-00E5-4612-92EB-624BE3FF69B0}\ not found.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011501160}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011501160}\ not found.
File C:\Program Files\Savings Sidekick\Savings Sidekick.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\ not found.
File C:\Program Files\Winamp Toolbar\winamptb.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ not found.
File C:\Program Files\Softonic\Softonic\1.6.7.4\bh\Softonic.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0cc09160-108c-4759-bab1-5c12c216e005} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cc09160-108c-4759-bab1-5c12c216e005}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32D47EA5-9473-4CAD-805D-9999F15D5AE2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}\ not found.
File C:\Program Files\Glarysoft Toolbar\tbcore3.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{364ea597-e728-4ce4-bb4a-ed846ef47970} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{364ea597-e728-4ce4-bb4a-ed846ef47970}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}\ not found.
File C:\Program Files\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Unable to delete registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ .
File move failed. C:\Program Files\Norton 360\Engine\6.3.0.14\coieplg.dll scheduled to be moved on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} scheduled to be deleted on reboot.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2}\ not found.
File C:\Program Files\Winamp Toolbar\winamptb.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0CC09160-108C-4759-BAB1-5C12C216E005} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0CC09160-108C-4759-BAB1-5C12C216E005}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3BBD3C14-4C16-4989-8366-95BC9179779D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BBD3C14-4C16-4989-8366-95BC9179779D}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Unable to delete ADS C:\ProgramData\Temp:D3A96964 .
Unable to delete ADS C:\ProgramData\Temp:D1B5B4F1 .
Unable to delete ADS C:\ProgramData\Temp:D287FACF .
========== FILES ==========
File\Folder C:\Program Files\Softonic not found.
File\Folder C:\ProgramData\Babylon not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: janek
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Joachim
->Temp folder emptied: 691 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 7454296 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 7.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: janek

User: Joachim
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.59.1 log created on 08302012_104605

Files\Folders moved on Reboot...
File move failed. C:\Program Files\Norton 360\Engine\6.3.0.14\coieplg.dll scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} scheduled to be deleted on reboot.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.


En hier de quick scan

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\bProtector Start Page| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{14AC6CF1-5E1B-4057-8348-33FAE0ADBD71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14AC6CF1-5E1B-4057-8348-33FAE0ADBD71}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1C3CCB7D-A8F2-49D9-8BF3-2BBE84BF0135}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1C3CCB7D-A8F2-49D9-8BF3-2BBE84BF0135}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1ED0AA13-78EA-441C-B49E-173D6290B92B}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1ED0AA13-78EA-441C-B49E-173D6290B92B}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CD7E8706-82BD-4C9D-BC1B-C1473FF68ED2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CD7E8706-82BD-4C9D-BC1B-C1473FF68ED2}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D5764D08-00E5-4612-92EB-624BE3FF69B0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5764D08-00E5-4612-92EB-624BE3FF69B0}\ not found.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011501160}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011501160}\ not found.
File C:\Program Files\Savings Sidekick\Savings Sidekick.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\ not found.
File C:\Program Files\Winamp Toolbar\winamptb.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}\ not found.
File C:\Program Files\Softonic\Softonic\1.6.7.4\bh\Softonic.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0cc09160-108c-4759-bab1-5c12c216e005} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cc09160-108c-4759-bab1-5c12c216e005}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32D47EA5-9473-4CAD-805D-9999F15D5AE2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}\ not found.
File C:\Program Files\Glarysoft Toolbar\tbcore3.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{364ea597-e728-4ce4-bb4a-ed846ef47970} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{364ea597-e728-4ce4-bb4a-ed846ef47970}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{5018CFD2-804D-4C99-9F81-25EAEA2769DE} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}\ not found.
File C:\Program Files\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Unable to delete registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ .
File move failed. C:\Program Files\Norton 360\Engine\6.3.0.14\coieplg.dll scheduled to be moved on reboot.
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} scheduled to be deleted on reboot.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2}\ not found.
File C:\Program Files\Winamp Toolbar\winamptb.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0CC09160-108C-4759-BAB1-5C12C216E005} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0CC09160-108C-4759-BAB1-5C12C216E005}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3BBD3C14-4C16-4989-8366-95BC9179779D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BBD3C14-4C16-4989-8366-95BC9179779D}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA}\ not found.
Unable to delete ADS C:\ProgramData\Temp:D3A96964 .
Unable to delete ADS C:\ProgramData\Temp:D1B5B4F1 .
Unable to delete ADS C:\ProgramData\Temp:D287FACF .
========== FILES ==========
File\Folder C:\Program Files\Softonic not found.
File\Folder C:\ProgramData\Babylon not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: janek
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Joachim
->Temp folder emptied: 691 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 7454296 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 7.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: janek

User: Joachim
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.59.1 log created on 08302012_104605

Files\Folders moved on Reboot...
File move failed. C:\Program Files\Norton 360\Engine\6.3.0.14\coieplg.dll scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Registry delete failed. HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0F4A166-B8D4-48b8-9D63-80849FE137CB} scheduled to be deleted on reboot.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0F4A166-B8D4-48b8-9D63-80849FE137CB}\ not found.


Omhoog
 Profiel  
 
BerichtGeplaatst: do aug 30, 2012 11:41 am 
Offline
Moderator
Avatar gebruiker

Geregistreerd: ma aug 10, 2009 11:16 am
Berichten: 12123
Woonplaats: @ the world wide web
Besturingssysteem: Windows 7
Bescherming: EAM & OA
Hoi,

Voer nu ter controle nog even een scan uit met de Emsisoft Emergency Kit.

Download de Emsisoft Emergency Kit naar het bureaublad en pak het ZIP bestand uit.
  • Open de map "EmsisoftEmergencyKit" en dubbelklik op "Start.exe"
  • Klik nu op "Emergency Kit Scanner" u krijg nu een melding dat het is aanbevolen om eerst te updaten sta dit toe door te klikken op "Ja"
    Afbeelding
  • Als de update gereed is en de melding "Update process is succesvol afgerond" verschijnt klikt u op "menu" en dan op "Scan PC"
  • Selecteer de optie "Diep" als deze niet standaard al zo is ingesteld.
  • Klik Nu op de knop "Scan" en doe verder niets op de computer tijdens het scannen, deze scan kan een geruime tijd in beslag nemen dus wacht dit geduldig af.
  • Het venster met de waarschuwing over een verhoogd risico kunt u sluiten als de scan gereed is.
  • Zorg ervoor dat alle gevonden items zijn aangevinkt en druk dan op de knop "verwijder geselecteerde" u zal nu de volgende melding krijgen maar klik hier op "Ja"
    Afbeelding
  • Als het verwijderen gereed is klikt u op de knop "Rapport bekijken" en selecteert u het tekstbestand van deze scan met de naam zoals: a2scan_110730-111615.txt
  • Plaats de inhoud van dit LOG bestand straks in uw volgende bericht.
  • Herstart nu de computer.

_________________
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.

Member of UNITE Unified Network of Instructors and Trained Eliminators (Unite Against Malware)

Malwarepreventie| Installeren van essentiële updates.


Omhoog
 Profiel  
 
BerichtGeplaatst: do aug 30, 2012 7:08 pm 
Offline
Lid

Geregistreerd: di feb 14, 2012 2:43 pm
Berichten: 15
Besturingssysteem: windows xp
Bescherming: Norton
log emsisoft


Emsisoft Emergency Kit - Versie 2.0
Laatste Update: 8/30/2012 3:38:35 PM

Scaninstellingen:

Scantype: Diepe scan
Objecten: Rootkits, Geheugen, Sporen, C:\, D:\
Scan archieven: Aan
ADS Scan: Aan

Scan gestart: 8/30/2012 3:39:49 PM

Value: hkey_classes_root\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c} --> appid Ontdekt: Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_classes_root\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c}\inprocserver32 --> threadingmodel Ontdekt: Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_local_machine\software\classes\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c} --> appid Ontdekt: Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_local_machine\software\classes\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c}\inprocserver32 --> threadingmodel Ontdekt: Trace.Registry.els.mywebtattoo.com!E1
C:\Users\Joachim\Downloads\Alcohol120_trial_2.0.2.3931 (1).exe Ontdekt: Riskware.Win32.InstallCore!E1
C:\Users\Joachim\Downloads\Alcohol120_trial_2.0.2.3931.exe Ontdekt: Riskware.Win32.InstallCore!E1
C:\Users\Joachim\Downloads\cnet2_dmff_installer_exe.exe Ontdekt: Riskware.Win32.InstallCore.AMN!E1
C:\Users\Joachim\Downloads\SoftonicDownloader_fuer_k-lite-codec-pack.exe Ontdekt: Riskware.Win32.SoftonicDownloader.AMN!E1
C:\Users\Joachim\AppData\LocalLow\UtilityChest_49EI\Installr\Cache\0079339F.exe Ontdekt: Riskware.WebToolbar.Win32.MyWebSearch.AMN!E1
C:\Program Files\PDFCreator\message.exe Ontdekt: Riskware.Win32.InstallCore.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39datact.dll Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39ieovr.dll Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39htmlmu.dll Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39skin.dll Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\T8HTML.DLL Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39Plugin.dll Ontdekt: Adware.Win32.Toolbar.MyWebSearch.AMN!E1

Gescand 616298
Gevonden 16

Scan geëindigd: 8/30/2012 4:13:21 PM
Scantijd: 0:33:32

C:\Program Files\MapsGalaxy_39\bar\1.bin\39datact.dll Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39ieovr.dll Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39htmlmu.dll Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39skin.dll Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\T8HTML.DLL Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Program Files\MapsGalaxy_39\bar\1.bin\39Plugin.dll Verwijderd Adware.Win32.Toolbar.MyWebSearch.AMN!E1
C:\Users\Joachim\AppData\LocalLow\UtilityChest_49EI\Installr\Cache\0079339F.exe Verwijderd Riskware.WebToolbar.Win32.MyWebSearch.AMN!E1
C:\Users\Joachim\Downloads\SoftonicDownloader_fuer_k-lite-codec-pack.exe Verwijderd Riskware.Win32.SoftonicDownloader.AMN!E1
C:\Users\Joachim\Downloads\cnet2_dmff_installer_exe.exe Verwijderd Riskware.Win32.InstallCore.AMN!E1
C:\Program Files\PDFCreator\message.exe Verwijderd Riskware.Win32.InstallCore.AMN!E1
C:\Users\Joachim\Downloads\Alcohol120_trial_2.0.2.3931 (1).exe Verwijderd Riskware.Win32.InstallCore!E1
C:\Users\Joachim\Downloads\Alcohol120_trial_2.0.2.3931.exe Verwijderd Riskware.Win32.InstallCore!E1
Value: hkey_classes_root\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c} --> appid Verwijderd Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_classes_root\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c}\inprocserver32 --> threadingmodel Verwijderd Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_local_machine\software\classes\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c} --> appid Verwijderd Trace.Registry.els.mywebtattoo.com!E1
Value: hkey_local_machine\software\classes\clsid\{57cadc46-58ff-4105-b733-5a9f3fc9783c}\inprocserver32 --> threadingmodel Verwijderd Trace.Registry.els.mywebtattoo.com!E1

Verwijderd 16


Omhoog
 Profiel  
 
BerichtGeplaatst: vr aug 31, 2012 11:38 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: ma aug 10, 2009 11:16 am
Berichten: 12123
Woonplaats: @ the world wide web
Besturingssysteem: Windows 7
Bescherming: EAM & OA
Hoi,

Zijn er nu momenteel nog problemen merkbaar?

Groet Maxstar

_________________
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.

Member of UNITE Unified Network of Instructors and Trained Eliminators (Unite Against Malware)

Malwarepreventie| Installeren van essentiële updates.


Omhoog
 Profiel  
 
BerichtGeplaatst: za sep 01, 2012 2:54 pm 
Offline
Lid

Geregistreerd: di feb 14, 2012 2:43 pm
Berichten: 15
Besturingssysteem: windows xp
Bescherming: Norton
Hallo Maxstar, alles draait weer prima, geen problemen meer gehad. Hartelijk bedankt voor je hulp. Bedankje wordt nog geplaatst en daar ik bij Paradigit (i.v.m. niet meer op kunnen starten, zoals ik gemaild had) niets hoefde te betalen doneer ik het bedrag wat ik anders misschien bij Paradigit had moeten betalen.
Prettig weekend
Jan


Omhoog
 Profiel  
 
BerichtGeplaatst: zo sep 02, 2012 10:09 am 
Offline
Moderator
Avatar gebruiker

Geregistreerd: ma aug 10, 2009 11:16 am
Berichten: 12123
Woonplaats: @ the world wide web
Besturingssysteem: Windows 7
Bescherming: EAM & OA
Hoi,

Graag gedaan en mooi dat er geen problemen meer zijn... :D
En natuurlijk hartelijk dank voor de eventuele donatie aan HijackThis. :D

De volgende programma's en bijbehorende log bestanden mag je verwijderen. MBAM en de Emsisoft Emergency Kit kan je gewoon blijven gebruiken om periodiek de computer te scannen (wel eerst updaten).
  • OTL
  • DDS


Aangezien de problemen zijn verholpen adviseer ik u nog wel even het onderstaande uit te voeren.

1.) Systeemherstelpunten verwijderen
Als de computer geïnfecteerd is geweest met een malware infectie is het raadzaam om alle aanwezige systeemherstelpunten te verwijderen, want hier kunnen namelijk besmette herstelpunten tussen zitten.
  • Hoe u de herstelpunten verwijderd leest u hier
  • Hoe u zelf snel een nieuw systeemherstelpunt aan kunt maken leest u hier

2.) Installeren van essentiële updates.
Hoe u uw besturingssysteem en overige software up to date houdt kunt u hier lezen.
Door middel van het programma Secunia PSI wordt u automatisch gewaarschuwd indien er updates voor de geïnstalleerde software beschikbaar is, meer informatie leest u hier

3.) Pas op voor 'Phishing' berichten.
Phishing is een vorm van internet oplichting (fraude), met valse e-mailberichten en websites die er vertrouwd uitzien wordt er getracht 'logingegevens' en andere persoonlijke informatie te achterhalen.
Dit gebeurt vaak op hele slinkse manieren, zoals bijvoorbeeld e-mailberichten waarin u gevraagd wordt uw inloggegevens te verifiëren, in deze gevallen wordt u vaak naar een valse (clone) website gestuurd, zodra u uw gegevens hier hebt ingevoerd zijn deze in de handen van de kwaadwillende met alle gevolgen van dien.
Meer informatie leest u hier

4.) Gebruikersaccounts
Met dit account heeft u dus het volledige beheer van de computer in handen, het is dan ook niet aan te raden om dit account als primair account voor het dagelijkse gebruik in te stellen.
Meer informatie hierover leest u hier

5.) Wachtwoorden wijzigen
De meeste malware maakt een uitgaande verbinding met een Command & Control-server waarbij er vertrouwelijke gegevens zoals bijvoorbeeld inloggegevens worden buitgemaakt, indien uw computer geïnfecteerd is geweest is het dan ook raadzaam om al uw gebruikte wachtwoorden te wijzigen.
Meer informatie hierover leest u hier

6.) Risico's bij het downloaden
Peer to Peer (P2P) netwerken en ook Usenet (nieuwsgroepen) zijn een grote bron op het internet wat betreft het verspreiden van malware, het aanbieden van 'gevaarlijke' software (malware) gebeurt vrijwel anoniem waardoor dit een veel gebruikte methode is voor het verspreiden van malware.
Meer informatie hierover leest u hier

7.) Preventie informatie & het gebruik van beveiligings software.
Om de kans op een her-infectie te minimaliseren kan je naast de gebruikte beveiligingssoftware een aanvullende malwarescanner installeren zoals Emsisoft Anti-Malware of Malwarebytes' Antimalware om de bescherming te optimaliseren.
Hier staat meer informatie hoe u een infectie in de toekomst kunt voorkomen, lees dit eens op uw gemak door.

Groet Maxstar

_________________
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.

Member of UNITE Unified Network of Instructors and Trained Eliminators (Unite Against Malware)

Malwarepreventie| Installeren van essentiële updates.


Omhoog
 Profiel  
 
BerichtGeplaatst: wo sep 12, 2012 10:12 am 
Offline
Moderator
Avatar gebruiker

Geregistreerd: ma aug 10, 2009 11:16 am
Berichten: 12123
Woonplaats: @ the world wide web
Besturingssysteem: Windows 7
Bescherming: EAM & OA
Omdat het probleem is verholpen wordt dit topic gesloten.

Als u dit topic heropent wilt hebben, dan kunt u mij of één van moderators een (PB) privébericht sturen met een link naar dit betreffende topic.

Indien het topic al langere tijd is gesloten kunt u het beste hier een nieuw topic aanmaken, en eventueel verwijzen naar dit topic.

Groet Maxstar

_________________
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.

Member of UNITE Unified Network of Instructors and Trained Eliminators (Unite Against Malware)

Malwarepreventie| Installeren van essentiële updates.


Omhoog
 Profiel  
 
Geef de vorige berichten weer:  Sorteer op  
Dit onderwerp is gesloten, je kunt geen berichten wijzigen of nieuwe antwoorden plaatsen  [ 24 berichten ]  Ga naar pagina Vorige  1, 2

Forumoverzicht » RSIT/DDS/HijackThis logfiles » Opgeloste RSIT/DDS/HijackThis logfiles


Wie is er online

Gebruikers op dit forum: Google [Bot] en 0 gasten


Je mag geen nieuwe onderwerpen in dit forum plaatsen
Je mag niet antwoorden op een onderwerp in dit forum
Je mag je berichten in dit forum niet wijzigen
Je mag je berichten niet uit dit forum verwijderen
Je mag geen bijlagen toevoegen in dit forum

Ga naar:  
Powered by phpBB® Forum Software © phpBB Group
phpBB.nl Vertaling