Hello mambass,
I posted a reply yesterday ut i guess that went wrong.
1.
I had no trouble with performing these scans.
2.
Like you recommended I removed Microsoft Office Enterprise 2007.
3.
Below you can find the results of the scans.
Thanks a lot!
OTL
OTL logfile created on: 18-4-2012 12:49:56 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Adeline\Desktop
Windows Vista Business Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy
1,87 Gb Total Physical Memory | 0,94 Gb Available Physical Memory | 50,07% Memory free
3,99 Gb Paging File | 2,73 Gb Available in Paging File | 68,47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,67 Gb Total Space | 53,07 Gb Free Space | 52,20% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 6,42 Gb Free Space | 64,25% Space Free | Partition Type: NTFS
Computer Name: ADELINEDESSING | User Name: Adeline | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2012-04-18 12:18:48 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Adeline\Desktop\OTL.exe
PRC - [2012-02-23 13:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
PRC - [2012-02-15 01:03:14 | 024,246,216 | ---- | M] (Dropbox, Inc.) -- C:\Users\Adeline\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012-01-24 18:24:26 | 002,416,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2012-01-13 12:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2011-11-28 02:19:04 | 001,229,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2011-10-12 07:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
PRC - [2011-09-08 21:53:26 | 000,743,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2011-08-15 07:21:40 | 000,337,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2011-08-02 07:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2011-06-15 16:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011-04-27 16:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2009-10-01 12:37:03 | 000,122,880 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
PRC - [2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-08-14 00:04:52 | 001,017,648 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\gs_agent\dsc.exe
PRC - [2008-08-14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008-08-14 00:04:42 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2008-02-26 11:57:28 | 000,128,296 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
PRC - [2008-02-22 18:01:38 | 001,193,240 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\quickset.exe
PRC - [2007-05-11 10:19:34 | 000,327,680 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Trust\R-Series Mouse And Keyboard\KMProcess.exe
PRC - [2007-05-10 13:00:08 | 000,208,896 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Trust\R-Series Mouse And Keyboard\KMWDSrv.exe
PRC - [2007-05-10 10:50:52 | 000,704,512 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Trust\R-Series Mouse And Keyboard\KMCONFIG.exe
PRC - [2007-04-24 14:31:14 | 000,303,104 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\sttray.exe
PRC - [2007-04-24 14:31:10 | 000,090,112 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\stacsv.exe
PRC - [2007-04-16 11:45:48 | 000,139,264 | ---- | M] (Realtek) -- C:\Program Files\Realtek\REALTEK DVB-T USB DEVICE\IR_SERVER.exe
PRC - [2007-03-06 14:51:14 | 000,212,992 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Trust\R-Series Mouse And Keyboard\StartAutorun.exe
PRC - [2006-11-03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\Pixart\Pac7302\Monitor.exe
PRC - [2006-04-28 11:14:44 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
========== Modules (No Company Name) ========== MOD - [2012-01-15 20:23:08 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\e3180b4230f052996adb81da3dc64ad0\System.Management.ni.dll
MOD - [2012-01-15 20:00:58 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1ba19f8efcff8ad7f972aa38ab9a15f5\System.Runtime.Remoting.ni.dll
MOD - [2012-01-15 20:00:38 | 011,800,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\0a1195c6b5fab213527364c9e8b26ef0\System.Web.ni.dll
MOD - [2012-01-15 19:59:53 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\aa3e053d433c48e1e8c3f436b4de1ed3\System.Configuration.ni.dll
MOD - [2012-01-15 19:59:23 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb60f99da570cc494e27e0e8ee747e2\System.Xml.ni.dll
MOD - [2012-01-15 19:58:32 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\381fb23cb39e1a61e13b8770eb9800ba\System.Windows.Forms.ni.dll
MOD - [2012-01-15 19:58:11 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f1aa2385c0109f3059e0e6ba8b58ff68\System.Drawing.ni.dll
MOD - [2012-01-12 11:34:07 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dff86a62a525ec8dc827fe9f50298b7\System.ni.dll
MOD - [2012-01-12 11:33:34 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2011-11-15 18:15:58 | 000,103,424 | ---- | M] () -- C:\Program Files\Google\Quick Search Box\bin\1.2.1151.245\rlz.dll
MOD - [2011-06-24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011-06-24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009-08-16 17:06:04 | 000,141,312 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008-09-16 00:24:41 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_nl_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2008-09-16 00:24:41 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_nl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2007-12-09 00:34:10 | 000,054,784 | ---- | M] () -- C:\Windows\System32\bcmwlrmt.dll
MOD - [2007-10-17 11:33:56 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2007-03-29 12:17:42 | 000,106,496 | ---- | M] () -- C:\Program Files\Trust\R-Series Mouse And Keyboard\keydll.dll
MOD - [2005-05-04 19:12:46 | 000,028,672 | ---- | M] () -- C:\Program Files\Trust\R-Series Mouse And Keyboard\MouseHook.dll
========== Win32 Services (SafeList) ========== SRV - [2012-01-13 12:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2011-10-12 07:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011-08-02 07:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011-04-27 16:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008-08-14 00:04:44 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-05-10 13:00:08 | 000,208,896 | ---- | M] (UASSOFT.COM) [Auto | Running] -- C:\Program Files\Trust\R-Series Mouse And Keyboard\KMWDSrv.exe -- (KMWDSERVICE)
SRV - [2007-04-24 14:31:10 | 000,090,112 | ---- | M] (SigmaTel, Inc.) [Auto | Running] -- C:\Windows\System32\stacsv.exe -- (STacSV)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\BCM42RLY.sys -- (BCM42RLY)
DRV - [2011-10-07 07:23:48 | 000,230,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011-10-04 07:21:16 | 000,016,720 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011-09-13 07:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011-08-08 07:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011-07-11 02:14:38 | 000,295,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011-07-11 02:14:02 | 000,024,272 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011-07-11 02:14:00 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2011-07-11 02:13:58 | 000,134,736 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011-04-18 14:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009-06-08 11:32:55 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2007-10-17 11:33:56 | 002,085,888 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2007-05-03 05:44:52 | 000,017,280 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\KMWDFilter.SYS -- (KMWDFilter)
DRV - [2007-04-29 07:24:30 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007-04-24 14:31:16 | 000,323,584 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2007-04-24 14:29:38 | 000,045,568 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2007-04-24 14:00:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-04-24 14:00:18 | 000,043,520 | ---- | M] (REDC) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007-04-24 14:00:16 | 000,032,256 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2006-12-05 11:34:42 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PFC027.SYS -- (PAC207)
DRV - [2006-11-02 09:30:55 | 000,200,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Stuurprogramma voor Intel(R)
DRV - [2006-10-30 11:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DANL
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.nl/ig/dell?hl=nl&clie ... bd=2080705IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.babylon.com/?affID=110819 ... 1fe1c5fb80IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\URLSearchHook: CFBFAE00-17A6-11D0-99CB-00C04FD64497} - No CLSID value found
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" =
http://search.babylon.com/?q={searchTerms}&affID=110819&tt=050412_30b&babsrc=SP_ss&mntrId=c8ecb10c000000000000001fe1c5fb80
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rlz=1I7GGLL_nl&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" =
http://127.0.0.1:4664/search&s=H8ITxucz ... lpYkk-Q?q={searchTerms}
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{7553418E-A5F0-48AB-9DA8-901C37599DBA}: "URL" =
http://us.yhs.search.yahoo.com/avg/sear ... rome_us&p={searchTerms}
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" =
http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1339052
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" =
http://search.yahoo.com/search?fr=mcafee&p={searchTerms}
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..keyword.URL: "http://search.babylon.com/?affID=110819&tt=050412_30b&babsrc=KW_ss&mntrId=c8ecb10c000000000000001fe1c5fb80&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012-02-05 21:39:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012-02-24 15:03:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-03-21 18:07:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-11-07 00:40:27 | 000,000,000 | ---D | M]
[2011-12-21 17:20:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adeline\AppData\Roaming\mozilla\Extensions
[2012-04-14 22:23:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adeline\AppData\Roaming\mozilla\Firefox\Profiles\l8n5m2ra.default\extensions
[2012-03-21 18:08:07 | 000,000,000 | ---D | M] (Vuze Remote Community Toolbar) -- C:\Users\Adeline\AppData\Roaming\mozilla\Firefox\Profiles\l8n5m2ra.default\extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
[2012-03-31 11:52:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-03-31 11:52:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2012-03-21 18:07:16 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-03-31 11:51:33 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009-08-03 16:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll
[2012-04-14 22:06:13 | 000,002,353 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012-02-21 17:52:25 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012-02-21 17:52:25 | 000,001,892 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bolcom-nl.xml
[2012-02-21 17:52:25 | 000,004,558 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\marktplaats-nl.xml
[2012-02-21 17:52:25 | 000,001,049 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-nl.xml
========== Chrome ========== O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,736 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )
O4 - HKLM..\Run: [ECenter] C:\DELL\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [IR_SERVER] C:\Program Files\Realtek\REALTEK DVB-T USB DEVICE\IR_SERVER.exe (Realtek)
O4 - HKLM..\Run: [KMCONFIG] C:\Program Files\Trust\R-Series Mouse And Keyboard\StartAutorun.exe KMConfig.exe File not found
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\Windows\Pixart\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Windows\sttray.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O4 - Startup: C:\Users\Adeline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Adeline\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe File not found
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-3977688048-60149397-2618378689-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.54.35.25 212.54.40.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8415BFBF-3BB5-4A75-88F0-F36D60398782}: DhcpNameServer = 212.54.35.25 212.54.40.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8748A873-9AE5-48D6-B0E7-29B1F369311C}: DhcpNameServer = 195.241.77.55 195.241.77.58
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\GOOGLE\GOOGLE~2\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Adeline\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Adeline\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{6e68fdc2-f0a6-11dd-bb23-001d09d5791c}\Shell\AutoRun\command - "" = C:\Windows\explorer.exe -- [2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{6e68fdc2-f0a6-11dd-bb23-001d09d5791c}\Shell\explore\Command - "" = C:\Windows\explorer.exe -- [2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{6e68fdc2-f0a6-11dd-bb23-001d09d5791c}\Shell\open\Command - "" = C:\Windows\explorer.exe -- [2008-10-29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{7252f75b-4c1a-11de-9f37-001d09d5791c}\Shell\AutoRun\command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{7252f75b-4c1a-11de-9f37-001d09d5791c}\Shell\explore\Command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{7252f75b-4c1a-11de-9f37-001d09d5791c}\Shell\open\Command - "" = F:\EXPLORER.EXE
O33 - MountPoints2\{c6e82047-49f4-11e0-a81b-001d09d5791c}\Shell - "" = AutoRun
O33 - MountPoints2\{c6e82047-49f4-11e0-a81b-001d09d5791c}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ========== [2012-04-18 12:23:07 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-04-18 12:18:38 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Adeline\Desktop\OTL.exe
[2012-04-16 17:18:39 | 000,000,000 | ---D | C] -- C:\MGADiagToolOutput
[2012-04-16 17:14:43 | 002,031,992 | ---- | C] (Microsoft Corporation) -- C:\Users\Adeline\Desktop\MGADiag.exe
[2012-04-14 22:06:05 | 000,000,000 | ---D | C] -- C:\Users\Adeline\AppData\Local\Babylon
[2012-04-14 22:06:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012-04-14 22:06:00 | 000,000,000 | ---D | C] -- C:\Users\Adeline\AppData\Roaming\Babylon
[2012-04-06 23:17:32 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Adeline\Desktop\dds.scr
[2012-04-06 23:15:18 | 000,000,000 | ---D | C] -- C:\Users\Adeline\AppData\Local\MigWiz
[2012-04-04 12:21:06 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr
[2012-04-04 12:18:16 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center(32)
[2012-03-31 19:59:52 | 000,000,000 | ---D | C] -- C:\Users\Adeline\PC
[2012-03-31 13:58:12 | 000,000,000 | ---D | C] -- C:\output media
[2012-03-31 13:57:23 | 000,000,000 | ---D | C] -- C:\Program Files\Free Convert to DIVX AVI WMV MP4 MPEG Converter
[2012-03-31 13:56:49 | 000,860,160 | ---- | C] (
http://www.mp3dev.org/) -- C:\Windows\System32\lameACM.acm
[2012-03-31 13:56:47 | 000,081,920 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2012-03-31 13:56:46 | 000,683,520 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\divx.dll
[2012-03-31 11:52:04 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012-03-31 11:52:04 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012-03-31 11:52:04 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012-03-30 17:13:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2012-04-18 13:00:20 | 000,000,458 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{0B176512-568E-42B5-8CC1-C01D4E8721EB}.job
[2012-04-18 12:51:01 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-04-18 12:41:40 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012-04-18 12:41:40 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012-04-18 12:41:36 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-04-18 12:41:23 | 000,376,424 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-04-18 12:40:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-04-18 12:18:48 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Adeline\Desktop\OTL.exe
[2012-04-18 11:58:36 | 095,468,922 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012-04-17 15:46:55 | 000,002,627 | ---- | M] () -- C:\Users\Adeline\Desktop\Microsoft Office Word 2007.lnk
[2012-04-16 17:15:17 | 003,514,358 | ---- | M] () -- C:\Users\Adeline\Desktop\WVCheck.exe
[2012-04-16 17:14:52 | 000,458,240 | ---- | M] () -- C:\Users\Adeline\Desktop\CKScanner.exe
[2012-04-16 17:14:45 | 002,031,992 | ---- | M] (Microsoft Corporation) -- C:\Users\Adeline\Desktop\MGADiag.exe
[2012-04-14 22:06:21 | 000,000,251 | ---- | M] () -- C:\user.js
[2012-04-14 18:15:00 | 000,460,973 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012-04-14 10:02:19 | 000,231,936 | ---- | M] () -- C:\Users\Adeline\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-04-06 23:17:45 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Adeline\Desktop\dds.scr
[2012-04-06 23:17:04 | 000,680,092 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2012-04-06 23:17:03 | 000,598,900 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-04-06 23:17:03 | 000,131,030 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2012-04-06 23:17:03 | 000,104,914 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-03-31 13:57:42 | 000,000,034 | -H-- | M] () -- C:\Windows\System32\Converter_sysquict.dat
[2012-03-31 11:51:27 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012-03-31 11:51:27 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012-03-31 11:51:26 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012-03-31 11:51:25 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012-03-31 11:21:20 | 000,001,854 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2012-03-31 11:21:20 | 000,001,854 | ---- | M] () -- C:\Users\Adeline\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2012-03-30 17:13:03 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ========== [2012-04-16 17:14:59 | 003,514,358 | ---- | C] () -- C:\Users\Adeline\Desktop\WVCheck.exe
[2012-04-16 17:14:51 | 000,458,240 | ---- | C] () -- C:\Users\Adeline\Desktop\CKScanner.exe
[2012-04-14 22:06:21 | 000,000,251 | ---- | C] () -- C:\user.js
[2012-03-31 13:57:42 | 000,000,034 | -H-- | C] () -- C:\Windows\System32\Converter_sysquict.dat
[2012-03-31 13:56:50 | 000,000,414 | ---- | C] () -- C:\Windows\System32\lame_acm.xml
[2012-03-31 13:56:47 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2012-03-30 17:13:03 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012-01-12 10:31:53 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2012-01-12 10:31:53 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011-05-27 13:05:34 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011-05-27 13:05:33 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011-05-27 13:05:29 | 000,755,027 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011-05-27 13:05:29 | 000,159,839 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011-05-27 13:05:28 | 000,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011-04-27 11:48:27 | 000,027,503 | ---- | C] () -- C:\Users\Adeline\AppData\Roaming\UserTile.png
[2010-07-15 13:43:41 | 000,767,928 | ---- | C] () -- C:\Windows\BDTSupport.dll.old
========== LOP Check ========== [2011-12-20 14:50:11 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\AVG2012
[2012-04-14 23:52:17 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Azureus
[2012-04-14 22:06:00 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Babylon
[2010-09-27 14:04:34 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Belastingdienst
[2008-07-19 10:52:32 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\BSplayer
[2009-09-22 13:55:33 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\BSplayer Pro
[2011-12-20 15:06:10 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\DAEMON Tools Lite
[2011-12-20 15:06:10 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\DAEMON Tools Pro
[2012-04-18 12:43:28 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Dropbox
[2011-06-29 13:50:29 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\fotoboeken-maken Publisher
[2009-09-29 17:35:03 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\LimeWirePlus
[2009-02-07 01:00:09 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Nokia
[2009-02-06 23:53:50 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\PC Suite
[2012-04-04 11:16:48 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\PCDr
[2008-07-10 13:46:04 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Template
[2010-03-29 20:10:31 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Tific
[2010-03-31 14:46:39 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Uniblue
[2010-03-18 19:03:57 | 000,000,000 | ---D | M] -- C:\Users\Adeline\AppData\Roaming\Vso
[2012-04-18 12:39:32 | 000,032,596 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012-04-18 13:00:20 | 000,000,458 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{0B176512-568E-42B5-8CC1-C01D4E8721EB}.job
========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:A8ADE5D8
< End of report >
EXTRAS
OTL Extras logfile created on: 18-4-2012 12:49:56 - Run 1
OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Adeline\Desktop
Windows Vista Business Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000413 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy
1,87 Gb Total Physical Memory | 0,94 Gb Available Physical Memory | 50,07% Memory free
3,99 Gb Paging File | 2,73 Gb Available in Paging File | 68,47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,67 Gb Total Space | 53,07 Gb Free Space | 52,20% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 6,42 Gb Free Space | 64,25% Space Free | Partition Type: NTFS
Computer Name: ADELINEDESSING | User Name: Adeline | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-3977688048-60149397-2618378689-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Fotoalbum.nl] -- "C:\Program Files\Fotoalbum\Fotoalbum.nl\Fotoalbum.nl.exe" "%1"
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A54997B-A109-4B38-A26C-A10E7459CEA2}" = rport=3702 | protocol=17 | dir=out | svc=bits | app=c:\windows\system32\svchost.exe |
"{217A8F95-83EE-479E-A13E-C3FE6B5CD49F}" = rport=2178 | protocol=6 | dir=out | app=system |
"{265AFBA9-70FC-41BA-B3FF-64F526A3A417}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2D71305B-B6E6-4DC7-A52D-67A2AD2EFFE9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5887E9E6-FFD1-4CA5-A886-24E022B3F366}" = lport=rpc | protocol=6 | dir=in | svc=bits | app=c:\windows\system32\svchost.exe |
"{60DFD398-DFF6-499D-93F7-4584E837E4AA}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6A4A8BD1-13F1-4F3F-82ED-6875E5DA9C37}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{84BC7694-57C5-4F5E-91FB-9346BA23A3D0}" = lport=3702 | protocol=17 | dir=in | svc=bits | app=c:\windows\system32\svchost.exe |
"{9AAD3136-5BD0-474D-A23C-9B97776AB2DF}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A2E9545F-AE25-4617-8B25-C26A73CCC905}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{A3F35CEF-C218-47DA-A5BE-D53FCDBEFD24}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C317711B-69AA-49F4-98B9-6C8BE8BB91F8}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E66BCEE4-AC0C-4E2D-B419-A84A5EB07DE7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EFECF225-C054-4D11-93B5-CBAD74AF0D88}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F2F31D8F-7625-434E-9D59-B9DB44691D06}" = lport=10243 | protocol=6 | dir=in | app=system |
"{F5F068DA-829F-4BB0-A348-C8A2BB71AC7C}" = lport=2178 | protocol=6 | dir=in | app=system |
"{FD33A92C-E259-4331-B757-449B743C9C44}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03A9BA32-43A6-423C-92FA-409F3E456DCB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{04E43478-0805-4F90-9F11-CE6D056BBBF4}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{0B2B9182-DAC7-46A7-86AB-798E18F1A23E}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{0B9DCE3A-DECC-41AA-A5AA-EF2C79660E28}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{10FA3F7C-5991-4A64-A857-A05245E3EB27}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{17CF5223-FE03-4FDE-89D4-EB48EF6E6587}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe |
"{1B9D6AB0-34F3-48F0-AA06-05988D94811F}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{333DEA2A-A198-49AD-A8FD-50E2B4738246}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3BDDCB65-3966-4D3B-AEE1-A0B2F0C49264}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{48E585C0-39E6-41EC-A6D6-37D7EEDBAC61}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{4CE64556-D4A8-458B-9F25-EA03F773AC70}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{58468B61-7093-4638-8243-198C1218E234}" = protocol=17 | dir=in | app=c:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe |
"{588A7F0E-8B63-411C-823B-B62214A5098F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{69B95B6B-9EA4-45E9-8C88-2899F3D991FB}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{7EDBDC8B-FE9D-4541-8F46-712327BB183F}" = protocol=6 | dir=in | app=c:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe |
"{89FF4490-8EFB-47FF-96E4-8298D43DF5F8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8D6247C6-9C9A-4E5A-91DB-EF91DF8154F2}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{983F969B-A35B-4562-979E-D9C2F161E84F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A5314CF7-5C4D-4498-8AED-E7E1900C9929}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AA6B6E9A-BDC5-4D85-8DD2-691966E04F54}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{AC4E001E-730C-44BD-B846-BA365AD4006A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B02764C2-736A-41B4-8832-63B6E5289867}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BAA9A341-AA1F-45FF-8526-935941DB56C0}" = protocol=6 | dir=out | app=system |
"{BCF0CE0C-FB4F-42EB-B1CD-3B3A34B018C3}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C355A47D-C5AD-4022-BC3F-A2CAF2E93298}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{CD1703C3-8EC9-4E81-A59F-D89915F088F3}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{D8753D09-1353-44A7-BD77-AEA366F5F131}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D8F0BFC8-1D0A-4F41-9423-64E18DFC6FFC}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{EB05A341-701D-449F-8363-3CC6A496A2EA}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe |
"{EB3DAE3A-8D32-47D4-AE55-D8819A29A8EF}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F82838C7-D951-4899-8F1D-ABA4758D8D02}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{F94DD03D-9E85-481E-91A4-8AF1D2582342}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FCE9D5B0-3B83-4206-BEAD-0D364C15DA09}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe |
"{FEC31F7B-5B06-4DCA-B2A9-20950F2E1F72}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{12B4E46E-4187-4305-8F2B-BC8EED8E6AB2}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{1402AB79-46EA-4B5D-A20E-214FF89BA777}C:\program files\java\jre1.6.0\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.6.0\bin\java.exe |
"TCP Query User{2D07F9E0-93E5-4519-8A30-2BDC139F970D}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{3D9D866B-188F-42AC-BB21-78D771D8438A}C:\program files\limewire plus\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire plus\limewire.exe |
"TCP Query User{3FB0845A-8B86-46BF-B6F5-7BE2D8A668A1}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"TCP Query User{853C8495-8385-485D-A6C1-6D12CC7F3551}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{A7C13543-D784-414B-8EAB-4192BA28DAEE}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{BC8BF33B-5E3B-4F70-BCB0-882AA5CAE332}C:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{CFB6C564-69A5-4589-9354-F62592FE9F51}C:\program files\limewire plus\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire plus\limewire.exe |
"UDP Query User{2B245168-2E1F-4D85-A2E9-C904A7FF2CB8}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{40B13A2D-A0BE-4F78-9EDA-D18596E223F4}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{43479650-E40B-4589-83C7-C7BD3EBAC0AF}C:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\adeline\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{443F3845-18D6-4E8D-A4DA-026965874C2E}C:\program files\limewire plus\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire plus\limewire.exe |
"UDP Query User{59CC13F1-DFEA-4C70-97D0-4D61DCCC5BA0}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{72A9C0C3-1586-4CAF-9F26-B09A03B52CC5}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{9FFFFC57-DF7D-4DFE-9B60-B32E1D5FC35A}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{AE801A17-953D-41CB-9F23-8E3EDE745A28}C:\program files\limewire plus\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire plus\limewire.exe |
"UDP Query User{FA5F996C-61AE-44B3-B741-58774418D2A9}C:\program files\java\jre1.6.0\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.6.0\bin\java.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0394CDC8-FABD-4ED8-B104-03393876DFDF}" = Roxio Creator Tools
"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware
"{069C1AD7-AC72-40E0-A156-7442EA6A48D7}" = AVG 2012
"{07159635-9DFE-4105-BFC0-2817DB540C68}" = Roxio Activation Module
"{0D397393-9B50-4C52-84D5-77E344289F87}" = Roxio Creator Data
"{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld
"{10F5387D-1728-423A-A578-B00982CF2646}" = Windows Live Messenger
"{15CC668C-F37C-CE24-9047-40EC8034E29D}" = ATI Catalyst Control Center Ex
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19EEBA23-580F-442A-9D53-D2B874630EEA}" = REALTEK DVB-T USB DEVICE
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live - Hulpprogramma voor uploaden
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23B8A91D-680B-462B-87AD-3D70F7341731}" = iTunes
"{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{2A8F82E8-7B86-4AFD-BFBC-2BA4C2CF52DB}" = Windows Live Call
"{2C086D06-187A-4050-ADD4-2F9D033651B4}" = Aan de slag met Dell
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B6AD248-D3BF-426A-8D64-847288154F13}" = QuickSet
"{4E5386F5-C0F6-4532-A54A-374865AEAB71}" = Cisco PEAP Module
"{4E74D41C-5864-4561-9F6B-069372513A0B}" = AVG 2012
"{4EFC72DA-2314-4E5D-AC8E-1C954CDB8BBF}" = AVG 2012
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client NL-NL Language Pack
"{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client
"{562B9CA4-6E52-4F87-ACEC-912FC004F1F0}" = Windows Live Essentials
"{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}" = EDocs
"{6D172D0A-B9F1-4046-AFAB-8599288545BF}" = Safari
"{710BF966-43C8-4216-A8EC-BC4E169FF7C1}" = MobileMe Control Panel
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76F9CF97-FC4B-4E20-B363-D127C888448F}" = Cisco LEAP Module
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7E1FBCB0-500C-4A0D-AC9C-B1B76E75666B}" = Windows Live aanmeldhulp
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}" = Roxio Creator BDAV Plugin
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{90120000-0020-0413-0000-0000000FF1CE}" = Compatibiliteitspakket voor het 2007 Microsoft Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{95120000-00AF-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Dutch)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BAF227A2-E214-49E3-9137-94A300EA85BA}" = iPhone-configuratieprogramma
"{BF53252E-4AB2-4C7F-A0FD-6100755745E3}" = Cisco EAP-FAST Module
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{DA7DF8E2-4B8F-4286-97FE-DE3FFFE9B728}" = iCloud
"{E171F5DA-6F17-472D-A223-92468142C5E8}" = AVG 2012
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{E713653C-8312-4BC6-AFC9-ADE1F2F04AB9}" = ATI PCI Express (3GIO) Filter Driver
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{EC7719BD-3F47-4B7A-868A-8C1E890F8A61}" = Trust R-Series Mouse And Keyboard
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EFC04D3F-A152-47E7-8517-EE0F6201AFEF}" = Apple Mobile Device Support
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1362843-0E0E-4F74-8662-724CF101ADCE}" = Skype web features
"{F63A3748-B93D-4360-9AD4-B064481A5C7B}" = Modem Diagnostic Tool
"{F8EDC0F8-15BC-4411-8762-77105C8AAEEC}" = Microsoft Antimalware Service NL-NL Language Pack
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AVG" = AVG 2012
"Broadcom 802.11b Network Adapter" = Dell draadloze WLAN-kaart
"BSPlayerp" = BS.Player PRO
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F" = Conexant HDA D330 MDC V.92 Modem
"ExtractNow_is1" = ExtractNow
"Fotoalbum.nl" = Fotoalbum.nl
"Google Desktop" = Google Desktop
"InstallShield_{EC7719BD-3F47-4B7A-868A-8C1E890F8A61}" = Trust R-Series Mouse And Keyboard
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.0.0 (Full)
"Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 11.0 (x86 nl)" = Mozilla Firefox 11.0 (x86 nl)
"Quick Search Box" = Snelzoekvak van Google
"SynTPDeinstKey" = Dell Touchpad
"Viper" = Viper 1.5.00
"VLC media player" = VLC media player 1.0.5
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-3977688048-60149397-2618378689-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 10 Event Log Errors ========== [ Application Events ]
Error - 4-2-2012 13:14:42 | Computer Name = AdelineDessing | Source = Application Hang | ID = 1002
Description = Programma firefox.exe, versie 9.0.1.4371 reageert niet meer op Windows
en is afgesloten. Als u wilt zien of meer informatie over het probleem beschikbaar
is, kunt u de probleemgeschiedenis in onderdeel Probleemrapporten en -oplossingen
in het Configuratiescherm controleren. Proces-id: 1448 Starttijd: 01cce35f4f57e9a9
Eindtijd:
14
Error - 4-2-2012 13:29:36 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 4-2-2012 13:29:36 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 4-2-2012 13:29:41 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 4-2-2012 13:29:42 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 4-2-2012 13:29:42 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 4-2-2012 13:32:37 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
Error - 5-2-2012 15:40:56 | Computer Name = AdelineDessing | Source = MsiInstaller | ID = 1013
Description =
Error - 5-2-2012 15:41:06 | Computer Name = AdelineDessing | Source = MsiInstaller | ID = 1013
Description =
Error - 7-2-2012 8:21:20 | Computer Name = AdelineDessing | Source = Windows Search Service | ID = 3013
Description =
[ Broadcom Wireless LAN Events ]
Error - 12-1-2012 4:02:09 | Computer Name = AdelineDessing | Source = WLAN-Tray | ID = 0
Description = 09:02:08, Thu, Jan 12, 12 Error - Unable to gain access to user store
Error - 4-4-2012 4:12:01 | Computer Name = AdelineDessing | Source = WLAN-Tray | ID = 0
Description = 10:11:58, Wed, Apr 04, 12 Error - Unable to gain access to user store
[ System Events ]
Error - 18-4-2012 5:52:06 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
Error - 18-4-2012 6:31:51 | Computer Name = AdelineDessing | Source = DCOM | ID = 10005
Description =
Error - 18-4-2012 6:31:51 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7009
Description =
Error - 18-4-2012 6:31:51 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
Error - 18-4-2012 6:39:16 | Computer Name = AdelineDessing | Source = DCOM | ID = 10010
Description =
Error - 18-4-2012 6:41:07 | Computer Name = AdelineDessing | Source = HTTP | ID = 15016
Description =
Error - 18-4-2012 6:42:13 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
Error - 18-4-2012 6:42:13 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
Error - 18-4-2012 6:43:22 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
Error - 18-4-2012 6:43:23 | Computer Name = AdelineDessing | Source = Service Control Manager | ID = 7000
Description =
< End of report >