Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Otl can not run [Solved]


  • This topic is locked This topic is locked

#1
Suus

Suus

    Member

  • Member
  • PipPip
  • 28 posts
Hi, yesterday i posted a question why OTL can not run but gives an application error. I can not find that topic anymore. Can someone please help me?

Thank you

I found it again :) , but I guess its in the wrong section so I closed the first topic and will post it again here:

Hi,

Maybe you can help me with the next issue; I downloaded OTL to the desktop as well as in a folder, I tried to run OTL several times but it keep sending me this application error with the red cross. Something about "software (0x0eedfade) on location 0x7c7e2afb"
So I ran Mbam, Eset online, tried to run OTL in safe mode...but nothing works for me

Does anyone have an idea how I can run this tool?

Thank you!

Edited by Suus, 07 June 2012 - 12:58 AM.

  • 0

Advertisements


#2
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post for assistance in the appropriate part of the forum and wait for help.


Hi and welcome to Geeks to Go. :)

I'm Dakeyras and I am going to try to assist you with your problem. Please take note of the below:

  • I will start working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine!
  • The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Refrain from running self fixes as this will hinder the malware removal process.
  • It may prove beneficial if you print of the following instructions or save them to notepad as I post them.
  • Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
Before we start:

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.

Next:

The specific error you mentioned may or not be actually malware related....So please anwser the below questions for me and we will go from there.

1 - What Operating System is in use on your machine.

2 - Did either the Eset online scan or the MBAM scan actually work and if so was anything found/removed etc(post the logs for my review if available).

3 - Have you recently added any new(or updated) third party plugin applications to say Internet Explorer for example and or installed any other new software at all.

4 - Has your machine been experiencing any specific symptoms that cause you to think it may be malware related.
  • 0

#3
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Hi Dakeyras and thank you so much for your help! Please forgive me if there are typo's or misunderstanding, I am from Holland but I am not totally a newbee on computers. However, the OTL tool I can not run for some reason.
I dont think I have malware on my computer, but maybe I am wrong.

1 - What Operating System is in use on your machine.

XP Professional version 2002, SP3,
AMD64 proc. 3200

2 - Did either the Eset online scan or the MBAM scan actually work and if so was anything found/removed etc(post the logs for my review if available).


Both scanners found nothing, I lost the log from Eset but can run it again, here is de MalwareByteslog:
Malwarebytes' Anti-Malware log:
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Databaseversie: v2012.04.26.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421


26-5-2012 16:16:21
mbam-log-2012-05-26 (16-16-21).txt

Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 188910
Verstreken tijd: 11 minuut/minuten, 32 seconde(n)

Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


3 - Have you recently added any new(or updated) third party plugin applications to say Internet Explorer for example and or installed any other new software at all.

Not that I know

4 - Has your machine been experiencing any specific symptoms that cause you to think it may be malware related.

When I tried to open this page:
http://www.geekstogo...ldtimer-listit/
I got a warning that Internet explorer had some script running and that I had to close it first.

Thanks in advance
  • 0

#4
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts
Hi. :)

Hi Dakeyras and thank you so much for your help!

You're welcome and thanks for the update also...

Please forgive me if there are typo's or misunderstanding, I am from Holland but I am not totally a newbee on computers.

That's OK and not at all a problem I will further add.

Before we try anything proactive if it is indeed required lets see if you can get the below scan to run so I can try to ascertain what is exactly occurring with your machine as follows...

Scan with DDS:

Please download DDS and save it to your Desktop from here.

Alternate downloads are here or here. <-- Try either of these if the first version will not work.

  • Disable any script blocker you may have installed & active and then double click on DDS to run the tool.
  • When done, DDS will open two logs:
  • DDS.txt <-- Will be opened
  • Attach.txt <-- Will be minimized
  • Save both reports to your desktop.
  • Please post the contents of these two Notepad files in your next reply.
When completed the above, please post back the following in the order asked for:

  • How is you computer performing now, any further symptoms and or problems encountered?
  • Both DDS logs. <-- Post them individually please, IE: one Log per post/reply.

  • 0

#5
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Thank you again for your help.

Here is the first DDS log [not 1 single problem by running it btw]:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.4.1
Run by Anke at 18:53:53 on 2012-06-09
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1023.142 [GMT 2:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
svchost.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Creative\Creative ZEN\ZEN Media Explorer\CTCheck.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\AirMac\APAgent.exe
C:\PROGRA~1\HEWLET~1\HPSHAR~1\hpgs2wnf.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.startpagina.nl/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - c:\program files\avg\avg2012\avgdtiex.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.0.0.9\AVG Secure Search_toolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
BHO: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - No File
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\11.0.0.9\AVG Secure Search_toolbar.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
TB: {BA14329E-9550-4989-B3F2-9732E92D17CC} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [DriverCure] c:\program files\paretologic\drivercure\DriverCure.exe -scan
uRun: [CTSyncU.exe] "c:\program files\creative\sync manager unicode\CTSyncU.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [Google Update] "c:\documents and settings\anke\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SW20] c:\windows\system32\sw20.exe
mRun: [SW24] c:\windows\system32\sw24.exe
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [Share-to-Web Namespace Daemon] c:\program files\hewlett-packard\hp share-to-web\hpgs2wnd.exe
mRun: [CTCheck] c:\program files\creative\creative zen\zen media explorer\CTCheck.exe
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [AirPort Base Station Agent] "c:\program files\airmac\APAgent.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [ROC_roc_dec12] "c:\program files\avg secure search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - c:\program files\avg\avg2012\avgdtiex.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
Trusted Zone: microsoft.com \www
Trusted Zone: raet.nl\webmail
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15101/CTSUEng.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {B7915D9F-6057-4153-BE1B-8E234BD66980} - hxxp://www.mijnalbum.nl/v3/skinsrc/core/system/ma7.0.23/ImageUploader7.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15110/CTPID.cab
TCP: DhcpNameServer = 62.179.104.196 213.46.228.196
TCP: Interfaces\{26A5D1DC-2130-49A0-AB1F-EFCE7A45EEF9} : DhcpNameServer = 62.179.104.196 213.46.228.196
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\11.0.2\ViProtocol.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-4-19 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 31952]
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2009-6-17 20744]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 235216]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 41040]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-9 301248]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\avgidsagent.exe [2012-4-30 5106744]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2012-2-14 193288]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-3-31 54752]
R2 GLiIoEye;GLiIoEye;c:\windows\system32\drivers\GLiIoEye.sys [2009-10-16 4736]
R2 vToolbarUpdater11.0.2;vToolbarUpdater11.0.2;c:\program files\common files\avg secure search\vtoolbarupdater\11.0.2\ToolbarUpdater.exe [2012-6-8 932736]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2011-12-23 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [2011-12-23 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2011-12-23 17232]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S2 gupdate;Google Updateservice (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-5-1 136176]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-2-23 2348352]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-4 257696]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2010-12-3 1025352]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2009-6-17 29192]
S3 fsssvc;De service Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-5-1 136176]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2009-6-17 25480]
S3 rt2870;Sweex Wireless USB Adapter Driver;c:\windows\system32\drivers\rt2870.sys [2012-1-25 1130848]
.
=============== Created Last 30 ================
.
2012-06-08 08:13:09 -------- d-----w- c:\documents and settings\anke\local settings\application data\AVG Secure Search
2012-06-04 18:16:43 -------- d--h--r- c:\documents and settings\anke\Onlangs geopend
2012-06-02 21:20:38 -------- d-----w- c:\program files\HijackThis Scanalyser
2012-06-01 16:10:29 -------- d-----w- c:\program files\ESET
2012-05-27 14:06:55 -------- d-----w- c:\documents and settings\anke\local settings\application data\Sun
2012-05-20 17:02:35 -------- d-----w- c:\program files\Oracle
2012-05-20 17:02:23 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-05-20 16:22:08 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2012-05-20 16:22:08 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2012-05-20 16:22:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2012-05-20 16:22:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2012-05-20 16:22:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2012-05-20 16:22:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2012-05-20 16:22:07 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2012-05-20 15:53:32 -------- d-----w- c:\program files\iPod
.
==================== Find3M ====================
.
2012-05-31 13:22:05 602624 ----a-w- c:\windows\system32\crypt32.dll
2012-05-12 07:17:26 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-05-12 07:17:26 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-04-19 02:50:26 24896 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2012-04-18 18:56:30 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-04-18 18:56:30 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-04-11 13:55:27 2073472 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-11 13:55:17 1862400 ----a-w- c:\windows\system32\win32k.sys
2012-04-11 13:55:04 2196992 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-04 16:47:36 143872 ----a-w- c:\windows\system32\javacpl.cpl
2012-03-19 03:17:28 301248 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2012-03-14 18:03:55 293992 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-03-14 18:03:55 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-03-14 18:03:45 293992 ----a-w- c:\windows\system32\nvdrsdb1.bin
2006-07-27 14:00:28 11071378 -c--a-w- c:\program files\ndntnlst.exe
2006-06-24 17:27:06 9976964 -c--a-w- c:\program files\nentnlst.exe
2006-05-23 16:54:22 590 ----a-w- c:\program files\layout.bin
1998-10-27 11:06:48 27648 ----a-w- c:\program files\_ISDel.exe
1998-09-29 14:34:56 34816 ----a-w- c:\program files\_Setup.dll
2001-09-07 10:00:00 94784 -csha-w- c:\windows\twain.dll
2008-04-14 17:02:44 50688 -csha-w- c:\windows\twain_32.dll
2011-02-08 13:33:59 978944 --sha-w- c:\windows\system32\mfc42.dll
2008-04-14 17:02:33 57344 -csha-w- c:\windows\system32\msvcirt.dll
2008-04-14 17:02:33 413696 --sha-w- c:\windows\system32\msvcp60.dll
2008-04-14 17:02:33 343040 --sha-w- c:\windows\system32\msvcrt.dll
2010-12-20 17:32:05 551936 --sha-w- c:\windows\system32\oleaut32.dll
2008-04-14 17:02:37 84992 --sha-w- c:\windows\system32\olepro32.dll
2008-04-14 17:03:12 12288 -csha-w- c:\windows\system32\regsvr32.exe
.
============= FINISH: 18:54:43,71 ===============
  • 0

#6
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
....and here is the second one

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 10-01-2006 14:50:53
System Uptime: 09-06-2012 8:00:05 (10 hours ago)
.
Motherboard: MICRO-STAR INTERNATIONAL CO., LTD | | MS-7185
Processor: AMD Athlon™ 64 Processor 3200+ | Socket 939 | 2010/201mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 29 GiB total, 4,192 GiB free.
D: is FIXED (NTFS) - 29 GiB total, 7,626 GiB free.
E: is FIXED (NTFS) - 69 GiB total, 68,927 GiB free.
F: is CDROM ()
G: is CDROM ()
H: is Removable
I: is Removable
J: is FIXED (NTFS) - 105 GiB total, 104,799 GiB free.
K: is Removable
L: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Description: Anke
Device ID: ROOT\WPD\0000
Manufacturer: Nokia
Name: Anke
PNP Device ID: ROOT\WPD\0000
Service: WUDFRd
.
==== System Restore Points ===================
.
RP2116: 13-05-2012 10:32:45 - Controlepunt van systeem
RP2117: 16-05-2012 9:00:58 - Controlepunt van systeem
RP2118: 17-05-2012 13:19:06 - Controlepunt van systeem
RP2119: 18-05-2012 13:48:54 - Controlepunt van systeem
RP2120: 19-05-2012 18:27:14 - Controlepunt van systeem
RP2121: 20-05-2012 17:50:52 - Geïnstalleerd: iTunes
RP2122: 20-05-2012 19:01:59 - Installed Java™ 7 Update 4
RP2123: 20-05-2012 19:02:31 - Installed JavaFX 2.1.0
RP2124: 21-05-2012 19:42:45 - Controlepunt van systeem
RP2125: 22-05-2012 17:26:30 - Software Distribution Service 3.0
RP2126: 22-05-2012 17:50:23 - Software Distribution Service 3.0
RP2127: 22-05-2012 18:44:40 - Software Distribution Service 3.0
RP2128: 22-05-2012 19:03:29 - Software Distribution Service 3.0
RP2129: 22-05-2012 23:30:36 - Software Distribution Service 3.0
RP2130: 23-05-2012 19:12:33 - Software Distribution Service 3.0
RP2131: 25-05-2012 17:06:35 - Controlepunt van systeem
RP2132: 27-05-2012 12:30:56 - Controlepunt van systeem
RP2133: 28-05-2012 15:30:03 - Controlepunt van systeem
RP2134: 29-05-2012 18:42:53 - Controlepunt van systeem
RP2135: 31-05-2012 18:38:09 - Controlepunt van systeem
RP2136: 01-06-2012 18:56:33 - Controlepunt van systeem
RP2137: 02-06-2012 20:18:26 - Controlepunt van systeem
RP2138: 03-06-2012 20:47:01 - Controlepunt van systeem
RP2139: 04-06-2012 19:03:51 - Software Distribution Service 3.0
RP2140: 05-06-2012 19:35:30 - Controlepunt van systeem
RP2141: 06-06-2012 20:24:52 - Controlepunt van systeem
RP2142: 07-06-2012 20:25:42 - Controlepunt van systeem
RP2143: 08-06-2012 10:11:27 - Geïnstalleerd AVG 2012
RP2144: 08-06-2012 10:13:59 - Verwijderd AVG 2012
RP2145: 09-06-2012 11:30:52 - Controlepunt van systeem
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.1 - Nederlands
AirPort
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AVG 2012
Beveiligingsupdate for Windows Media Player 10 (KB911565)
Beveiligingsupdate for Windows Media Player 10 (KB917734)
Beveiligingsupdate for Windows XP (KB941569)
Beveiligingsupdate voor Microsoft Windows (KB2564958)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB928090)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB929969)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB931768)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB933566)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB937143)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB938127)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB939653)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB942615)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB944533)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB950759)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB953838)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB956390)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB958215)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB960714)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB961260)
Beveiligingsupdate voor Windows Internet Explorer 7 (KB963027)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2183461)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2360131)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2416400)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2482017)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2497640)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2530548)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2544521)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2559049)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2586448)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2618444)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2647516)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB2675157)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB969897)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB972260)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB974455)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB976325)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB978207)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332)
Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381)
Beveiligingsupdate voor Windows Media Player (KB2378111)
Beveiligingsupdate voor Windows Media Player (KB911564)
Beveiligingsupdate voor Windows Media Player (KB952069)
Beveiligingsupdate voor Windows Media Player (KB954155)
Beveiligingsupdate voor Windows Media Player (KB968816)
Beveiligingsupdate voor Windows Media Player (KB973540)
Beveiligingsupdate voor Windows Media Player (KB975558)
Beveiligingsupdate voor Windows Media Player (KB978695)
Beveiligingsupdate voor Windows Media Player 11 (KB936782)
Beveiligingsupdate voor Windows Media Player 11 (KB954154)
Beveiligingsupdate voor Windows Media Player 6.4 (KB925398)
Beveiligingsupdate voor Windows XP (KB2079403)
Beveiligingsupdate voor Windows XP (KB2115168)
Beveiligingsupdate voor Windows XP (KB2121546)
Beveiligingsupdate voor Windows XP (KB2160329)
Beveiligingsupdate voor Windows XP (KB2229593)
Beveiligingsupdate voor Windows XP (KB2259922)
Beveiligingsupdate voor Windows XP (KB2279986)
Beveiligingsupdate voor Windows XP (KB2286198)
Beveiligingsupdate voor Windows XP (KB2296011)
Beveiligingsupdate voor Windows XP (KB2296199)
Beveiligingsupdate voor Windows XP (KB2347290)
Beveiligingsupdate voor Windows XP (KB2360937)
Beveiligingsupdate voor Windows XP (KB2387149)
Beveiligingsupdate voor Windows XP (KB2393802)
Beveiligingsupdate voor Windows XP (KB2412687)
Beveiligingsupdate voor Windows XP (KB2419632)
Beveiligingsupdate voor Windows XP (KB2423089)
Beveiligingsupdate voor Windows XP (KB2436673)
Beveiligingsupdate voor Windows XP (KB2440591)
Beveiligingsupdate voor Windows XP (KB2443105)
Beveiligingsupdate voor Windows XP (KB2476490)
Beveiligingsupdate voor Windows XP (KB2476687)
Beveiligingsupdate voor Windows XP (KB2478960)
Beveiligingsupdate voor Windows XP (KB2478971)
Beveiligingsupdate voor Windows XP (KB2479628)
Beveiligingsupdate voor Windows XP (KB2479943)
Beveiligingsupdate voor Windows XP (KB2481109)
Beveiligingsupdate voor Windows XP (KB2483185)
Beveiligingsupdate voor Windows XP (KB2485376)
Beveiligingsupdate voor Windows XP (KB2485663)
Beveiligingsupdate voor Windows XP (KB2503658)
Beveiligingsupdate voor Windows XP (KB2503665)
Beveiligingsupdate voor Windows XP (KB2506212)
Beveiligingsupdate voor Windows XP (KB2506223)
Beveiligingsupdate voor Windows XP (KB2507618)
Beveiligingsupdate voor Windows XP (KB2507938)
Beveiligingsupdate voor Windows XP (KB2508272)
Beveiligingsupdate voor Windows XP (KB2508429)
Beveiligingsupdate voor Windows XP (KB2509553)
Beveiligingsupdate voor Windows XP (KB2511455)
Beveiligingsupdate voor Windows XP (KB2524375)
Beveiligingsupdate voor Windows XP (KB2535512)
Beveiligingsupdate voor Windows XP (KB2536276-v2)
Beveiligingsupdate voor Windows XP (KB2536276)
Beveiligingsupdate voor Windows XP (KB2544893-v2)
Beveiligingsupdate voor Windows XP (KB2544893)
Beveiligingsupdate voor Windows XP (KB2555917)
Beveiligingsupdate voor Windows XP (KB2562937)
Beveiligingsupdate voor Windows XP (KB2566454)
Beveiligingsupdate voor Windows XP (KB2567053)
Beveiligingsupdate voor Windows XP (KB2567680)
Beveiligingsupdate voor Windows XP (KB2570222)
Beveiligingsupdate voor Windows XP (KB2570947)
Beveiligingsupdate voor Windows XP (KB2584146)
Beveiligingsupdate voor Windows XP (KB2585542)
Beveiligingsupdate voor Windows XP (KB2592799)
Beveiligingsupdate voor Windows XP (KB2598479)
Beveiligingsupdate voor Windows XP (KB2603381)
Beveiligingsupdate voor Windows XP (KB2618451)
Beveiligingsupdate voor Windows XP (KB2619339)
Beveiligingsupdate voor Windows XP (KB2620712)
Beveiligingsupdate voor Windows XP (KB2621440)
Beveiligingsupdate voor Windows XP (KB2624667)
Beveiligingsupdate voor Windows XP (KB2631813)
Beveiligingsupdate voor Windows XP (KB2633171)
Beveiligingsupdate voor Windows XP (KB2639417)
Beveiligingsupdate voor Windows XP (KB2641653)
Beveiligingsupdate voor Windows XP (KB2646524)
Beveiligingsupdate voor Windows XP (KB2647518)
Beveiligingsupdate voor Windows XP (KB2653956)
Beveiligingsupdate voor Windows XP (KB2659262)
Beveiligingsupdate voor Windows XP (KB2660465)
Beveiligingsupdate voor Windows XP (KB2661637)
Beveiligingsupdate voor Windows XP (KB2676562)
Beveiligingsupdate voor Windows XP (KB2686509)
Beveiligingsupdate voor Windows XP (KB2695962)
Beveiligingsupdate voor Windows XP (KB923561)
Beveiligingsupdate voor Windows XP (KB938464)
Beveiligingsupdate voor Windows XP (KB946648)
Beveiligingsupdate voor Windows XP (KB950760)
Beveiligingsupdate voor Windows XP (KB950762)
Beveiligingsupdate voor Windows XP (KB950974)
Beveiligingsupdate voor Windows XP (KB951066)
Beveiligingsupdate voor Windows XP (KB951376-v2)
Beveiligingsupdate voor Windows XP (KB951376)
Beveiligingsupdate voor Windows XP (KB951698)
Beveiligingsupdate voor Windows XP (KB951748)
Beveiligingsupdate voor Windows XP (KB952004)
Beveiligingsupdate voor Windows XP (KB952954)
Beveiligingsupdate voor Windows XP (KB953839)
Beveiligingsupdate voor Windows XP (KB954211)
Beveiligingsupdate voor Windows XP (KB954459)
Beveiligingsupdate voor Windows XP (KB954600)
Beveiligingsupdate voor Windows XP (KB955069)
Beveiligingsupdate voor Windows XP (KB956391)
Beveiligingsupdate voor Windows XP (KB956572)
Beveiligingsupdate voor Windows XP (KB956744)
Beveiligingsupdate voor Windows XP (KB956802)
Beveiligingsupdate voor Windows XP (KB956803)
Beveiligingsupdate voor Windows XP (KB956841)
Beveiligingsupdate voor Windows XP (KB956844)
Beveiligingsupdate voor Windows XP (KB957095)
Beveiligingsupdate voor Windows XP (KB957097)
Beveiligingsupdate voor Windows XP (KB958644)
Beveiligingsupdate voor Windows XP (KB958687)
Beveiligingsupdate voor Windows XP (KB958690)
Beveiligingsupdate voor Windows XP (KB958869)
Beveiligingsupdate voor Windows XP (KB959426)
Beveiligingsupdate voor Windows XP (KB960225)
Beveiligingsupdate voor Windows XP (KB960715)
Beveiligingsupdate voor Windows XP (KB960803)
Beveiligingsupdate voor Windows XP (KB960859)
Beveiligingsupdate voor Windows XP (KB961371)
Beveiligingsupdate voor Windows XP (KB961373)
Beveiligingsupdate voor Windows XP (KB961501)
Beveiligingsupdate voor Windows XP (KB968537)
Beveiligingsupdate voor Windows XP (KB969059)
Beveiligingsupdate voor Windows XP (KB969898)
Beveiligingsupdate voor Windows XP (KB969947)
Beveiligingsupdate voor Windows XP (KB970238)
Beveiligingsupdate voor Windows XP (KB970430)
Beveiligingsupdate voor Windows XP (KB971468)
Beveiligingsupdate voor Windows XP (KB971486)
Beveiligingsupdate voor Windows XP (KB971557)
Beveiligingsupdate voor Windows XP (KB971633)
Beveiligingsupdate voor Windows XP (KB971657)
Beveiligingsupdate voor Windows XP (KB972270)
Beveiligingsupdate voor Windows XP (KB973346)
Beveiligingsupdate voor Windows XP (KB973354)
Beveiligingsupdate voor Windows XP (KB973507)
Beveiligingsupdate voor Windows XP (KB973525)
Beveiligingsupdate voor Windows XP (KB973869)
Beveiligingsupdate voor Windows XP (KB973904)
Beveiligingsupdate voor Windows XP (KB974112)
Beveiligingsupdate voor Windows XP (KB974318)
Beveiligingsupdate voor Windows XP (KB974392)
Beveiligingsupdate voor Windows XP (KB974571)
Beveiligingsupdate voor Windows XP (KB975025)
Beveiligingsupdate voor Windows XP (KB975467)
Beveiligingsupdate voor Windows XP (KB975560)
Beveiligingsupdate voor Windows XP (KB975561)
Beveiligingsupdate voor Windows XP (KB975562)
Beveiligingsupdate voor Windows XP (KB975713)
Beveiligingsupdate voor Windows XP (KB977165)
Beveiligingsupdate voor Windows XP (KB977816)
Beveiligingsupdate voor Windows XP (KB977914)
Beveiligingsupdate voor Windows XP (KB978037)
Beveiligingsupdate voor Windows XP (KB978251)
Beveiligingsupdate voor Windows XP (KB978262)
Beveiligingsupdate voor Windows XP (KB978338)
Beveiligingsupdate voor Windows XP (KB978542)
Beveiligingsupdate voor Windows XP (KB978601)
Beveiligingsupdate voor Windows XP (KB978706)
Beveiligingsupdate voor Windows XP (KB979309)
Beveiligingsupdate voor Windows XP (KB979482)
Beveiligingsupdate voor Windows XP (KB979559)
Beveiligingsupdate voor Windows XP (KB979683)
Beveiligingsupdate voor Windows XP (KB979687)
Beveiligingsupdate voor Windows XP (KB980195)
Beveiligingsupdate voor Windows XP (KB980218)
Beveiligingsupdate voor Windows XP (KB980232)
Beveiligingsupdate voor Windows XP (KB980436)
Beveiligingsupdate voor Windows XP (KB981322)
Beveiligingsupdate voor Windows XP (KB981852)
Beveiligingsupdate voor Windows XP (KB981957)
Beveiligingsupdate voor Windows XP (KB981997)
Beveiligingsupdate voor Windows XP (KB982132)
Beveiligingsupdate voor Windows XP (KB982214)
Beveiligingsupdate voor Windows XP (KB982665)
Beveiligingsupdate voor Windows XP (KB982802)
Bonjour
CCleaner
Compatibility Pack for the 2007 Office system
Creative-systeeminformatie
Creative ZEN
Dvd- of cd-deling
ESET Online Scanner v3
Essentiële update voor Windows Media Player 11 (KB959772)
EuroTalk Talk Now Plus!
getPlus®_ocx
GIMP 2.4.4
GL_USB_Reader_MPTool
Good Sync version 4.6.10
Google Earth
Google Earth Plug-in
Google Talk Plugin
Google Update Helper
Google Updater
HighMAT-uitbreiding voor de wizard Cd branden van Microsoft Windows XP
HijackThis 2.0.2
HijackThis Scanalyser
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format SDK (KB902344)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB976002-v5)
Hotfix voor Windows Internet Explorer 7 (KB947864)
Hotfix voor Windows Media Player 11 (KB939683)
Hotfix voor Windows XP (KB2158563)
Hotfix voor Windows XP (KB2443685)
Hotfix voor Windows XP (KB2570791)
Hotfix voor Windows XP (KB2633952)
Hotfix voor Windows XP (KB952287)
Hotfix voor Windows XP (KB961118)
Hotfix voor Windows XP (KB970653-v3)
Hotfix voor Windows XP (KB976098-v2)
Hotfix voor Windows XP (KB979306)
Hotfix voor Windows XP (KB981793)
Image Resizer Powertoy for Windows XP
iTunes
Java Auto Updater
Java™ 6 Update 31
Java™ 7 Update 4
JavaFX 2.1.0
Junk Mail filter update
Malwarebytes Anti-Malware versie 1.60.1.1000
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Dutch Language Pack
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD
Microsoft .NET Framework 3.5 Language Pack SP1 - nld
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (Dutch) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.3
Microsoft Office OneNote MUI (Dutch) 2007
Microsoft Office Outlook Connector
Microsoft Office PowerPoint MUI (Dutch) 2007
Microsoft Office Professional Editie 2003
Microsoft Office Proof (Dutch) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (German) 2007
Microsoft Office Proofing (Dutch) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (Dutch) 2007
Microsoft Office Word MUI (Dutch) 2007
Microsoft Silverlight
Microsoft Software Update for Web Folders (Dutch) 12
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft User-Mode Driver Framework Feature Pack 1.5
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MobileMe Control Panel
MSI Live Update 3
MSVCRT
MSXML 6.0 Parser (KB933579)
Mytracks.fm recorder
Nero 7 Premium
Network Stumbler 0.4.0 (remove only)
Nokia Connectivity Cable Driver
NVIDIA-configuratiescherm 296.10
NVIDIA Drivers
NVIDIA Grafisch stuurprogramma 296.10
NVIDIA Install Application
NVIDIA nView 136.18
NVIDIA nView Desktop Manager
NVIDIA Update 1.7.11
NVIDIA Update Components
OGA Notifier 2.0.0048.0
Paint.NET v3.5.10
Pakket voor de provider van Microsoft Base-smartcardcryptografieservice
PC Connectivity Solution
Phoenix Viewer 1.6.0.1691
Picasa 3
PL-2303 USB-to-Serial
QuickTime
Realtek AC'97 Audio
Registrar Lite 2.00
Security Task Manager 1.6f
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition
Segoe UI
ShareIns
Skype Click to Call
Skype™ 5.5
Spybot - Search & Destroy
System Requirements Lab
Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
Tweak UI
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update voor Windows Internet Explorer 8 (KB976662)
Update voor Windows Internet Explorer 8 (KB976749)
Update voor Windows Internet Explorer 8 (KB980182)
Update voor Windows XP (KB2141007)
Update voor Windows XP (KB2345886)
Update voor Windows XP (KB2467659)
Update voor Windows XP (KB2541763)
Update voor Windows XP (KB2607712)
Update voor Windows XP (KB2616676-v2)
Update voor Windows XP (KB2641690)
Update voor Windows XP (KB2718704)
Update voor Windows XP (KB951072-v2)
Update voor Windows XP (KB951978)
Update voor Windows XP (KB955759)
Update voor Windows XP (KB955839)
Update voor Windows XP (KB961503)
Update voor Windows XP (KB967715)
Update voor Windows XP (KB968389)
Update voor Windows XP (KB971029)
Update voor Windows XP (KB973687)
Update voor Windows XP (KB973815)
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VMware Movie Decoder
VoiceOver Kit
Vuze
Vuze Remote Toolbar
WebFldrs XP
Windows-stuurprogrammapakket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
Windows Defender Signatures
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Live - Hulpprogramma voor uploaden
Windows Live aanmeldhulp
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sync
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 11
Windows Presentation Foundation
Windows XP Service Pack 3
XML Paper Specification Shared Components Language Pack 1.0
XML Paper Specification Shared Components Pack 1.0
.
==== End Of File ===========================


I will reboot the computer and look of OTL will run now
  • 0

#7
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts
Hi. :)

I will reboot the computer and look of OTL will run now

No need to yet. Now this may be a problem:-

C: is FIXED (NTFS) - 29 GiB total, 4,192 GiB free.

If you go to Start >> My Computer >> C >> and check exactly how much free storage is available. If it is a lot less than say 15% that is considered dangerously low. A Hard-Drive requires a bare minimum of 15% available free space to be able to function correctly, but at least 25% is better in my humble opinion.

However I am advising the uninstalltion of some software, so that should free up some extra free space etc. Plus anything else you do not need, uninstall and or move some non essential files etc.

Create a new System Restore Point:

I know it appears your machine has a fair few in-place already but merely view this as myself erring on the side of caution.

How to create a new one as follows:-

Click on Start >> All Programs >> Accessories >>System Tools >> System Restore

Select Create a restore point, then Next, type a name like GTG then click on Create >> when created click on Close

NetStumbler Query:

Are you actively using NetStumbler? Not for piggybacking I hope as that is deemed unethical and if that is the case I will withdraw my free assistance...As evidence it has been used in the past. Please do not be offended by myself asking such as I can only go from information/logs I have requested...

If not being used merely uninstall, unless you are using it that is to connect too free WiFi hotspots for example.

Peer to Peer Advice:

I see you have both Vuze and the Vuze Remote Toolbar installed.

It's really important, if you value your PC at all, to stay away from P2P file sharing programs, like utorrent, Bittorrent, Azureus, Limewire, Vuze.

Criminals have "planted" thousands upon thousands of infections in the "free" shared files.
Virtually all of these recent infections will compromise your Security, and some can turn your machine into a useless "doorstop".

My advice would be to uninstall both of the aforementioned. However if you oprt not to at least consider uninstalling the Vuze Remote Toolbar as that has some very undesirable characteristics. Either way please refrain from using both for the duration of my assistance.

Next:

Now please go to Start >> Control Panel >> Add/Remove Programs and remove the following (if present):

Adobe Reader 9.5.1 - Nederlands <-- We will update this in due course.
HijackThis 2.0.2 <-- Out of date version and not particularly effective detecting today's modern malware anyway. However if you have used this recently to remove anything do not uninstall and inform myself.
HijackThis Scanalyser <-- This type of application is not always accurate and can be quite often misleading to say the least.
Java™ 6 Update 31 <-- Having out of date versions installed is a security risk.
ParetoLogic DriverCure <-- Another misleading application and the vendor is not quite trustworthy either in my humble opinion. Overall it can seriously damage your machine.
Registrar Lite 2.00 <-- Registry cleaners do little good and have the potential to cause more harm than anything else. Again overall it can seriously damage your machine.
Security Task Manager 1.6f <-- Not worth the installation space and far from effective.
Spybot - Search & Destroy <-- Will hinder the overall Malware Removal process. You may reinstall when I give the all clear if you so wish but my advice would be to keep as a on-demand scanner only.
Tweak UI <-- Not really necessary, unless you do use it that is.

To do so, click once on each of the above in turn to highlight and then click on the Remove button.

Note: Take extra care in answering questions posed by any Uninstaller. Some questions may be worded to deceive you into keeping the program.

Backup the Registry:

Modifying the Registry can create unforeseen problems, so it always wise to create a backup before doing so.

  • Please go here and download ERUNT.
  • ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.
  • Double click on erunt-setup.exe to Install ERUNT by following the prompts.
  • Use the default install settings but say no to the portion that asks you to add ERUNT to the Start-Up folder.
  • Start ERUNT either by double clicking on the desktop icon or choosing to start the program at the end of the setup process.
  • Choose a location for the backup. Note: the default location is C:\WINDOWS\ERDNT which is acceptable.
  • Make sure that at least the first two check boxes are selected.
  • Click on OK
  • Then click on YES to create the folder.
Note: If it is necessary to restore the registry, open the backup folder and start ERDNT.exe

If unable to create a backup with ERUNT, carry out the following instead:-

  • Click on Start >> Run...
  • Type in regedit
  • After the Registry Editor is launched >> Click on File then select the option Export...
  • Save to the root of your Hard-Drive, eg C:\ named Backup
  • Note, before saving make sure the option in the save window Export range - All is selected.
FixPolicies:

Please download to your Desktop FixPolicies.exe, a self-extracting ZIP archive from here.

  • Double-click FixPolicies.exe.
  • Click the "Install" button on the bottom toolbar of the box that will open.
  • The program will create a new Folder called FixPolicies.
  • Double-click to Open the new Folder, and then double-click the file within: Fix_Policies.cmd.
  • A black box should briefly appear and then close.
  • Leave FixPolicies on your desktop please until I otherwise advise, thank you.
Reset File Associations:

Please download to your Desktop FixExec from here. <-- Download the 32-Bit Version.

Double-click on FixExec.exe >> Follow the prompts.

When completed there should a notepad file on your desktop named FixExec.txt, post that in your next reply please.

Next:

Let myself know when completed the above, post the contents of the requested FixExec.txt and if any problems encountered and we will go from there.
  • 0

#8
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

C: is FIXED (NTFS) - 29 GiB total, 4,192 GiB free.

I don’t know where you found the above numbers, but when I checked the C-partition it said:
26.909.986.816 in use and 4.543.451.136 available, I calculated that gives me 15,38 free space and I guess that’s too low.
However the dividing of partitions is something we can work on after the cleaning?


Are you actively using NetStumbler?

I installed this program a long time ago when I tried to understand a lot of things about computers, mine specific. Of course I am not offended, I am most grateful for your help and have nothing to hide. I use wire connection with UPC for my internet connection at the moment.

I see you have both Vuze and the Vuze Remote Toolbar installed.

There was a time I downloaded a lot of songs via Pirate Bay.
However, 1,5 year ago I bought an iPhone and now I buy songs for 0,79 via iTunes. Also I remember after I downloaded songs there was a trouble with playing them via Media player and some and I got icons in the folder I never asked for, so I rather never do it again and am most content with deleting all the things.

I will return later today to make a backup, and clean my computer.
Thank you for helping me!
  • 0

#9
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts
Hi. :)

I don’t know where you found the above numbers, but when I checked the C-partition it said:
26.909.986.816 in use and 4.543.451.136 available, I calculated that gives me 15,38 free space and I guess that’s too low.

Part of the output created by the DDS log posted revealed such. What you have is probably fine but creating some extra free-space would be prudent in the long term.

However the dividing of partitions is something we can work on after the cleaning?

Not really my sphere of expertise if you will that, as primarily I only provide Anti-Malware support. My best advice would be create a new topic in this part of the forum once I give the all clear:-

Hardware, Components and Peripherals

I installed this program a long time ago when I tried to understand a lot of things about computers, mine specific. Of course I am not offended, I am most grateful for your help and have nothing to hide. I use wire connection with UPC for my internet connection at the moment.

OK/fair play.

There was a time I downloaded a lot of songs via Pirate Bay.
However, 1,5 year ago I bought an iPhone and now I buy songs for 0,79 via iTunes. Also I remember after I downloaded songs there was a trouble with playing them via Media player and some and I got icons in the folder I never asked for, so I rather never do it again and am most content with deleting all the things.

Well as you are aware the site in question is illegal end off. If I thought and or any indication you were still using its dubious services I would withdraw my free assistance forthwith....Anyway enough of that, aye steering clear of anything P2P related is now a prudent move on your behalf, I have lost count of the number of machines I have encountered over the years that have become seriously infected after the use of the aforementioned.

I will return later today to make a backup, and clean my computer.
Thank you for helping me!

:thumbsup:
  • 0

#10
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Hi again :)

Let me share some details with you that accured during following the instructions:
• Making a back-up was easy
• Downloading and installing FixPolicies was easy
• Downloading and installing FixExec was a little more difficult but worked in the end, although there is now a toolbar installed in my browser that I would rather remove, however since I deleted HJT so I don’t know how to do it. Also I could not find the program at first so I tried the search command and fount it in C/Windows/prefetch. However I can not run it because a popup tells me to find the program on the web to open it. The file is named: FIXCFG.EXE-1E7B36F6.pf
• I could not find the next program in my control panel > software
o ParetoLogic DriverCure
• I could not remove the Vuze toolbar [I could remove Vuze itself though]

Please let me know if there is anything more I can remove; its better to have more space on the C-partition,

Thanks in advance
Suus

Edited by Suus, 10 June 2012 - 07:12 AM.

  • 0

Advertisements


#11
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Hello again,

After a restart I could remove the Vuze toolbar as well :)
Also I downloaded a new HJT program, version 2.04 is OK? and removed the toolbars that came with FixExec
  • 0

#12
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts
Hi. :)

Downloading and installing FixExec was a little more difficult but worked in the end, although there is now a toolbar installed in my browser that I would rather remove, however since I deleted HJT so I don’t know how to do it. Also I could not find the program at first so I tried the search command and fount it in C/Windows/prefetch. However I can not run it because a popup tells me to find the program on the web to open it. The file is named: FIXCFG.EXE-1E7B36F6.pf

Most strange and that should not have occurred at all, though we can investigate this in due course.

I could not find the next program in my control panel > software ParetoLogic DriverCure

Not a problem and we can address that in due course also.

After a restart I could remove the Vuze toolbar as well

Good.

Also I downloaded a new HJT program, version 2.04 is OK? and removed the toolbars that came with FixExec

I do prefer anyone I assist not to make any changes to their machine unless advised by myself as stated in my first post to your good self:-

Refrain from running self fixes as this will hinder the malware removal process.

Anyway no harm done and do leave HJT installed for now...but no more self fixes please.

Next:

I think it may be prudent to reset the Host-File on your machine at this point and we may need to do this again if the situation warrants...Plus actually flush your machines DNS(domain name server) etc as a precaution.

Probably be a good idea to reset your Router if one in use and apply a new admin password...

Next:

Click on Start >> Run... and type cleanmgr in the box and press OK.

  • Ensure the boxes for Temporary Files, Temporary Internet Files and Recycle Bin are checked.
  • You can choose to check other boxes if you wish but they are not required.
  • Click on OK then Yes.
Custom Batch File:

  • Open Notepad.
  • Copy and Paste everything from the Quote- Box(do not copy the word quote) below into Notepad: <-- Start >> Run... type in notepad and select OK

@echo off
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0

  • Go to File >> Save As
  • Save File name as "Dakeyras.bat" <-- Make sure to include the quotes.
  • Change Save as Type to All Files and save the file to your Desktop.
  • It should look like this: Posted Image
Now double click on the desktop Dakeyras.bat to run the batch file. It will self-delete when completed.

Note: You will temporally loose your internet connection and your machine should automatically reboot. If it does not reboot your machine manually.

Scan with RogueKiller:

Please download RogueKiller to your desktop

Alternate download is here.

  • Quit all running programs
  • Double-click on RogueKiller.exe to start the application.
  • Let the pre-scan complete, then click on the Scan tab
  • The RKreport.txt shall be generated next to the executable along with a zip file named RK_Quarantine.
  • If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe
Please post the contents of the RKreport.txt in your next Reply.
  • 0

#13
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Thank you for the thorough advise; I will no longer fix things myself, sorry I should have known this, but I only removed the toolbar that I never had before downloading the FixExec. Thats why I used HJT, I will not do it again however.

At the moment I am at work, but in the evening i will proceed and follow your advise.
1 question though: in your advise is not a reset of the router yet?
Because I live in this place since a few monts and others use the internet as well, if we have one. Actually I dont think its a router, it seems more like a UPC modem with possibility for wireless connection.
  • 0

#14
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,723 posts
Hi. :)

Thank you for the thorough advise; I will no longer fix things myself, sorry I should have known this, but I only removed the toolbar that I never had before downloading the FixExec. Thats why I used HJT, I will not do it again however.

OK fair play.

1 question though: in your advise is not a reset of the router yet?
Because I live in this place since a few monts and others use the internet as well, if we have one. Actually I dont think its a router, it seems more like a UPC modem with possibility for wireless connection.

In that case merely ignore my prior advise about such as according to my research it is most likely a type of Modem with some type of mini-hub possibly. Anyway it would only pertain if you actually had your own personal Router that was in turn connected to the aforementioned Modem.
  • 0

#15
Suus

Suus

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Thanks again for the help :)

I noticed the following:
Cleanmgr for the C-partion took a long time. At the moment its still working on D-partition.
I don’t understand that since I always cleaned my computer with CCleaner so it should not be loaded with trash. Could it be to compress ht old files? Is the prompt Cleanmgr better then to use CCleaner?

Anyway, I created the bat-file as you advised and will run it after the cleaning…if that will ever end … :wacko:
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP