• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

Issues met Iexplorer?

Status
Niet open voor verdere reacties.

Oens

Vaak hier
Lid geworden
22 jun 2004
Berichten
795
Waarderingsscore
0
Hoi,
Ik heb aantal kleine ongemakken met PC, cd's branden lukt niet, deamon tools kan een ISO niet mounten en vanuit zoekresultaten in google opent geen enkele link. Ik heb de volgende logs:

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2014.04.09.06
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16659
- :: --PC [administrator]
9-4-2014 19:08:13
mbam-log-2014-04-09 (19-08-13).txt
Scan type: Snelle scan
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 238717
Verstreken tijd: 7 minuut/minuten, 31 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)

[hjt]
.
unless specifically instructed, do not post this log.
if requested, zip it up & attach it
.
dds (ver_2012-11-20.01)
.
microsoft windows 7 ultimate
boot device: \device\harddiskvolume1
install date: 10-3-2013 16:42:31
system uptime: 9-4-2014 18:21:37 (1 hours ago)
.
motherboard: asustek computer inc. | | p6t deluxe
processor: intel(r) core(tm) i7 cpu 940 @ 2.93ghz | lga1366 | 1584/133mhz
.
==== disk partitions =========================
.
a: is removable
c: is fixed (ntfs) - 491 gib total, 334,97 gib free.
d: is fixed (ntfs) - 441 gib total, 235,187 gib free.
.
==== disabled device manager items =============
.
class guid: {4d36e965-e325-11ce-bfc1-08002be10318}
description: cd-rom-station
device id: dtsoftbus&rev1\dtcdrom&rev1\1&79f5d87&0&00
manufacturer: (standaard cd-rom-stations)
name: dtsoft virtual cdrom device
pnp device id: dtsoftbus&rev1\dtcdrom&rev1\1&79f5d87&0&00
service: cdrom
.
class guid: {4d36e965-e325-11ce-bfc1-08002be10318}
description: cd-rom-station
device id: dtsoftbus&rev1\dtcdrom&rev1\1&79f5d87&0&01
manufacturer: (standaard cd-rom-stations)
name: dtsoft virtual cdrom device
pnp device id: dtsoftbus&rev1\dtcdrom&rev1\1&79f5d87&0&01
service: cdrom
.
class guid: {4d36e965-e325-11ce-bfc1-08002be10318}
description: cd-rom-station
device id: scsi\cdrom&ven_asus&prod_dvd-e818a3&rev_1.02\5&336c1b59&0&000000
manufacturer: (standaard cd-rom-stations)
name: asus dvd-e818a3 scsi cdrom device
pnp device id: scsi\cdrom&ven_asus&prod_dvd-e818a3&rev_1.02\5&336c1b59&0&000000
service: cdrom
.
class guid: {4d36e965-e325-11ce-bfc1-08002be10318}
description: cd-rom-station
device id: scsi\cdrom&ven_plextor&prod_dvdr___px-820a&rev_1.00\5&336c1b59&0&000100
manufacturer: (standaard cd-rom-stations)
name: plextor dvdr px-820a scsi cdrom device
pnp device id: scsi\cdrom&ven_plextor&prod_dvdr___px-820a&rev_1.00\5&336c1b59&0&000100
service: cdrom
.
==== system restore points ===================
.
rp262: 14-3-2014 15:17:43 - windows update
rp263: 14-3-2014 19:13:41 - windows update
rp264: 19-3-2014 10:01:00 - windows update
rp265: 19-3-2014 13:21:03 - windows update
rp266: 23-3-2014 14:27:51 - windows update
rp267: 24-3-2014 9:16:05 - windows update
rp268: 27-3-2014 19:14:16 - windows update
rp269: 31-3-2014 8:54:12 - windows update
rp270: 4-4-2014 15:47:21 - windows update
rp271: 4-4-2014 17:29:27 - windows update
rp273: 7-4-2014 18:54:07 - avast! antivirus system restore point
rp274: 7-4-2014 19:01:39 - windows update
rp275: 9-4-2014 9:18:40 - windows update
.
==== installed programs ======================
.
32 bit hp cio components installer
aangifte inkomstenbelasting 2013
abn amro e.dentifier2 software
adobe flash player 12 activex
adobe reader xi (11.0.06) - nederlands
aio_scan
apple application support
apple mobile device support
apple software update
torrent
avast! free antivirus
bonjour
bufferchm
ccleaner
cdburnerxp
citrix authentication manager
citrix receiver
citrix receiver (hdx flash redirection)
citrix receiver inside
citrix receiver updater
citrix receiver(aero)
citrix receiver(dv)
citrix receiver(usb)
command & conquer red alert 3 and uprising
copy
d3dx10
daemon tools lite
definition update for microsoft office 2010 (kb982726) 32-bit edition
destinations
devicediscovery
dj_aio_productcontext
dj_aio_software
dj_aio_software_min
emet 4.0
f4100
f4100_help
google chrome
google earth
google update helper
gpbaseservice2
grand theft auto iv
hp customer participation program 13.0
hp deskjet all-in-one driver software 13.0 rel. 1
hp imaging device functions 13.0
hp photosmart essential 3.5
hp smart web printing 4.51
hp solution center 13.0
hp update
hpphotogadget
hpphotosmartdisclabelcontent1
hpphotosmartessential
hpproductassistant
icloud
itunes
java 7 update 51
java auto updater
malwarebytes anti-malware versie 1.75.0.1300
marketresearch
marvell 64xx
metro: last light (c) deep silver version 1
microsoft .net framework 4.5.1
microsoft application error reporting
microsoft games for windows - live redistributable
microsoft games for windows marketplace
microsoft office access mui (english) 2010
microsoft office access setup metadata mui (english) 2010
microsoft office excel mui (english) 2010
microsoft office groove mui (english) 2010
microsoft office infopath mui (english) 2010
microsoft office onenote mui (english) 2010
microsoft office outlook mui (english) 2010
microsoft office powerpoint mui (english) 2010
microsoft office professional plus 2010
microsoft office proof (english) 2010
microsoft office proof (french) 2010
microsoft office proof (spanish) 2010
microsoft office proofing (english) 2010
microsoft office publisher mui (english) 2010
microsoft office shared mui (english) 2010
microsoft office shared setup metadata mui (english) 2010
microsoft office word mui (english) 2010
microsoft security client
microsoft security essentials
microsoft silverlight
microsoft skydrive
microsoft sql server 2005 compact edition [enu]
microsoft visual c++ 2005 redistributable
microsoft visual c++ 2008 redistributable - x86 9.0.30729.17
microsoft visual c++ 2008 redistributable - x86 9.0.30729.4148
microsoft visual c++ 2008 redistributable - x86 9.0.30729.6161
microsoft visual c++ 2010 x86 redistributable - 10.0.40219
movie maker
msvcrt
msvcrt110
msxml 4.0 sp2 (kb954430)
msxml 4.0 sp2 (kb973688)
nero audio pack 1
nero blu-ray player
nero kwik media
nero kwik media help (chm)
nero update
nvidia-configuratiescherm 331.58
nvidia 3d vision controllerstuurprogramma 331.58
nvidia 3d vision stuurprogramma 331.58
nvidia grafisch stuurprogramma 331.58
nvidia install application
nvidia physx
nvidia physx systeemsoftware 9.13.0725
nvidia stereoscopic 3d driver
online plug-in
photo common
photo gallery
playmemories home
quicktime 7
reader for pc
scan
security update for microsoft .net framework 4.5.1 (kb2898869)
security update for microsoft .net framework 4.5.1 (kb2901126)
security update for microsoft excel 2010 (kb2826033) 32-bit edition
security update for microsoft office 2010 (kb2553284) 32-bit edition
security update for microsoft office 2010 (kb2687423) 32-bit edition
security update for microsoft office 2010 (kb2826023) 32-bit edition
security update for microsoft office 2010 (kb2826035) 32-bit edition
security update for microsoft office 2010 (kb2850016) 32-bit edition
security update for microsoft word 2010 (kb2863926) 32-bit edition
self-service plug-in
service pack 2 for microsoft office 2010 (kb2687455) 32-bit edition
simcity
smartwebprinting
solutioncenter
status
tomtom home
tomtom home visual studio merge modules
toolbox
trayapp
unloadsupport
update for microsoft access 2010 (kb2553446) 32-bit edition
update for microsoft filter pack 2.0 (kb2837594) 32-bit edition
update for microsoft infopath 2010 (kb2817369) 32-bit edition
update for microsoft infopath 2010 (kb2817396) 32-bit edition
update for microsoft office 2010 (kb2589298) 32-bit edition
update for microsoft office 2010 (kb2589352) 32-bit edition
update for microsoft office 2010 (kb2589375) 32-bit edition
update for microsoft office 2010 (kb2597087) 32-bit edition
update for microsoft office 2010 (kb2760598) 32-bit edition
update for microsoft office 2010 (kb2760631) 32-bit edition
update for microsoft office 2010 (kb2794737) 32-bit edition
update for microsoft office 2010 (kb2825640) 32-bit edition
update for microsoft office 2010 (kb2850079) 32-bit edition
update for microsoft office 2010 (kb2863818) 32-bit edition
update for microsoft office 2010 (kb2878225) 32-bit edition
update for microsoft onenote 2010 (kb2837595) 32-bit edition
update for microsoft outlook 2010 (kb2687567) 32-bit edition
update for microsoft powerpoint 2010 (kb2837579) 32-bit edition
update for microsoft sharepoint workspace 2010 (kb2760601) 32-bit edition
update for microsoft visio 2010 (kb2553444) 32-bit edition
update for microsoft visio viewer 2010 (kb2810066) 32-bit edition
wbfs manager 3.0
webreg
windows live communications platform
windows live essentials
windows live id sign-in assistant
windows live installer
windows live photo common
windows live pimt platform
windows live soxe
windows live soxe definitions
windows live ux platform
windows live ux platform language pack
winrar 4.20 (32-bit)
winsysclean x2
wondershare video converter platinum(build 5.1.1.0)
ytd video downloader 4.7.2
.
==== end of file ===========================
[/hjt]

[hjt]
dds (ver_2012-11-20.01) - ntfs_x86
internet explorer: 11.0.9600.16521 browserjavaversion: 10.51.2
run by - at 19:18:11 on 2014-04-09
microsoft windows 7 ultimate 6.1.7601.1.1252.31.1033.18.3063.1985 [gmt 2:00]
.
av: microsoft security essentials *enabled/updated* {641105e6-77ed-3f35-a304-765193bcb75f}
av: avast! antivirus *disabled/updated* {17ad7d40-ba12-9c46-7131-94903a54ad8b}
sp: windows defender *disabled/updated* {d68ddc3a-831f-4fae-9e44-da132c1acf46}
sp: avast! antivirus *disabled/updated* {accc9ca4-9c28-93c8-4b81-afe241d3e736}
sp: microsoft security essentials *enabled/updated* {df70e402-51d7-30bb-99b4-4d23e83bfde2}
.
============== running processes ================
.
c:\windows\system32\wininit.exe
c:\windows\system32\lsm.exe
c:\windows\system32\nvvsvc.exe
c:\program files\nvidia corporation\3d vision\nvscpapisvr.exe
c:\program files\microsoft security client\msmpeng.exe
c:\program files\avast software\avast\avastsvc.exe
c:\program files\nvidia corporation\display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\dwm.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\program files\common files\adobe\arm\1.0\armsvc.exe
c:\program files\google\update\1.3.23.9\googlecrashhandler.exe
c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe
c:\program files\bonjour\mdnsresponder.exe
c:\program files\microsoft security client\msseces.exe
c:\program files\hp\digital imaging\bin\hpqsrmon.exe
c:\program files\citrix\ica client\concentr.exe
c:\program files\avast software\avast\avastui.exe
c:\program files\common files\java\java update\jusched.exe
c:\program files\sony\readerdesktop\apphelper\readerapphelper.exe
c:\program files\itunes\ituneshelper.exe
c:\program files\sony\playmemories home\pmbdeviceinfoprovider.exe
c:\windows\system32\pnkbstra.exe
c:\windows\system32\pnkbstrb.exe
c:\program files\tomtom home 2\tomtomhomeservice.exe
c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
c:\program files\common files\microsoft shared\windows live\wlidsvcm.exe
c:\program files\emet 4.0\emet_agent.exe
c:\program files\ipod\bin\ipodservice.exe
c:\windows\system32\searchindexer.exe
c:\program files\citrix\receiver\receiver.exe
c:\program files\microsoft security client\nissrv.exe
c:\program files\windows media player\wmpnetwk.exe
c:\program files\citrix\selfserviceplugin\selfserviceplugin.exe
c:\program files\citrix\ica client\wfcrun32.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\dllhost.exe
c:\program files\nero\update\nasvc.exe
c:\program files\common files\apple\internet services\applephotostreams.exe
c:\program files\common files\apple\internet services\apsdaemon.exe
c:\windows\notepad.exe
c:\windows\system32\vssvc.exe
c:\users\-\desktop\dds.com
c:\users\-\appdata\local\temp\nsac054.tmp\nscb2e.tmp
c:\windows\system32\conhost.exe
c:\windows\system32\wbem\wmiprvse.exe
c:\windows\system32\dllhost.exe
c:\users\-\appdata\local\temp\nsac054.tmp\pev.dat
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k gpsvcgroup
c:\windows\system32\svchost.exe -k networkservice
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\windows\system32\svchost.exe -k hpdevmgmt
c:\windows\system32\svchost.exe -k hpz12
c:\windows\system32\svchost.exe -k hpz12
c:\windows\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localservicepeernet
c:\windows\system32\svchost.exe -k swprv
.
============== pseudo hjt report ===============
.
ustart page = hxxp://www.telegraaf.nl/
mstart page = hxxp://www.google.com
bho: hp print enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
bho: groove gfs browser helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office14\grooveex.dll
bho: java(tm) plug-in ssv helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre7\bin\ssv.dll
bho: avast! online security: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswwebrepie.dll
bho: windows live id sign-in helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
bho: office document cache handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\program files\microsoft office\office14\urlredir.dll
bho: java(tm) plug-in 2 ssv helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre7\bin\jp2ssv.dll
bho: hp smart bho class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
eb: hp smart web printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
urun: [daemon tools lite] c:\program files\daemon tools lite\dtlite.exe -autorun
urunonce: [flashplayerupdate] c:\windows\system32\macromed\flash\flashutil32_12_0_0_77_activex.exe -update activex
mrun: [msc] c:\program files\microsoft security client\msseces.exe -hide -runkey
mrun: [hpqsrmon] c:\program files\hp\digital imaging\bin\hpqsrmon.exe
mrun: [bcssync] c:\program files\microsoft office\office14\bcssync.exe /delayservices
mrun: [connectioncenter] c:\program files\citrix\ica client\concentr.exe /startup
mrun: [adobe arm] c:\program files\common files\adobe\arm\1.0\adobearm.exe
mrun: [avastui.exe] c:\program files\avast software\avast\avastui.exe /nogui
mrun: [emet agent] c:\program files\emet 4.0\emet_agent.exe
mrun: [sunjavaupdatesched] c:\program files\common files\java\java update\jusched.exe
mrun: [reader application helper] c:\program files\sony\readerdesktop\apphelper\readerapphelper.exe
mrun: [quicktime task] c:\program files\quicktime\qttask.exe -atboottime
mrun: [ituneshelper] c:\program files\itunes\ituneshelper.exe
upolicies-explorer: nodrivetypeautorun = dword:145
upolicies-explorer: nodrives = dword:0
mpolicies-explorer: nodrives = dword:0
mpolicies-system: consentpromptbehavioradmin = dword:0
mpolicies-system: consentpromptbehavioruser = dword:3
mpolicies-system: enablelua = dword:0
mpolicies-system: enableuiadesktoptoggle = dword:0
mpolicies-system: promptonsecuredesktop = dword:0
mpolicies-system: enablesecureuiapath = dword:1
mpolicies-windows\system: useoembackground = dword:1
ie: {2670000a-7350-4f3c-8081-5663ee0c6c49} - {48e73304-e1d6-4330-914c-f5f514e3486c} - c:\program files\microsoft office\office14\onbttnie.dll
ie: {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - {fffdc614-b694-4ae6-ab38-5d6374584b52} - c:\program files\microsoft office\office14\onbttnielinkednotes.dll
ie: {dde87865-83c5-48c4-8357-2f5b1aa84522} - {dde87865-83c5-48c4-8357-2f5b1aa84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
dpf: {7530bfb8-7293-4d34-9923-61a11451afc5} - hxxp://download.eset.com/special/eos/onlinescanner.cab
dpf: {c3e3bb4f-269c-41a3-9f5f-a360e933cad3} - hxxps://as.photoprintit.com/ips-opdata/activex/imageuploader6.cab
tcp: nameserver = 192.168.1.1
tcp: interfaces\{bd2d2043-9d30-422b-ad73-00bc3f6df4ec} : dhcpnameserver = 192.168.1.1
filter: application/x-ica - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=euc-jp - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=iso-8859-1 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=ms936 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=ms949 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=ms950 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=utf-8 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica; charset=utf8 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=euc-jp - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=iso-8859-1 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=ms936 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=ms949 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=ms950 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=utf-8 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: application/x-ica;charset=utf8 - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: ica - {cfb6322e-cc85-4d1b-82c7-893888a236bc} - c:\program files\citrix\ica client\icamimefilter.dll
filter: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files\common files\microsoft shared\office14\msoxmlmf.dll
handler: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - c:\program files\windows live\photo gallery\albumdownloadprotocolhandler.dll
appinit_dlls= c:\progra~1\citrix\icacli~1\rshook.dll
ssodl: webcheck - <orphaned>
seh: groove gfs stub execution hook - {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office14\grooveex.dll
masetup: {8a69d345-d564-463c-aff1-a69d9e530f96} - c:\program files\google\chrome\application\33.0.1750.154\installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= services / drivers ===============
.
r0 aswrvrt;avast! revert;c:\windows\system32\drivers\aswrvrt.sys [2013-10-22 49944]
r0 aswvmm;avast! vm monitor;c:\windows\system32\drivers\aswvmm.sys [2013-10-22 180760]
r0 mpfilter;microsoft malware protection driver;c:\windows\system32\drivers\mpfilter.sys [2014-1-25 231960]
r0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [2011-2-9 159536]
r0 mv64xx;mv64xx;c:\windows\system32\drivers\mv64xx.sys [2009-7-29 286248]
r1 aswsnx;aswsnx;c:\windows\system32\drivers\aswsnx.sys [2013-10-22 776976]
r1 aswsp;aswsp;c:\windows\system32\drivers\aswsp.sys [2013-10-22 411552]
r1 ctxusbm;citrix usb monitor driver;c:\windows\system32\drivers\ctxusbm.sys [2012-4-25 67960]
r1 dtsoftbus01;daemon tools virtual bus driver;c:\windows\system32\drivers\dtsoftbus01.sys [2013-3-10 242240]
r2 aswmonflt;aswmonflt;c:\windows\system32\drivers\aswmonflt.sys [2013-10-22 67824]
r2 avast! antivirus;avast! antivirus;c:\program files\avast software\avast\avastsvc.exe [2014-4-7 50344]
r2 naupdate;nero update;c:\program files\nero\update\nasvc.exe [2012-7-13 769432]
r2 nisdrv;microsoft network inspection system;c:\windows\system32\drivers\nisdrvwfp.sys [2013-1-20 104264]
r2 pmbdeviceinfoprovider;pmbdeviceinfoprovider;c:\program files\sony\playmemories home\pmbdeviceinfoprovider.exe [2012-11-27 479840]
r2 stereo service;nvidia stereoscopic 3d driver service;c:\program files\nvidia corporation\3d vision\nvscpapisvr.exe [2013-10-15 414496]
r2 tomtomhomeservice;tomtomhomeservice;c:\program files\tomtom home 2\tomtomhomeservice.exe [2013-8-27 93072]
r3 nissrv;microsoft netwerkinspectie;c:\program files\microsoft security client\nissrv.exe [2014-3-11 279776]
r3 yukonw7;ndis6.2 miniport driver for marvell yukon ethernet controller;c:\windows\system32\drivers\yk62x86.sys [2009-9-28 315392]
s2 clr_optimization_v4.0.30319_32;microsoft .net framework ngen v4.0.30319_x86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
s3 aswstm;aswstm;c:\windows\system32\drivers\aswstm.sys [2014-1-6 67264]
s3 b57nd60x;broadcom netxtreme gigabit ethernet - ndis 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
s3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2011-4-12 62464]
s3 e.dentifier2;smartcard reader abn amro e.dentifier2;c:\windows\system32\drivers\aabed2.sys [2008-3-20 23040]
s3 ieetwcollectorservice;internet explorer etw collector service;c:\windows\system32\ieetwcollector.exe [2014-3-14 108032]
s3 mbamprotector;mbamprotector;c:\windows\system32\drivers\mbam.sys [2013-7-4 22856]
s3 rdpvideominiport;remote desktop video miniport driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-2-16 14848]
s3 rtl8167;realtek 8167 nt driver;c:\windows\system32\drivers\rt86win7.sys [2013-2-16 585872]
s3 synth3dvsc;microsoft virtual 3d video transport driver;c:\windows\system32\drivers\synth3dvsc.sys [2011-4-12 77184]
s3 terminpt;microsoft remote desktop input driver;c:\windows\system32\drivers\terminpt.sys [2013-2-16 24064]
s3 tsusbgd;remote desktop generic usb device;c:\windows\system32\drivers\tsusbgd.sys [2013-2-16 27136]
s3 tsusbhub;remote deskotop usb hub;c:\windows\system32\drivers\tsusbhub.sys [2011-4-12 112640]
s3 usbfltr;waytech usb filter driver1;c:\windows\system32\drivers\usbfltr.sys [2007-4-9 9600]
s3 watadminsvc;windows activation technologies-service;c:\windows\system32\wat\watadminsvc.exe [2013-2-16 1343400]
s4 mbamscheduler;mbamscheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-7-4 418376]
s4 mbamservice;mbamservice;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-7-4 701512]
sunknown tsusbflt;tsusbflt; [x]
.
=============== file associations ===============
.
fileext: .reg: regfile=regedit.exe "%1" [userchoice]
.chm: <filetype is not registered>
.
=============== created last 30 ================
.
2014-04-09 06:25:29 7969936 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{9bc07284-9340-4e8f-ac6d-6f2e5556536c}\mpengine.dll
2014-04-09 06:20:53 27072 ----a-w- c:\windows\system32\drivers\diskdump.sys
2014-04-09 06:20:53 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-09 06:20:53 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-09 06:20:53 149440 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-09 06:20:50 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-04-09 06:20:47 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-04-07 17:01:52 7969936 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2014-04-07 16:54:58 43152 ----a-w- c:\windows\avastss.scr
2014-04-04 13:48:27 765968 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{dfdd2061-91d3-41e0-9aa8-00e7e7824990}\gapaengine.dll
2014-03-23 17:57:09 -------- d-----w- c:\programdata\steam
2014-03-23 17:55:59 -------- d-----w- c:\program files\cities in motion 2
2014-03-10 19:18:36 158720 ----a-w- c:\windows\system32\ws_videoconvertercontextmenu.dll
2014-03-10 19:18:27 -------- d-----w- c:\program files\wondershare
2014-03-10 18:56:44 26840 ----a-w- c:\windows\system32\drivers\gearaspiwdm.sys
2014-03-10 18:56:15 -------- d-----w- c:\program files\ipod
2014-03-10 18:56:14 -------- d-----w- c:\programdata\188f1432-103a-4ffb-80f1-36b633c5c9e1
2014-03-10 18:56:14 -------- d-----w- c:\program files\itunes
.
==================== find3m ====================
.
2014-04-07 16:54:59 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-04-07 16:54:59 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2014-04-07 16:54:59 67264 ----a-w- c:\windows\system32\drivers\aswstm.sys
2014-04-07 16:54:59 49944 ----a-w- c:\windows\system32\drivers\aswrvrt.sys
2014-04-07 16:54:59 180760 ----a-w- c:\windows\system32\drivers\aswvmm.sys
2014-04-07 16:54:58 81768 ----a-w- c:\windows\system32\drivers\aswrdr2.sys
2014-03-12 14:36:19 71048 ----a-w- c:\windows\system32\flashplayercplapp.cpl
2014-03-12 14:36:19 692616 ----a-w- c:\windows\system32\flashplayerapp.exe
2014-03-11 07:52:30 104264 ----a-w- c:\windows\system32\drivers\nisdrvwfp.sys
2014-03-01 04:10:48 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-03-01 03:52:43 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-03-01 03:51:53 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-03-01 03:38:26 112128 ----a-w- c:\windows\system32\ieunatt.exe
2014-03-01 03:38:23 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-03-01 03:37:35 553472 ----a-w- c:\windows\system32\jscript9diag.dll
2014-03-01 03:31:30 646144 ----a-w- c:\windows\system32\msspellcheckingfacility.exe
2014-03-01 03:14:15 4244480 ----a-w- c:\windows\system32\jscript9.dll
2014-03-01 03:00:08 1964032 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-01 02:32:16 1820160 ----a-w- c:\windows\system32\wininet.dll
2014-02-07 01:07:56 2349056 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 02:04:22 1230336 ----a-w- c:\windows\system32\windowscodecs.dll
2014-02-04 02:04:11 509440 ----a-w- c:\windows\system32\qedit.dll
2014-01-29 02:06:47 381440 ----a-w- c:\windows\system32\wer.dll
2014-01-28 02:07:07 185344 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-24 23:19:42 231960 ----a-w- c:\windows\system32\drivers\mpfilter.sys
2014-01-19 07:32:23 231584 ------w- c:\windows\system32\mpsigstub.exe
2014-01-17 15:24:12 94208 ----a-w- c:\windows\system32\quicktimevr.qtx
2014-01-17 15:24:12 69632 ----a-w- c:\windows\system32\quicktime.qts
.
============= finish: 19:18:57,01 ===============
[/hjt]

Willen jullie deze checken.
Thanks Jeroen
 
Hallo,

Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.

Download
51a612a8b27e2-Zoek.png
Zoek.exe naar het bureaublad.
  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.

Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
  • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
    Code:
    firefoxlook;
    emptyclsid;
    torpigcheck;
    emptyfolderscheck;delete
    chromelook;
    standardsearch;
    filesrcm;
    autoclean;
    startupall;
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.
 
Laatst bewerkt door een moderator:
bij deze het logje van zoek.exe


Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by - on do 10-04-2014 at 8:37:12,50.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\-\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

10-4-2014 8:38:02 Zoek.exe System Restore Point Created Succesfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll


==== Empty Folders Check ======================

C:\Program Files\AGEIA Technologies deleted successfully
C:\Program Files\InstallShield Installation Information deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\xml_param deleted successfully
C:\Users\-\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} deleted successfully
C:\Users\-\AppData\Local\ms-drivers deleted successfully
C:\Users\-\AppData\Local\NVIDIA deleted successfully
C:\Users\-\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{8E9E3331-D360-4f87-8803-52DE43566502} deleted successfully

==== Running Processes ======================

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Windows\system32\PnkBstrA.exe
C:\Windows\system32\PnkBstrB.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Citrix\ICA Client\concentr.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Citrix\Receiver\Receiver.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
C:\Program Files\EMET 4.0\EMET_Agent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Citrix\SelfServicePlugin\SelfServicePlugin.exe
C:\Program Files\Citrix\ICA Client\wfcrun32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Users\-\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServicePeerNet

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files\GreenTree Applications deleted
C:\Program Files\Wondershare deleted
C:\PROGRA~2\YTD Video Downloader deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted

==== System Specs ======================

Windows: Windows 7 Ultimate Edition Service Pack 1 (Build 7601)
Memory (RAM): 3064 MB
CPU Info: Intel(R) Core(TM) i7 CPU 940 @ 2.93GHz
CPU Speed: 2965,3 MHz
Sound Card: Speakers (High Definition Audio |
Digital Audio (S/PDIF) (High De |
Digital Audio (HDMI) (High Defi |
Display Adapters: NVIDIA GeForce GTX 285 | NVIDIA GeForce GTX 285 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; SyncMaster T200/T200G,SyncMaster Magic T200/T200G(Digital) |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller #2 | Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
CD / DVD Drives: No optical drives found.
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 490,6GB | D: 440,9GB
Hard Disks - Free: C: 334,0GB | D: 235,2GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 12/18/08 | ACRSYS - 20081218
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer INC. P6T DELUXE
Country: Nederland
Language: NLD

==== System Specs (Software) ======================

Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Internet Explorer Version: 11.0.9600.16659
Google Chrome version: 34.0.1847.116
Adobe Reader version: 11.0.06.70
Sun Java version: 1.7.0_51 (32-bit)

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-04-07 16:54:58 E1CBFDE5CAD6C373946A0D2C238E6522 43152 ----a-w- C:\Windows\avastSS.scr
====== C:\Users\-\AppData\Local\Temp ====
====== Java Cache =====
2014-03-19 16:27:41 B365724EFF733DABC0870EC2C883DD68 540 ----a-w- C:\Users\-\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\6441c76c-1296463f
2014-03-19 16:27:41 5D2AC63B82DE35A32D74A701EA012437 37 ----a-w- C:\Users\-\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\6441c76c-6.0.lap
2014-03-19 16:27:41 B365724EFF733DABC0870EC2C883DD68 540 ----a-w- C:\Users\-\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\6441c76c-1296463f
2014-03-19 16:27:41 5D2AC63B82DE35A32D74A701EA012437 37 ----a-w- C:\Users\-\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\6441c76c-6.0.lap
====== C:\Windows\system32 =====
2014-04-09 11:27:30 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\System32\servers.def.vpx.dld
2014-04-09 06:20:49 F74FFA7654702F81884BDB41EB80DAC2 868352 ----a-w- C:\Windows\System32\kernel32.dll
2014-04-09 06:20:48 CCF19C82F6145E4A467F7CB9AF82026C 17073152 ----a-w- C:\Windows\System32\mshtml.dll
2014-04-09 06:20:47 A45A13AAC7777C096A073FF1F4F5A0D5 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
====== C:\Windows\system32\drivers =====
2014-04-09 06:20:53 F1A449D762657230629D8BFC107ABC14 149440 ----a-w- C:\Windows\System32\drivers\storport.sys
2014-04-09 06:20:53 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2014-04-09 06:20:53 5FB4F271032B6435F3B2252F577A4815 27072 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2014-04-09 06:20:50 C8DFF8D07755A66C7A4A738930F0FEAC 1212352 ----a-w- C:\Windows\System32\drivers\ntfs.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-03-23 17:55:59 -------- d-----w- C:\Program Files\Cities in Motion 2
======= C: =====
====== C:\Users\-\AppData\Roaming ======
2014-03-23 17:57:09 -------- d-----w- C:\Users\-\AppData\Locallow\Colossal Order
2014-03-23 17:57:09 -------- d-----w- C:\Users\-\AppData\Locallow\Colossal Order
====== C:\Users\- ======
2014-04-09 17:06:29 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\-\Desktop\dds.com
2014-04-09 17:06:29 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\-\Desktop\dds.com
2014-03-23 17:57:09 -------- d-----w- C:\ProgramData\Steam

====== C: exe-files ==
2014-04-09 18:37:54 5D0252FA47A71BD2701E5FD11419FD04 1671248 ----a-w- C:\Windows\temp\avast_ash\uTorrent (current user)\uTorrent.exe
2014-04-09 17:22:26 8FAE9109245E4B4FF42704ECFB86F1B6 8704216 ----a-w- C:\Program Files\Google\Update\Install\{BE1DF2ED-AF81-4D48-A424-2558A07CFBD7}\34.0.1847.116_33.0.1750.154_chrome_updater.exe
2014-04-09 17:22:26 8FAE9109245E4B4FF42704ECFB86F1B6 8704216 ----a-w- C:\Program Files\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\34.0.1847.116\34.0.1847.116_33.0.1750.154_chrome_updater.exe
=== C: other files ==
2014-04-09 17:06:29 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\-\Desktop\dds.com
2014-04-09 06:20:53 F1A449D762657230629D8BFC107ABC14 149440 ----a-w- C:\Windows\System32\drivers\storport.sys
2014-04-09 06:20:53 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\DriverStore\FileRepository\iscsi.inf_x86_neutral_128be931e3e98b62\msiscsi.sys
2014-04-09 06:20:53 EB34CE31FABD4DC4343FD2AD16D2CAF9 234432 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2014-04-09 06:20:53 5FB4F271032B6435F3B2252F577A4815 27072 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2014-04-09 06:20:50 C8DFF8D07755A66C7A4A738930F0FEAC 1212352 ----a-w- C:\Windows\System32\drivers\ntfs.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-563182199-2948176902-1148408978-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"
"hpqSRMon"="C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe"
"BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices"
"ConnectionCenter"="C:\Program Files\Citrix\ICA Client\concentr.exe /startup"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"EMET Agent"="C:\Program Files\EMET 4.0\EMET_agent.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"Reader Application Helper"="C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~1\\Citrix\\ICACLI~1\\RSHook.dll"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApplePhotoStreams]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ApplePhotoStreams"
"hkey"="HKCU"
"command"="C:\\Program Files\\Common Files\\Apple\\Internet Services\\ApplePhotoStreams.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HP Software Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HP Software Update"
"hkey"="HKLM"
"command"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iCloudServices]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iCloudServices"
"hkey"="HKCU"
"command"="C:\\Program Files\\Common Files\\Apple\\Internet Services\\iCloudServices.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PMBVolumeWatcher]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PMBVolumeWatcher"
"hkey"="HKLM"
"command"="C:\\Program Files\\Sony\\PlayMemories Home\\PMBVolumeWatcher.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Reader Application Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Reader Application Helper"
"hkey"="HKLM"
"command"="C:\\Program Files\\Sony\\ReaderDesktop\\appHelper\\ReaderAppHelper.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TomTomHOME.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TomTomHOME.exe"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\TomTom HOME 2\\TomTomHOMERunner.exe\""


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\HP Digital Imaging Monitor.lnk"
"backup"="C:\\Windows\\pss\\HP Digital Imaging Monitor.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~1\\HP\\DIGITA~1\\bin\\hpqtra08.exe "
"item"="HP Digital Imaging Monitor"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMScheduler]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TomTomHOMEService]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ \C:\Program Files\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [02-05-2013 19:26]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\0" [c:\program files\internet explorer\iexplore.exe]
"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\system32\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Folders in C:\PROGRA~2 0-6 Months Old ======================

2013-10-14 18:47:03 -------- dc-h--w- C:\PROGRA~2\{4E78170A-6049-4586-A083-3AECE1A687E4}
2013-10-22 07:26:27 -------- d-----w- C:\PROGRA~2\AVAST Software
2014-03-10 18:56:14 -------- d-----w- C:\PROGRA~2\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-23 17:57:09 -------- d-----w- C:\PROGRA~2\Steam

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [10-03-2013 22:25]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [10-03-2013 22:25]

==== Firefox Extensions ======================

ProfilePath: C:\Users\-\AppData\Roaming\TomTom\HOME\Profiles\nblhm3wt.default
- Map status indicator - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

ExtDir: C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
- GoPhotoIt - %ExtDir%\gophoto@gophoto.it.xpi
- Torntv 3 - %ExtDir%\trtv3@trtv.com.xpi

ExtDir: C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
- GoPhotoIt - %ExtDir%\gophoto@gophoto.it.xpi
- Torntv 3 - %ExtDir%\trtv3@trtv.com.xpi

==== Firefox Plugins ======================


==== Deleted Firefox Extensions ======================

C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\trtv3@trtv.com.xpi deleted
C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\gophoto@gophoto.it.xpi deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07-04-2014 18:54]

Google Docs - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast Online Security - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Docs - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
avast Online Security - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.telegraaf.nl/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.telegraaf.nl/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== HijackThis Entries ======================

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [EMET Agent] "C:\Program Files\EMET 4.0\EMET_agent.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3E3BB4F-269C-41A3-9F5F-A360E933CAD3} (CeWe Color AG & Co. OHG Control) - https://as.photoprintit.com/ips-opdata/activex/ImageUploader6.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Citrix\ICACLI~1\RSHook.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

==== Empty IE Cache ======================

C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SHOTZ3E will be deleted at reboot
C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SHOTZ3E will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\-\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\-\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=355 folders=85 165103416 bytes)

==== Empty Temp Folders ======================

C:\Users\-\AppData\Local\temp will be emptied at reboot
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\-\AppData\Local\temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\-\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SHOTZ3E" deleted
"C:\Users\-\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SHOTZ3E" not found

==== EOF on do 10-04-2014 at 8:50:18,14 ======================
 
Hallo,

Ik zie twee virusscanners:
Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)

Verwijder daar n van want twee scanners werken elkaar tegen en vertragen ook zo je pc.



Download
adwcleaner.png
AdwCleaner by Xplode naar het bureaublad.
  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner om hem te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
  • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op Scan.
  • Klik vervolgens op Clean als er items zijn gevonden.
  • Klik bij Herstarten Noodzakelijk op OK

Nadat de PC opnieuw is opgestart, opent meestal een logfile.
Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[R1].txt
Post aansluitend de inhoud van dit log in je volgende bericht.
 
Hoi,

Microsoft Essentials verwijdert.

Ik ben wel twee programma's kwijt, YTD video downloader en wondershare video converter. Is er iets met die programma's?

Logje ADW hieronder

# AdwCleaner v3.023 - Report created 10/04/2014 at 20:12:07
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : - - --PC
# Running from : C:\Users\-\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v

[ File : C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]


[ File : C:\Users\-\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0\prefs.js ]


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\-\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [8802 octets] - [22/09/2013 13:35:49]
AdwCleaner[R1].txt - [1783 octets] - [30/10/2013 20:35:49]
AdwCleaner[R2].txt - [1898 octets] - [15/12/2013 15:35:21]
AdwCleaner[R3].txt - [1552 octets] - [10/04/2014 19:26:04]
AdwCleaner[S0].txt - [8430 octets] - [22/09/2013 13:38:07]
AdwCleaner[S1].txt - [1908 octets] - [30/10/2013 21:11:34]
AdwCleaner[S2].txt - [1979 octets] - [15/12/2013 15:36:00]
AdwCleaner[S3].txt - [1479 octets] - [10/04/2014 20:12:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1539 octets] ##########
 
Hallo,

YTD video downloader en wondershare video converter. Is er iets met die programma's?
Ja die zijn aan malware/adware verbonden waardoor je problemen krijgt.
Hoe gaat het hierna?
 
Ja op zich draait alles goed en sneller. Maar blijf dat rare issue houden met Iexplorer, als ik google en resultaten open in ander venster gebeurt er niks, pagina laadt niet. Zou ixplorer verwijderen en opnieuw installeren een optie zijn?
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan