antivirus.startpagina.nl

vreemde linken op internetpagina's

  • Anonymous avatar

    Rikje

    Hallo

    Afgelopen weekend heb ik een bericht geplaatst met als titel“rare startpagina”

    Ik dacht dat alles was opgelost maar nu krijg ik als ik een internetpagina open het volgende:

    Er worden ineens allemaal woorden blauw en ze worden twee keer onderstreept het wordt dan een soort link naar bijvoorbeeld adobe of een andere site.

    Ook krijg ik meldingen dan mijn videoplayer en mijn flashplayer niet up to date zou zijn en dat ik die moet upgraden.

    Ik wordt dan gelijk doorgelinkt naar een downloadpagina maar die heb ik maar weg geklikt.

    Ik ben naar de site van Adobe gegaan en heb hem daarvandaan gedownload en geïnstalleerd omdat ik bang was anders toch weer andere rotzooi binnen te halen.

    Ook kreeg ik ineens een soort enquêtepagina van Firefox met een aantal vragen hoe ik de nieuwe firefox waardeerde. Nietsvermoedend daar antwoord op gaan geven en ineens popt Malwarebites op met de mededeling dat de pagina werd geblokkeerd.

    Er zit dus ergens nog iets fout op mijn PC.

    Ik kan natuurlijk alle stappen wel weer herhalen maar vraag mij af of dit zinvol is.

    Hoor graag wat ik nu moet doen om jullie van info te voorzien.

    PS ik heb het zelfs op jullie eigen pagina.

    een wanhopige Rikje.

  • Anonymous avatar

    Ben

    Hallo,

    Voer MalwareBytes' Anti-Malware weer eens uit: http://antivirus.startpagina.nl/prikbord/4625317/voer-dit-eerst-uit-voordat-je-de-logjes-plaatst-(aangepaste-versie-dd-25-03-2014)#msg-4625317

  • Anonymous avatar

    Rikje

    Hallo Ben

    Het koste me even wat moeite om het logje te vinden van Malwarebites.

    Maar hier is ie dan .

    Probleem is niet verholpen.

    Rikje

    Malwarebytes Anti-Malware

    www.malwarebytes.org

    Scan Date: 26-8-2014

    Scan Time: 14:33:43

    Logfile: mbamlog.txt

    Administrator: Yes

    Version: 2.00.2.1012

    Malware Database: v2014.08.26.01

    Rootkit Database: v2014.08.21.01

    License: Trial

    Malware Protection: Enabled

    Malicious Website Protection: Enabled

    Self-protection: Disabled

    OS: Windows 7 Service Pack 1

    CPU: x64

    File System: NTFS

    User: Erika

    Scan Type: Threat Scan

    Result: Completed

    Objects Scanned: 314116

    Time Elapsed: 9 min, 16 sec

    Memory: Enabled

    Startup: Enabled

    Filesystem: Enabled

    Archives: Enabled

    Rootkits: Disabled

    Heuristics: Enabled

    PUP: Enabled

    PUM: Enabled

    Processes: 0

    (No malicious items detected)

    Modules: 0

    (No malicious items detected)

    Registry Keys: 0

    (No malicious items detected)

    Registry Values: 0

    (No malicious items detected)

    Registry Data: 0

    (No malicious items detected)

    Folders: 0

    (No malicious items detected)

    Files: 0

    (No malicious items detected)

    Physical Sectors: 0

    (No malicious items detected)

    (end)

  • Anonymous avatar

    Ben

    Hallo,

    Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.

    Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.

    Download Zoek.exe naar het bureaublad.

    * Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.

    Zoek.exe uitvoeren

    Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.

    * Dubbelklik vervolgens op Zoek.exe om de tool te starten.

    * Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.

    * Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:

    * Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.

    firefoxlook;

    torpigcheck;

    emptyfolderscheck;delete

    chromelook;

    standardsearch;

    filesrcm;

    autoclean;

    startupall;

    * Klik nu op de knop "Run script".

    * Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    * Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    * Post het geopende logje in het volgende bericht.

  • Anonymous avatar

    Rikje

    Hallo Ben

    Zoek.exe uitgevoerd.

    Probleem is niet verholpen.

    Ik kreeg wel een melding: Plugincontainer for firefox werkt niet meer. Ik heb op programma sluiten geklikt.

    Rikje

    Zoek.exe v5.0.0.0 Updated 26-08-2014

    Tool run by Erika on di 26-08-2014 at 15:14:25,58.

    Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

    Running in: Normal Mode Internet Access Detected

    Launched: C:\Users\Erika\Desktop\zoek.exe

    ==== System Restore Info ======================

    26-8-2014 15:17:54 Zoek.exe System Restore Point Created Succesfully.

    ==== Torpig Check ======================

    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll

    HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll

    ==== Deleting CLSID Registry Keys ======================

    ==== Deleting CLSID Registry Values ======================

    ==== Running Processes ======================

    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe

    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

    C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

    C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

    C:\Windows\SysWOW64\svchost.exe

    C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe

    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe

    C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe

    c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    C:\Program Files (x86)\Sitecom\Common\RegistryWriter.exe

    C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe

    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

    c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe

    C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe

    C:\Users\Erika\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe

    C:\Program Files (x86)\Sitecom\Common\RaUI.exe

    C:\Program Files (x86)\Datacolor\Spyder3Elite\Utility\Spyder3Utility.exe

    C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe

    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

    C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe

    C:\Program Files (x86)\AVG\AVG2014\avgui.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe

    C:\Windows\SysWOW64\ctfmon.exe

    C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe

    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

    C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

    C:\Program Files (x86)\Mozilla Firefox\firefox.exe

    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe

    C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe

    C:\Users\Erika\Desktop\zoek.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\SysWOW64\cmd.exe

    ==== Deleting Services ======================

    ==== System Specs ======================

    Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)

    Memory (RAM): 6072 MB

    CPU Info: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz

    CPU Speed: 2924,4 MHz

    Sound Card: Luidsprekers (Realtek High Defi |

    Realtek Digital Output (Realtek |

    Display Adapters: ATI Radeon HD 5450 | ATI Radeon HD 5450 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver

    Monitors: 2x; Algemeen PnP-beeldscherm | Algemeen PnP-beeldscherm |

    Screen Resolution: 1920 X 1080 - 32 bit

    Network: Network Present

    Network Adapters: 802.11n Wireless PCI Express Card LAN Adapter | Realtek PCIe GBE Family Controller

    CD / DVD Drives: 1x (E: | ) E: hp CDDVDW TS-H653R

    Ports: COM Ports NOT Present. LPT Port NOT Present.

    Mouse: 16 Button Wheel Mouse Present

    Hard Disks: C: 918,9GB | D: 12,6GB

    Hard Disks - Free: C: 751,5GB | D: 1,7GB

    Manufacturer *: American Megatrends Inc.

    BIOS Info: AT/AT COMPATIBLE | 06/25/10 | HPQOEM - 20100625

    Time Zone: West-Europa (standaardtijd)

    Motherboard *: MSI IONA

    Country: Nederland

    Language: NLD

    ==== System Specs (Software) ======================

    Anti-Virus: AVG AntiVirus Free Edition 2014 On-access scanning disabled (Outdated)

    Anti-Spyware: Windows Defender disabled (Outdated)

    Anti-Spyware: AVG AntiVirus Free Edition 2014 disabled (Outdated)

    Default Browser: Firefox 31.0

    Internet Explorer Version: 11.0.9600.17239

    Mozilla Firefox version: 31.0 (x86 nl)

    Adobe Reader version: 11.0.8.4

    Sun Java version: 1.7.0_67 (32-bit)

    Flash Player version: 14.0.0.179

    Shockwave Player version: 12.1.1r151

    ==== Files Recently Created / Modified ======================

    ====== C:\Windows ====

    ====== C:\Users\Erika\AppData\Local\Temp ====

    ====== Java Cache =====

    2014-08-24 14:06:06 D41D8CD98F00B204E9800998ECF8427E 0 —-a-w- C:\Users\Erika\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-2ae78786

    ====== C:\Windows\SysWOW64 =====

    2014-08-24 11:48:04 867148EBF47E7E7E7B21C07B4A981929 581600 —-a-w- C:\Windows\SysWOW64\wuapi.dll

    2014-08-24 11:48:04 372218B80DEF827063049EBEE76B7501 92672 —-a-w- C:\Windows\SysWOW64\wudriver.dll

    2014-08-24 11:48:03 255F0417EC31C71585824269522EC8E9 36320 —-a-w- C:\Windows\SysWOW64\wups.dll

    2014-08-24 11:47:39 F419D738BD2AE58D9DF2F9FEB5F43842 33792 —-a-w- C:\Windows\SysWOW64\wuapp.exe

    2014-08-24 11:47:39 5AA2CAD923E9E647276A61387E83DDD0 179656 —-a-w- C:\Windows\SysWOW64\wuwebv.dll

    2014-08-14 19:53:53 AF6655214DEBB2C8446DE843A02AAEBA 99480 —-a-w- C:\Windows\SysWOW64\infocardapi.dll

    2014-08-14 19:53:53 8D466B36076BCD7997838C0DDB69764C 619672 —-a-w- C:\Windows\SysWOW64\icardagt.exe

    2014-08-14 19:53:38 370FC4421ADE62FC89AC93B345570388 8856 —-a-w- C:\Windows\SysWOW64\icardres.dll

    2014-08-14 19:52:00 28A8B99DE70F376B18709E6B07D6A352 35480 —-a-w- C:\Windows\SysWOW64\TsWpfWrp.exe

    2014-08-14 15:05:48 D08819FEE0CDB8A8A58E2B34D05E7A11 2048 —-a-w- C:\Windows\SysWOW64\tzres.dll

    2014-08-14 15:05:33 C212A43AA83A717AD38505F23ACDCB33 2363392 —-a-w- C:\Windows\SysWOW64\msi.dll

    2014-08-14 15:05:32 43CD23B65CBF04D6F8ACA984B0EF93FE 1805824 —-a-w- C:\Windows\SysWOW64\authui.dll

    2014-08-14 15:05:31 9DA1CCDBBF8136AC2383C2624CA8CD14 337408 —-a-w- C:\Windows\SysWOW64\msihnd.dll

    2014-08-14 15:05:23 0C2390376D95B0D27A6317F017CD58DC 311808 —-a-w- C:\Windows\SysWOW64\gdi32.dll

    2014-08-14 15:05:02 444EB30B1610A35FC99D62A91B2BCAA7 69632 —-a-w- C:\Windows\SysWOW64\mshtmled.dll

    2014-08-14 15:05:02 41A3A54603686FD437FA4E8EB95025F9 51200 —-a-w- C:\Windows\SysWOW64\ieetwproxystub.dll

    2014-08-14 15:05:01 478824EC0BCE9968C0DC787164B1753B 32768 —-a-w- C:\Windows\SysWOW64\iernonce.dll

    2014-08-14 15:05:01 24FA5F74D3B4BA62539DF87285BA934E 597504 —-a-w- C:\Windows\SysWOW64\jscript9diag.dll

    2014-08-14 15:05:00 FEE3E022B00A5165ED645E38C1E6C776 60416 —-a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

    2014-08-14 15:05:00 6D017C0E499443ACDE3D9B5DCD753F32 1169920 —-a-w- C:\Windows\SysWOW64\urlmon.dll

    2014-08-14 15:04:58 E9B28B60C0272E2E1E462E6FB38E6B55 367104 —-a-w- C:\Windows\SysWOW64\dxtmsft.dll

    2014-08-14 15:04:58 8453DDF167CE2986AA4AB04BC6824925 17524224 —-a-w- C:\Windows\SysWOW64\mshtml.dll

    2014-08-14 15:04:58 1A05CFA45B6AEBFCCC835DCF68CBD1D0 526336 —-a-w- C:\Windows\SysWOW64\msfeeds.dll

    2014-08-14 15:04:56 E70C00791A18866BB23B3A652E3390A0 2001920 —-a-w- C:\Windows\SysWOW64\inetcpl.cpl

    2014-08-14 15:04:56 7B051C4A70F23A84A09366999FE63CBD 307384 —-a-w- C:\Windows\SysWOW64\iedkcs32.dll

    2014-08-14 15:04:56 4D0E91438CE181AF94C653B3BBE3C65A 61952 —-a-w- C:\Windows\SysWOW64\iesetup.dll

    2014-08-14 15:04:55 FF4A917DD7C387BD2715A5F67307FED1 2184704 —-a-w- C:\Windows\SysWOW64\iertutil.dll

    2014-08-14 15:04:54 36B67392AFB8901CC442EA988AD4603D 43008 —-a-w- C:\Windows\SysWOW64\jsproxy.dll

    2014-08-14 15:04:53 239575F9EA0D227516843EEE8B7342CA 239616 —-a-w- C:\Windows\SysWOW64\dxtrans.dll

    2014-08-14 15:04:52 F48A1A114382AB4EF8000E1943E6CF1F 438784 —-a-w- C:\Windows\SysWOW64\ieui.dll

    2014-08-14 15:04:52 90FF511B751A0327D07C4073760F1578 11772928 —-a-w- C:\Windows\SysWOW64\ieframe.dll

    2014-08-14 15:04:51 E8D46F442AB53A52BDBB3EA0C51BDABD 2724864 —-a-w- C:\Windows\SysWOW64\mshtml.tlb

    2014-08-14 15:04:49 87C2B5010779DF6BE4732751C5DB5D64 112128 —-a-w- C:\Windows\SysWOW64\ieUnatt.exe

    2014-08-14 15:04:49 7C1BFC2ABE297BCA1A7BA77A8292C088 4204032 —-a-w- C:\Windows\SysWOW64\jscript9.dll

    2014-08-14 15:04:49 49FFD37673BD20279A8BF27CC20040B3 1068032 —-a-w- C:\Windows\SysWOW64\mshtmlmedia.dll

    2014-08-14 15:04:48 B945BAA81B4805AD6BDDF4D026DCFB47 1792512 —-a-w- C:\Windows\SysWOW64\wininet.dll

    2014-08-14 15:04:48 9D16B568E318F49535AD72539C9997C2 455168 —-a-w- C:\Windows\SysWOW64\vbscript.dll

    2014-08-14 15:04:48 18A3154606E3F8945956948A4E708007 704512 —-a-w- C:\Windows\SysWOW64\ieapfltr.dll

    2014-08-14 15:04:46 B91AA3BC8083E66925FAE29FDA485CEA 164864 —-a-w- C:\Windows\SysWOW64\msrating.dll

    2014-08-14 15:04:46 272420427EB96EA052C719AA796C09F2 61952 —-a-w- C:\Windows\SysWOW64\MshtmlDac.dll

    2014-08-14 15:04:05 D8BED6BA298DBAAF6F3D746739FCD333 664064 —-a-w- C:\Windows\SysWOW64\rpcrt4.dll

    ====== C:\Windows\SysWOW64\drivers =====

    ====== C:\Windows\Sysnative =====

    2014-08-24 11:48:30 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 —-a-w- C:\Windows\Sysnative\wuauclt.exe

    2014-08-24 11:48:30 E76F105AD039B9E4DA9ECE839298C4A2 44512 —-a-w- C:\Windows\Sysnative\wups2.dll

    2014-08-24 11:48:29 6335F8B4B89F002A3801473C1A799237 2620928 —-a-w- C:\Windows\Sysnative\wucltux.dll

    2014-08-24 11:48:29 61FF576450CCC80564B850BC3FB6713A 2477536 —-a-w- C:\Windows\Sysnative\wuaueng.dll

    2014-08-24 11:48:05 7EC6617005F76714C7E16605E7A8AB06 38880 —-a-w- C:\Windows\Sysnative\wups.dll

    2014-08-24 11:48:05 1180B5ADFB507258DA10F51B46681A33 97792 —-a-w- C:\Windows\Sysnative\wudriver.dll

    2014-08-24 11:48:04 0DB2758CF1BAFE22E0970FDA0785B74C 700384 —-a-w- C:\Windows\Sysnative\wuapi.dll

    2014-08-24 11:47:38 45D4BDEA136E72E75CF008D3C38D949A 198600 —-a-w- C:\Windows\Sysnative\wuwebv.dll

    2014-08-24 11:47:38 29FE783F75362AD6D2D9C0555BA83BD2 36864 —-a-w- C:\Windows\Sysnative\wuapp.exe

    2014-08-14 19:53:53 9C44FB5B3A8A192FCE1103AC9BA4E576 171160 —-a-w- C:\Windows\Sysnative\infocardapi.dll

    2014-08-14 19:53:53 8A08BB0D12BE40DC09632CD5D04A48A0 1389208 —-a-w- C:\Windows\Sysnative\icardagt.exe

    2014-08-14 19:53:38 EE415EC9288182BCFB6E6896A376EA53 8856 —-a-w- C:\Windows\Sysnative\icardres.dll

    2014-08-14 19:52:00 E4312738B500577BABC232A49F67A67D 35480 —-a-w- C:\Windows\Sysnative\TsWpfWrp.exe

    2014-08-14 15:05:48 EBFEF789E32279C2ED7C81260B186AD7 2048 —-a-w- C:\Windows\Sysnative\tzres.dll

    2014-08-14 15:05:34 3B39F9D51E4D8BAABDA6518955B58C13 3241984 —-a-w- C:\Windows\Sysnative\msi.dll

    2014-08-14 15:05:33 5DFFC12BF7DB53BDB401804A3C3A475E 1941504 —-a-w- C:\Windows\Sysnative\authui.dll

    2014-08-14 15:05:32 B0F8CCA08DBC392442E27377B98DD0CD 112064 —-a-w- C:\Windows\Sysnative\consent.exe

    2014-08-14 15:05:31 A6D0DC3B30F6BB1421DAA92537424822 504320 —-a-w- C:\Windows\Sysnative\msihnd.dll

    2014-08-14 15:05:24 AF00649558BFB211A9091F4A6E7B4A0C 3163648 —-a-w- C:\Windows\Sysnative\win32k.sys

    2014-08-14 15:05:23 9E19DEED6FEB140DA3764C32F2DC4849 404480 —-a-w- C:\Windows\Sysnative\gdi32.dll

    2014-08-14 15:04:59 08C5E6033786C1E41B63FD38CA22917A 48640 —-a-w- C:\Windows\Sysnative\ieetwproxystub.dll

    2014-08-14 15:04:58 19FA60D3AE1804A559306DE931A5B415 72704 —-a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll

    2014-08-14 15:04:57 6598F2A876E13B6FFA5AE418D41CE7D6 2724864 —-a-w- C:\Windows\Sysnative\mshtml.tlb

    2014-08-14 15:04:56 5574B09C4676E8E2EBE125C18BDF9FBF 33792 —-a-w- C:\Windows\Sysnative\iernonce.dll

    2014-08-14 15:04:56 52D2151908C2A6388B6561A373488F6F 692736 —-a-w- C:\Windows\Sysnative\ie4uinit.exe

    2014-08-14 15:04:55 FE7D99399F7761AA2695A7B1AD30DAAF 1431040 —-a-w- C:\Windows\Sysnative\urlmon.dll

    2014-08-14 15:04:55 13A852B606F3644A7A35EDD99F74A685 4096 —-a-w- C:\Windows\Sysnative\ieetwcollectorres.dll

    2014-08-14 15:04:54 FCF5C8BB9AFD8D15B324B702F9B186B7 111616 —-a-w- C:\Windows\Sysnative\ieetwcollector.exe

    2014-08-14 15:04:53 F00D0AE7648CA45C6434E2885485BE0B 452096 —-a-w- C:\Windows\Sysnative\dxtmsft.dll

    2014-08-14 15:04:52 1FD1F16C35946BA28FDEB40F18B7729D 631808 —-a-w- C:\Windows\Sysnative\msfeeds.dll

    2014-08-14 15:04:51 DF485877CCE229776E6B8BB9116B67FE 66048 —-a-w- C:\Windows\Sysnative\iesetup.dll

    2014-08-14 15:04:51 9C9FE69902CD45A7D9AB1F0C4EDE646C 348856 —-a-w- C:\Windows\Sysnative\iedkcs32.dll

    2014-08-14 15:04:50 39A85C005BCDEEF4092646EBBC2526AA 2087936 —-a-w- C:\Windows\Sysnative\inetcpl.cpl

    2014-08-14 15:04:49 DB382D89D8004F40BD2C55BAE6A15B30 2774528 —-a-w- C:\Windows\Sysnative\iertutil.dll

    2014-08-14 15:04:47 FCC86367BB0FB6DEB6614885CBE74FD5 51200 —-a-w- C:\Windows\Sysnative\jsproxy.dll

    2014-08-14 15:04:45 1DE8B71A1C7D8943034188556AF50B07 292864 —-a-w- C:\Windows\Sysnative\dxtrans.dll

    2014-08-14 15:04:44 72B7D166D1B0D353330A34FDED3F5AA6 598016 —-a-w- C:\Windows\Sysnative\ieui.dll

    2014-08-14 15:04:44 1B26610C1659EF54ED000233FB96F20C 13547008 —-a-w- C:\Windows\Sysnative\ieframe.dll

    2014-08-14 15:04:43 2639E152D246F2A651F09764807CA153 85504 —-a-w- C:\Windows\Sysnative\mshtmled.dll

    2014-08-14 15:04:43 1F02286D001AB5EA5719540C587224FE 1249280 —-a-w- C:\Windows\Sysnative\mshtmlmedia.dll

    2014-08-14 15:04:43 1EEF9FE30DBE458A89B5F7A16FC68397 139264 —-a-w- C:\Windows\Sysnative\ieUnatt.exe

    2014-08-14 15:04:42 920F690FC7424DE71888AA2E46E917EA 758272 —-a-w- C:\Windows\Sysnative\jscript9diag.dll

    2014-08-14 15:04:42 472C409F9B0FF67C1015F511C73E1889 5824512 —-a-w- C:\Windows\Sysnative\jscript9.dll

    2014-08-14 15:04:41 BAC44396088ECC1C9021ED3E3345337C 846336 —-a-w- C:\Windows\Sysnative\ieapfltr.dll

    2014-08-14 15:04:41 6ED6DA2A04F8F0C9BDAD647284BAEFB6 548352 —-a-w- C:\Windows\Sysnative\vbscript.dll

    2014-08-14 15:04:40 8E71A5CB5312B8392D4DA4CA37BB5868 2266624 —-a-w- C:\Windows\Sysnative\wininet.dll

    2014-08-14 15:04:39 EDF22FBAE75ACB48BF51D099C6808B39 195584 —-a-w- C:\Windows\Sysnative\msrating.dll

    2014-08-14 15:04:39 C02C78DE9BB4E68F6C78B1588ADD6ADC 83968 —-a-w- C:\Windows\Sysnative\MshtmlDac.dll

    2014-08-14 15:04:38 ECA387DCD57F683C52171C766CF400F0 23645696 —-a-w- C:\Windows\Sysnative\mshtml.dll

    2014-08-14 15:04:38 1C660588CFFB3A17BCF0F6B4779BF985 940032 —-a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe

    2014-08-14 15:04:06 F947D57534E01E3CA597BCF2AD8AE65B 1216000 —-a-w- C:\Windows\Sysnative\rpcrt4.dll

    ====== C:\Windows\Sysnative\drivers =====

    2014-08-24 06:34:18 8A50D5304E6AE48664CF5838EC32F647 122584 —-a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys

    2014-08-24 06:34:01 F92B0E478C0FAA6D6661E6E977247E60 25816 —-a-w- C:\Windows\Sysnative\drivers\mbam.sys

    2014-08-24 06:34:01 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 —-a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys

    2014-08-24 06:34:01 15E8ABC06843672955CE26A009533BAD 63704 —-a-w- C:\Windows\Sysnative\drivers\mwac.sys

    2014-08-14 15:05:25 87CE5C8965E101CCCED1F4675557E868 985536 —-a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys

    2014-08-04 12:11:22 7688C67BDF55500C1FDC8291230C397D 50464 —-a-w- C:\Windows\Sysnative\drivers\avgtpx64.sys

    ====== C:\Windows\Tasks ======

    2014-08-23 14:48:54 CB5658F08AF5B6BA1B5F20FBA7842C00 3150 —-a-w- C:\Windows\Sysnative\Tasks\{38FFC78A-DB2E-4343-80AC-4079C6AE42C7}

    ====== C:\Windows\Temp ======

    ======= C:\Program Files =====

    ======= C:\PROGRA~2 =====

    2014-08-04 11:30:50 ——– d—–w- C:\PROGRA~2\AVG Web TuneUp

    ======= C: =====

    2014-07-28 13:12:37 418AB7663A1AD02A4D93153F0FB7C31C 967 —-a-w- C:\DelFix.txt

    ====== C:\Users\Erika\AppData\Roaming ======

    2014-08-24 14:21:05 ——– d—–w- C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps

    2014-08-24 09:07:07 ——– d—–w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp

    2014-08-24 09:07:07 ——– d—–w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp

    2014-08-24 09:07:07 ——– d—–w- C:\Users\Default\AppData\Local\Temp

    2014-08-24 09:07:07 ——– d—–w- C:\Users\Default User\AppData\Local\Temp

    2014-08-24 09:07:06 ——– d—–w- C:\Users\Erika\AppData\Local\Temp

    2014-08-23 13:48:56 ——– d—–w- C:\Users\Erika\AppData\Roaming\uTorrent

    2014-08-04 12:11:45 ——– d—–w- C:\Users\Erika\AppData\Local\CrashDumps

    2014-08-04 11:31:34 ——– d—–w- C:\Users\Erika\AppData\Locallow\AVG Web TuneUp

    2014-08-04 11:30:51 ——– d—–w- C:\Windows\sysWoW64\config\systemprofile\AppData\Locallow\AVG Web TuneUp

    ====== C:\Users\Erika ======

    2014-08-26 12:30:00 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Erika\Desktop\mbam-setup-2.0.2.1012.exe

    2014-08-23 15:48:50 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Erika\Downloads\mbam-setup-2.0.2.1012.exe

    2014-08-06 08:13:11 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

    2014-08-04 11:30:51 ——– d—–w- C:\ProgramData\AVG Web TuneUp

    ====== C: exe-files ==

    2014-08-26 12:30:00 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Erika\Desktop\mbam-setup-2.0.2.1012.exe

    2014-08-25 12:33:25 2A502E37CA738539237C057C2D78DB90 544 —-a-w- C:\$RECYCLE.BIN\S-1-5-21-1153977891-1869991665-2431096691-1000\$IJWBFBQ.exe

    2014-08-24 14:44:12 70810FBD83F736F72E8F7510E0EA7995 1325536577 —-a-w- C:\Users\Erika\Downloads\Garmin\OSM 2014 najaar voor basecamp.exe

    2014-08-24 09:26:22 D437BFC116E65280D79C9F43CA2F7781 4703864 —-a-w- C:\Users\Erika\Downloads\Garmin\GarminMapUpdater.exe

    2014-08-23 15:48:50 E90BF9E1562F40140161573B79CD5720 17292760 —-a-w- C:\Users\Erika\Downloads\mbam-setup-2.0.2.1012.exe

    2014-08-23 13:52:14 CD061DDA01887868A5F44EE7BEBCCFDF 1936208 —-a-w- C:\Users\Erika\AppData\Roaming\uTorrent\updates\3.4.2_33080.exe

    === C: other files ==

    2014-08-24 06:34:18 8A50D5304E6AE48664CF5838EC32F647 122584 —-a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys

    2014-08-24 06:34:01 F92B0E478C0FAA6D6661E6E977247E60 25816 —-a-w- C:\Windows\System32\drivers\mbam.sys

    2014-08-24 06:34:01 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 —-a-w- C:\Windows\System32\drivers\mbamchameleon.sys

    2014-08-24 06:34:01 15E8ABC06843672955CE26A009533BAD 63704 —-a-w- C:\Windows\System32\drivers\mwac.sys

    ==== Startup Registry Enabled ======================

    “GarminExpressTrayApp”=“C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe”

    “Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /autoRun”

    “Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /autoRun”

    “HP Photosmart 6510 series (NET)”=“C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN19F411SS05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1”

    “GarminExpressTrayApp”=“C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe”

    “TNS NIPO Clicks”=“C:\Users\Erika\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe”

    “AVG-Secure-Search-Update_1213b”=“C:\Users\Erika\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=8da9f4b0987847d392c69128c064797a-b1ab53bf69ee3d56e0b68fecf6a63d5566bf3245 /CMPID=1213b”

    “GarminExpressTrayApp”=“C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe”

    “SPReview”=“C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601”

    “mctadmin”=“C:\Windows\System32\mctadmin.exe”

    “mctadmin”=“C:\Windows\System32\mctadmin.exe”

    “SPReview”=“C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601”

    “hpsysdrv”=“c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe”

    “IAStorIcon”=“C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe”

    “StartCCC”=“C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun ”

    “SwitchBoard”=“C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe”

    “AdobeCS6ServiceManager”=“C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin”

    “Adobe ARM”=“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

    “APSDaemon”=“C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”

    “QuickTime Task”=“C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime”

    “Adobe Creative Cloud”=“C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe –showwindow=false –onOSstartup=true”

    “AVG_UI”=“C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY”

    “SunJavaUpdateSched”=“C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”

    “HP Photosmart 6510 series (NET)”=“C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe -deviceID CN19F411SS05QB:NW -scfn HP Photosmart 6510 series (NET) -AutoStart 1”

    “GarminExpressTrayApp”=“C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe”

    “TNS NIPO Clicks”=“C:\Users\Erika\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe”

    “AVG-Secure-Search-Update_1213b”=“C:\Users\Erika\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=8da9f4b0987847d392c69128c064797a-b1ab53bf69ee3d56e0b68fecf6a63d5566bf3245 /CMPID=1213b”

    ==== Startup Registry Enabled x64 ======================

    “AdobeAAMUpdater-1.0”=“C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe”

    “Logitech Download Assistant”=“C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch”

    “EvtMgr6”=“C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming”

    “NCPluginUpdater”=“C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update”

    ==== Startup Registry Disabled ======================

    “HP Software Update”=“C:\\Program Files (x86)\\HP\\HP Software Update\\HPWuSchd2.exe”

    “Adobe ARM”=“\”C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\“”

    “HP Remote Solution”=“C:\\Program Files (x86)\\Hewlett-Packard\\HP Remote Solution\\HP_Remote_Solution.exe”

    “SunJavaUpdateSched”=“\”C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\“”

    ==== Startup Registry Disabled x64 ======================

    “key”=“SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run”

    “item”=“Easybits Recovery”

    “hkey”=“HKLM”

    “command”=“C:\\Program Files (x86)\\EasyBits For Kids\\ezRecover.exe”

    “key”=“SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run”

    “item”=“RoxWatchTray”

    “hkey”=“HKLM”

    “command”=“\”C:\\Program Files (x86)\\Common Files\\Roxio Shared\\10.0\\SharedCOM\\RoxWatchTray10.exe\“”

    “key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”

    “item”=“SmartMenu”

    “hkey”=“HKLM”

    “command”=“C:\\Program Files\\Hewlett-Packard\\HP MediaSmart\\SmartMenu.exe /background”

    ==== Startup Folders ======================

    2013-04-16 07:15:59 2001 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk

    2013-04-16 08:20:41 1349 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Spyder3Utility.lnk

    ==== Task Scheduler Jobs ======================

    C:\Windows\tasks\Adobe Flash Player Updater.job –a——

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a——

    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job –a——

    ==== Other Scheduled Tasks ======================

    “C:\Windows\SysNative\tasks\Adobe Flash Player Updater”

    “C:\Windows\SysNative\tasks\Adobe-online actualiseringsprogramma”

    “C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Erika-PC-Erika”

    “C:\Windows\SysNative\tasks\CLMLSvc”

    “C:\Windows\SysNative\tasks\DVDAgent”

    “C:\Windows\SysNative\tasks\ExtendedServicePlan”

    “C:\Windows\SysNative\tasks\GarminUpdaterTask”

    “C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore”

    “C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA”

    “C:\Windows\SysNative\tasks\HP-Online updateprogramma”

    “C:\Windows\SysNative\tasks\HPCustParticipation HP Photosmart 6510 series”

    “C:\Windows\SysNative\tasks\Java Update Scheduler”

    “C:\Windows\SysNative\tasks\RecoveryCDWin7”

    “C:\Windows\SysNative\tasks\Registration”

    “C:\Windows\SysNative\tasks\ServicePlan”

    “C:\Windows\SysNative\tasks\SidebarExecute”

    “C:\Windows\SysNative\tasks\SoftwareInformerService”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN19F411SS05QB”

    “C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan”

    ==== Folders in C:\PROGRA~3 0-6 Months Old ======================

    2014-03-16 14:52:30 ——– d—–w- C:\PROGRA~3\{18165758-115C-4DC0-9EC2-FF89F725767F}

    2014-05-20 17:56:52 ——– d—–w- C:\PROGRA~3\AVG2014

    2014-07-22 13:38:37 ——– d—–w- C:\PROGRA~3\Malwarebytes

    2014-08-04 11:30:51 ——– d—–w- C:\PROGRA~3\AVG Web TuneUp

    ==== Firefox Extensions Registry ======================

    “{F003DA68-8256-4b37-A6C4-350FA04494DF}”=“C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt”

    ==== Firefox Extensions ======================

    ProfilePath: C:\Users\Erika\AppData\Roaming\Mozilla\Firefox\Profiles\pp5a1fpf.default

    - TNS NIPO Clicks - C:\Users\Erika\AppData\Local\TNS NIPO Clicks\plugins\firefox

    - Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt

    - TNS NIPO Clicks - %ProfilePath%\extensions\addon@nipobase.wakoopa.com

    - Logitech - %ProfilePath%\extensions\DeviceDetection@logitech.com

    - Garmin Communicator - %ProfilePath%\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

    - Undetermined - %ProfilePath%\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}-trash

    - Site Advisor - %ProfilePath%\extensions\{6d0f26ba-45b8-4871-9c07-43ab341d5b73}

    - HP Detect - %ProfilePath%\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}

    - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

    AppDir: C:\Program Files (x86)\Mozilla Firefox

    - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

    ==== Firefox Plugins ======================

    Profilepath: C:\Users\Erika\AppData\Roaming\Mozilla\Firefox\Profiles\pp5a1fpf.default

    9EE20E6E2E3F94714D44F739B9A228F4 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll - Shockwave Flash

    4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash

    E37EAD09D28AE19D8A39B6A95F47513A - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll - Shockwave for Director / Shockwave for Director

    DFD5A8C94118C4E85B33245C2DDB553A - C:\Users\Erika\AppData\Roaming\Mozilla\Firefox\Profiles\pp5a1fpf.default\extensions\DeviceDetection@logitech.com\plugins\npLogitechDeviceDetection.dll - Logitech Device Detection

    FC5866F7793AF2CBCD425CC4B8D32A9E - C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin

    ==== Set IE to Default ======================

    Old Values:

    “Start Page”=“http://go.microsoft.com/fwlink/?LinkId=69157”

    “Search Page”=“http://www.google.com”

    No DefaultScope Set For HKCU

    New Values:

    “Search Page”=“http://go.microsoft.com/fwlink/?LinkId=54896”

    “Start Page”=“http://go.microsoft.com/fwlink/?LinkId=69157”

    “DefaultScope”=“{012E1000-F331-11DB-8314-0800200C9A66}”

    ==== All HKCU SearchScopes ======================

    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

    {012E1000-F331-11DB-8314-0800200C9A66} Google Url=“http://www.google.com/search?q={searchTerms}”

    {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC”

    ==== HijackThis Entries ======================

    F2 - REG:system.ini: UserInit=userinit.exe,

    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll

    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

    O2 - BHO: TNS NIPO Clicks - {FB4D29C1-82DE-4b80-8BB0-A7CDDDCD2773} - C:\Users\Erika\AppData\Local\Wakoopa Shared\WakoopaBHO.dll

    O4 - HKLM\..\Run: c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe

    O4 - HKLM\..\Run: C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

    O4 - HKLM\..\Run: “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun

    O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

    O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe” -launchedbylogin

    O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

    O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”

    O4 - HKLM\..\Run: “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime

    O4 - HKLM\..\Run: “C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe” –showwindow=false –onOSstartup=true

    O4 - HKLM\..\Run: “C:\Program Files (x86)\AVG\AVG2014\avgui.exe” /TRAYONLY

    O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”

    O4 - HKCU\..\Run: “C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe” -deviceID “CN19F411SS05QB:NW” -scfn “HP Photosmart 6510 series (NET)” -AutoStart 1

    O4 - HKCU\..\Run: “C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe”

    O4 - HKCU\..\Run: C:\Users\Erika\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe

    O4 - HKCU\..\Run: C:\Users\Erika\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=8da9f4b0987847d392c69128c064797a-b1ab53bf69ee3d56e0b68fecf6a63d5566bf3245 /CMPID=1213b

    O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)

    O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)

    O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)

    O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)

    O4 - HKUS\S-1-5-18\..\Run: “C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe” (User ‘SYSTEM’)

    O4 - HKUS\S-1-5-18\..\RunOnce: “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“http://go.microsoft.com/fwlink/?LinkID=122915” /build:7601 (User ‘SYSTEM’)

    O4 - HKUS\.DEFAULT\..\Run: “C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe” (User ‘Default user’)

    O4 - HKUS\.DEFAULT\..\RunOnce: “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“http://go.microsoft.com/fwlink/?LinkID=122915” /build:7601 (User ‘Default user’)

    O4 - Global Startup: Sitecom Wireless Utility.lnk = C:\Program Files (x86)\Sitecom\Common\RaUI.exe

    O4 - Global Startup: Spyder3Utility.lnk = C:\Program Files (x86)\Datacolor\Spyder3Elite\Utility\Spyder3Utility.exe

    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe

    O9 - Extra ‘Tools’ menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe

    O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra ‘Tools’ menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

    O11 - Options group: Accelerated graphics

    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

    O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

    O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

    O23 - Service: CodecIconProgram.exe - Unknown owner - C:\Users\Erika\AppData\Local\CodecIconProgram\CodecIconProgram.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: ExportRootSamba - Unknown owner - C:\Windows\SysWOW64\ExportRootSamba\ExportRootSamba.exe (file missing)

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

    O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe

    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

    O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe

    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

    O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\Sitecom\Common\RegistryWriter.exe

    O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe

    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe

    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe

    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe

    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe

    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe

    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    ==== Empty IE Cache ======================

    C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\Erika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Users\Erika\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

    C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

    ==== Empty FireFox Cache ======================

    C:\Users\Erika\AppData\Local\Mozilla\Firefox\Profiles\pp5a1fpf.default\Cache emptied successfully

    ==== Empty Chrome Cache ======================

    No Chrome Cache found

    ==== Empty All Flash Cache ======================

    Flash Cache Emptied Successfully

    ==== Empty All Java Cache ======================

    Java Cache cleared successfully

    ==== C:\zoek_backup content ======================

    C:\zoek_backup (files=0 folders=0 0 bytes)

    ==== Empty Temp Folders ======================

    C:\Users\Default\AppData\Local\Temp emptied successfully

    C:\Users\Default User\AppData\Local\Temp emptied successfully

    C:\Users\Erika\AppData\Local\Temp will be emptied at reboot

    C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

    C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

    C:\Windows\Temp will be emptied at reboot

    ==== After Reboot ======================

    ==== Empty Temp Folders ======================

    C:\Windows\Temp successfully emptied

    C:\Users\Erika\AppData\Local\Temp successfully emptied

    ==== Empty Recycle Bin ======================

    C:\$RECYCLE.BIN successfully emptied

    ==== EOF on di 26-08-2014 at 16:02:12,64 ======================

  • Anonymous avatar

    Ben

    Hallo,

    Doe het volgende: https://support.mozilla.org/nl/kb/firefox-herinitialiseren-meeste-problemen-verhelpen

    Vertel of dit heeft geholpen?

  • Anonymous avatar

    Rikje

    Hoi Ben

    Het probleem lijkt opgelost.

    Hoewel de firefox er nu wat vreemd uitziet (alle menubalken zijn verdwenen maar dat zal ik wel op de één of andere manier kunnen terugzetten)

    Rikje

  • Anonymous avatar

    Ben

    Hallo,

    Firefox moet je nu zelf weer aanpassen, maar kijk uit wat je allemaal download ervoor.

    Zoek.exe mag je weer verwijderen.

  • Anonymous avatar

    Rikje

    Hoi Ben,

    Ik heb niets anders gedaan dat de werkbalk neerzetten en een klein achtergrondje gepakt vanuit firefox zelf.

    Verder mijn eigen startpagina (google) weer neergezet.

    Ben blij dat het weer is opgelost.

    Bedankt voor je hulp.

    Rikje

  • Anonymous avatar

    Ben

    Hallo,

    Bedankt en graag gedaan.

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.