Welkom op ons forum!

Heb je een computerprobleem of een algemene vraag? Registreer een account op het forum, wij helpen je dan graag verder om het probleem vakkundig op te lossen.

Gebruikersavatar
danksnel
Lid
Berichten: 11
Lid geworden op: 21 nov 2007 19:09

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 16:10:41, on 30-6-2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)


Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
C:\Windows\SysWOW64\DllHost.exe
C:\Minipak\Minipak for Windows\Minipak.exe
C:\Users\Theo\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Theo\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Theo\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Theo\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\IE\2M0QTX60\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seniorweb.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - Startup: Inktwaarschuwingen controleren - HP Deskjet 3050 J610 series.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10907 bytes
Gebruikersavatar
PeterJ
Moderator
Berichten: 3838
Lid geworden op: 22 okt 2007 23:22

Welkom,

Welke problemen ondervindt je ?
Member of UNITE (Unified Network of Instructors and Trusted Eliminators.)
Tevreden met de geboden hulp, overweeg een vrijblijvende donatie of plaats een bedankje. Hoe je dat doet lees je hier.
Gebruikersavatar
danksnel
Lid
Berichten: 11
Lid geworden op: 21 nov 2007 19:09

In principe geen problemen, het inloggen op internet webbrowser IE (laatste versie) op een Windows 8.1 PC desktop verloopt traag !
Gebruikersavatar
PeterJ
Moderator
Berichten: 3838
Lid geworden op: 22 okt 2007 23:22

We gaan kijken met een andere tool.

Download Afbeelding Zoek.exe naar het bureaublad.
  • Wanneer je internet browser of virusscanner een melding geeft dat dit bestand onveilig zou zijn kan je dat negeren, het is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Rechtsklik op Zoek.exe en klik op Als administrator uitvoeren.
  • Wacht geduldig totdat Zoek verschijnt, dit zal maximaal 1 minuut duren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

    Code: Selecteer alles

    standardsearch;
    installedprogs;
    emptyjava;
    emptyflash;
    emptyiecache;
    emptyffcache;
    emptychrcache;
    torpigcheck;
    
  • Let op: Sluit nu eerst alle webbrowsers.
  • Klik nu op de knop "Run Script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start Zoek.exe dan opnieuw en klik op zoek-results.log, de log verschijnt dan alsnog.
  • Sluit het geopende logje.
  • Post het bestand c:\zoek-results.log als bijlage in je volgend bericht.
Member of UNITE (Unified Network of Instructors and Trusted Eliminators.)
Tevreden met de geboden hulp, overweeg een vrijblijvende donatie of plaats een bedankje. Hoe je dat doet lees je hier.
Gebruikersavatar
danksnel
Lid
Berichten: 11
Lid geworden op: 21 nov 2007 19:09

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Theo on vr 08-07-2016 at 21:57:50,01.
Microsoft Windows 8.1 Pro 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Theo\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

8-7-2016 21:58:34 Zoek.exe System Restore Point Created Successfully.

==== Torpig Check ======================

HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll


==== Installed Programs ======================

Avast Free Antivirus
CCleaner
D3DX10
Definition Update for Microsoft Office 2013 (KB3115159) 32-Bit Edition
Google Chrome
Google Drive
Google Toolbar for Internet Explorer
Google Update Helper
HP Deskjet 3050 J610 series Basissoftware van het apparaat
HP Deskjet 3050 J610 series Productverbeteringsonderzoek
HP Support Solutions Framework
HP Update
Image Resizer for Windows
Image Resizer for Windows (64 bit)
Java 8 Update 91
Java Auto Updater
Junk Mail filter update
KLS Mail Backup 4.0.0.2
Microsoft Access MUI (Dutch) 2013
Microsoft Application Error Reporting
Microsoft DCF MUI (Dutch) 2013
Microsoft Excel MUI (Dutch) 2013
Microsoft Groove MUI (Dutch) 2013
Microsoft InfoPath MUI (Dutch) 2013
Microsoft Lync MUI (Dutch) 2013
Microsoft Office 365 ProPlus - nl-nl
Microsoft Office 64-bit Components 2013
Microsoft Office Korrekturhilfen 2013 - Deutsch
Microsoft Office OSM MUI (Dutch) 2013
Microsoft Office OSM UX MUI (Dutch) 2013
Microsoft Office Professional Plus 2013
Microsoft Office Proofing (Dutch) 2013
Microsoft Office Proofing Tools 2013 - English
Microsoft Office Proofing Tools 2013 - Nederlands
Microsoft Office Shared 64-bit MUI (Dutch) 2013
Microsoft Office Shared MUI (Dutch) 2013
Microsoft OneDrive
Microsoft OneNote MUI (Dutch) 2013
Microsoft Outlook MUI (Dutch) 2013
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NLD
Microsoft Word MUI (Dutch) 2013
Movie Maker
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
NVIDIA-configuratiescherm 337.88
NVIDIA 3D Vision controllerstuurprogramma 337.88
NVIDIA 3D Vision stuurprogramma 337.88
NVIDIA GeForce Experience 2.0.1
NVIDIA Grafisch stuurprogramma 337.88
NVIDIA HD Audio-stuurprogramma 1.3.30.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX systeemsoftware 9.13.1220
NVIDIA ShadowPlay 12.4.67
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 12.4.67
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.23
Office 16 Click-to-Run Extensibility Component
Office 16 Click-to-Run Licensing Component
Office 16 Click-to-Run Localization Component
Outils de v‚rification linguistique 2013 de Microsoft Officeÿ- Fran‡ais
Philips Songbird
Photo Common
Photo Gallery
SafeZone Stable 1.48.2066.101
Security Update for Microsoft Office 2013 (KB3039746) 32-Bit Edition
Security Update for Microsoft Office 2013 (KB3039794) 32-Bit Edition
Security Update for Microsoft Office 2013 (KB3039798) 32-Bit Edition
Security Update for Microsoft Office 2013 (KB3054816) 32-Bit Edition
Security Update for Microsoft Office 2013 (KB3085572) 32-Bit Edition
Security Update for Microsoft Publisher 2013 (KB3085561) 32-Bit Edition
Security Update for Microsoft Word 2013 (KB3115173) 32-Bit Edition
SHIELD Streaming
Spotify
Taalpakket voor Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - NLD
TeamViewer 10
TomTom HOME
TomTom HOME Visual Studio Merge Modules
Update for Microsoft Access 2013 (KB3114735) 32-Bit Edition
Update for Microsoft Excel 2013 (KB3115162) 32-Bit Edition
Update for Microsoft InfoPath 2013 (KB3114818) 32-Bit Edition
Update for Microsoft InfoPath 2013 (KB3114946) 32-Bit Edition
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition
Update for Microsoft Office 2013 (KB2760371) 32-Bit Edition
Update for Microsoft Office 2013 (KB2883095) 32-Bit Edition
Update for Microsoft Office 2013 (KB2889863) 32-Bit Edition
Update for Microsoft Office 2013 (KB2899522) 32-Bit Edition
Update for Microsoft Office 2013 (KB2975869) 32-Bit Edition
Update for Microsoft Office 2013 (KB3023049) 32-Bit Edition
Update for Microsoft Office 2013 (KB3023052) 32-Bit Edition
Update for Microsoft Office 2013 (KB3023068) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039701) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039720) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039756) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039766) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039778) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039795) 32-Bit Edition
Update for Microsoft Office 2013 (KB3039800) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054783) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054785) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054805) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054819) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054856) 32-Bit Edition
Update for Microsoft Office 2013 (KB3054941) 32-Bit Edition
Update for Microsoft Office 2013 (KB3055007) 32-Bit Edition
Update for Microsoft Office 2013 (KB3085479) 32-Bit Edition
Update for Microsoft Office 2013 (KB3085486) 32-Bit Edition
Update for Microsoft Office 2013 (KB3085570) 32-Bit Edition
Update for Microsoft Office 2013 (KB3085577) 32-Bit Edition
Update for Microsoft Office 2013 (KB3085587) 32-Bit Edition
Update for Microsoft Office 2013 (KB3101487) 32-Bit Edition
Update for Microsoft Office 2013 (KB3114488) 32-Bit Edition
Update for Microsoft Office 2013 (KB3114499) 32-Bit Edition
Update for Microsoft Office 2013 (KB3114825) 32-Bit Edition
Update for Microsoft Office 2013 (KB3114835) 32-Bit Edition
Update for Microsoft Office 2013 (KB3115151) 32-Bit Edition
Update for Microsoft Office 2013 (KB3115154) 32-Bit Edition
Update for Microsoft Office 2013 (KB3115167) 32-Bit Edition
Update for Microsoft OneDrive for Business (KB3115039) 32-Bit Edition
Update for Microsoft OneDrive for Business (KB3115163) 32-Bit Edition
Update for Microsoft OneNote 2013 (KB3114725) 32-Bit Edition
Update for Microsoft Outlook 2013 (KB3115158) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2013 (KB3054854) 32-Bit Edition
Update for Microsoft PowerPoint 2013 (KB3115015) 32-Bit Edition
Update for Microsoft Project 2013 (KB3115164) 32-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition
Update for Microsoft Word 2013 (KB2878319) 32-Bit Edition
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources

==== Running Processes ======================

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Theo\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)
Memory (RAM): 2815 MB
CPU Info: AMD Athlon(tm) 64 X2 Dual Core Processor 4000+
CPU Speed: 1683,5 MHz
Sound Card: Luidsprekers (3- High Definitio |
Digitale audio (S/PDIF) (3- Hig |
Display Adapters: NVIDIA GeForce 210 | NVIDIA GeForce 210
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | 802.11n USB draadloze LAN-kaart | Realtek PCIe GBE Family-controller
CD / DVD Drives: 1x (I: | ) I: TSSTcorpCDDVDW SH-S202J
Ports: COM1 LPT1
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C: 240,6GB | D: 691,0GB | J: 931,5GB
Hard Disks - Free: C: 176,5GB | D: 689,7GB | J: 543,7GB
Manufacturer *: Phoenix Technologies, LTD
BIOS Info: AT/AT COMPATIBLE | 09/07/07 | ATI - 42302e31
Time Zone: West-Europa (standaardtijd)
Motherboard *: ASUSTeK Computer INC. M2A-VM
Country: Nederland
Language: NLD

==== System Specs (Software) ======================

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
Internet Explorer Version: 11.0.9600.18350
Google Chrome version: 51.0.2704.103
Sun Java version: 1.8.0_91 (32-bit)
Sun Java version: 1.8.0_91 (64-bit)

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Theo\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2016-06-17 09:44:06 CED8576CD925E83ABEB14F65EA205C29 675328 ----a-w- C:\Windows\Sysnative\drivers\srv2.sys
2016-06-17 09:44:06 69DC128CF54009A686E0F0C57E2BA0DC 416768 ----a-w- C:\Windows\Sysnative\drivers\srv.sys
2016-06-17 09:44:06 4396587119D8F4B72561ED24666E7567 243712 ----a-w- C:\Windows\Sysnative\drivers\srvnet.sys
2016-06-17 09:44:05 38BED40B100C6A844C3DB1AEE2F0C6CF 178008 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2016-06-17 09:44:05 1F20A2F59B7F979B39CBFA602E0D1F8E 563016 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2016-06-17 09:41:24 9DC17B7D9D84C37C102D379FCC7D4942 281088 ----a-w- C:\Windows\Sysnative\drivers\netbt.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2016-06-14 08:21:20 -------- d-----w- C:\Program Files\Microsoft Office
======= C:\PROGRA~2 =====
2016-06-21 12:10:52 -------- d-----w- C:\PROGRA~2\COMMON~1\DESIGNER
======= C: =====
====== C:\Users\Theo\AppData\Roaming ======
====== C:\Users\Theo ======
2016-06-21 18:19:44 -------- d-----w- C:\Windows\serviceprofiles\Localservice\winhttp
2016-06-20 12:37:31 -------- d-----w- C:\ProgramData\Google

====== C: exe-files ==
2016-07-08 17:59:18 DD69756E325627F58F8E4C563DEF6FC5 8218296 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\Packages\00008ec6\DAO.20922310.exe
2016-07-08 10:12:56 CEC55C5126CB154AE7B6AD481C3B49AA 346552 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2016-07-08 10:12:54 D5CBBE0617F51BF4DB38473EF19F5A2F 403896 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2016-07-08 07:34:51 A1E812597708FF9BB7C7504AA155BAF8 701640 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\Packages\00008ebb\CoProc update.20918348.exe
2016-07-06 18:55:14 AD3C9CF6217FAC3486718030F58947EC 8216448 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\Packages\00008eae\DAO.20914571.exe
2016-07-05 07:46:08 29BF0A9983985EB3F693270BEFD272A5 701488 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\Packages\00008e9c\CoProc update.20910296.exe
2016-07-05 07:45:38 FBD8D06AA0D51EE050F2B9789E85785F 8181720 ----a-w- C:\Users\Theo\AppData\Local\NVIDIA\NvBackend\Packages\00008e97\DAO.20908967.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1774501432-1409938829-1545598758-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"Spotify Web Helper"="C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"Philips Device Listener"="C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
"Spotify Web Helper"="C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"

==== Startup Folders ======================

2015-08-31 18:38:48 1974 ----a-w- C:\Users\Theo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Inktwaarschuwingen controleren - HP Deskjet 3050 J610 series.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [31-08-2015 22:17]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\6C:\ProgramC:FilesC:x86\Google\Update\GoogleUpdate.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 3050 J610 series" ["C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPCustPartic.exe"]
"C:\Windows\SysNative\tasks\SafeZone scheduled Autoupdate 1458724472" [C:\Program Files\AVAST Software\SZBrowser\launcher.exe]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{294B1CF3-2FBD-4904-8E9C-8A3D34D87E83}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\AVAST Software\Avast settings backup" [C:\Program Files\Common Files\AV\avast Antivirus\backup.exe]

==== Folders in C:\PROGRA~3 0-6 Months Old ======================

2016-01-29 13:11:01 -------- d-----w- C:\PROGRA~3\Samsung
2016-02-15 10:52:01 -------- d-----w- C:\PROGRA~3\ArcSoft
2016-03-04 12:46:03 -------- d-----w- C:\PROGRA~3\ParetoLogic
2016-05-06 11:16:54 -------- d-----w- C:\PROGRA~3\{F0489EF2-D393-4114-85BA-A94D71D89543}
2016-06-20 12:37:31 -------- d-----w- C:\PROGRA~3\Google
2016-06-21 12:19:51 -------- d-----w- C:\PROGRA~3\Panda Security

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [02-05-2016 13:44]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [02-05-2016 13:44]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Theo\AppData\Roaming\Philips-Songbird\Profiles\6sp23stg.default
- Artwork Extras - C:\Program Files (x86)\Philips\Philips Songbird\extensions\albumart@songbirdnest.com
- Suporte cpia de CDs - C:\Program Files (x86)\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com
- Concertos - C:\Program Files (x86)\Philips\Philips Songbird\extensions\concerts@songbirdnest.com
- AAC Decoding Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com
- H.264 Video Decoding Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewh264dec@songbirdnest.com
- MP3 Encoding Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com
- MPEG-4 Video Decoding Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmpeg4dec@songbirdnest.com
- MPEG-4 Video Encoding Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\ewmpeg4enc@songbirdnest.com
- File association - C:\Program Files (x86)\Philips\Philips Songbird\extensions\fileassociation@philips.com
- Philips GoGear Device Manager - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gogear@songbirdnest.com
- gonzo - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com
- Fornecedor da pesquisa de metadados Gracenote - C:\Program Files (x86)\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com
- Dutch nl Language Pack - C:\Program Files (x86)\Philips\Philips Songbird\extensions\langpack-nl@songbirdnest.com
- mashTape - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com
- MSC Device Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\msc@songbirdnest.com
- MTP Device Support - C:\Program Files (x86)\Philips\Philips Songbird\extensions\mtp@songbirdnest.com
- Philips addon manager - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com
- Philips Branding - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-branding@philips.com
- LikeMusic - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-likemusic@philips.com
- MinimizeToTray Plus for Philips Songbird - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com
- Philips auto msc-mtp switch - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com
- Philips Promotions - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-promotions@philips.com
- Philips Skin - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-skin@philips.com
- Philips UI - C:\Program Files (x86)\Philips\Philips Songbird\extensions\philips-ui@philips.com
- Purple Rain - C:\Program Files (x86)\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com
- Media Sharing - C:\Program Files (x86)\Philips\Philips Songbird\extensions\sharing@songbirdnest.com
- Windows Media Playback - C:\Program Files (x86)\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com

ProfilePath: C:\Users\Theo\AppData\Roaming\TomTom\HOME\Profiles\t6hvz1kx.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[02-05-2016 13:44]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02-05-2016 13:44]

Google Docs - Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Avast SafePrice - Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Avast Online Security - Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Web Store Payments - Theo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.seniorweb.nl/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchT ... urceid=ie7
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchT ... urceid=ie7
HKCU\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchT ... NF_nlNL655

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Theo\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - Startup: Inktwaarschuwingen controleren - HP Deskjet 3050 J610 series.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4M4TT6LY will be deleted at reboot
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\BBVOXKFD will be deleted at reboot
C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\XLO272XY will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Theo\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

folders=0 0 bytes)

==== After Reboot ======================

==== Deleting Files / Folders ======================

"C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4M4TT6LY" not found
"C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\BBVOXKFD" not found
"C:\Users\Theo\AppData\Local\Microsoft\Windows\INetCache\Low\IE\XLO272XY" not found

==== EOF on vr 08-07-2016 at 22:11:30,41 ======================
Gebruikersavatar
PeterJ
Moderator
Berichten: 3838
Lid geworden op: 22 okt 2007 23:22

Post aub alle logbestanden als bijlage, niet de logtekst in je bericht plakken.

Stap 1:
Start Zoek opnieuw:
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Rechtsklik op Zoek.exe en klik op Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

    Code: Selecteer alles

    C:\PROGRA~3\ParetoLogic;fs
    C:\PROGRA~3\Panda Security;fs
    iedefaults;
    autoclean;
    
  • Let op: Sluit nu eerst alle webbrowsers.
  • Klik nu op de knop "Run Script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht er geen logje verschijnen, start Zoek.exe dan opnieuw en klik op zoek-results.log, de log verschijnt dan alsnog.
  • Sluit het geopende logje.
  • Post het bestand c:\zoek-results.log als bijlage in je volgend bericht.
Stap 2:
Download Afbeelding AdwCleaner by Xplode naar je bureaublad.

Sluit alle openstaande programma's.
Rechtsklik op AdwCleaner en klik op 'Als administrator uitvoeren...'.

Klik op Scannen.
Na het scannen, klik op Verwijderen.
In het venster '- AdwCleaner – Programma's sluiten -' klik op OK.

Tijdens de opruim-actie zullen de snelkoppelingen verdwijnen, dit is normaal.
Na het verwijderen verschijnen 2 meldingen:
In het venster '- AdwCleaner – Informatie -' klik op OK.
In het venster '- AdwCleaner – Herstart benodigd -' klik op OK.

Nadat de computer herstart is, opent een logbestand.
Sluit het logbestand.
Post het bestand C:\AdwCleaner\AdwCleaner[C1].txt als bijlage in je volgend bericht.
Member of UNITE (Unified Network of Instructors and Trusted Eliminators.)
Tevreden met de geboden hulp, overweeg een vrijblijvende donatie of plaats een bedankje. Hoe je dat doet lees je hier.

Terug naar “Opgeloste virus- en overige malware topics”