tulp85

na het plaatsen van het log bestand heb ik niets meer vernomen beteknd dit dat dit probleem niet opgelost kan worden.

steve

laat me weten of ik ook de info spyware moet gebruiken

steve

ik heb eerst bleeping gebruikt

 

hier een log bestand

 

steve

 

ComboFix 15-03-14.01 - guy 14/03/2015  12:12:49.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.32.1043.18.3944.2293 [GMT 1:00]
Gestart vanuit: c:\users\guy\Desktop\ComboFix.exe
AV: Norman Security Suite Anti-Virus *Disabled/Updated* {F86A2F90-6CAD-D491-E1E0-29799D9EE21F}
FW: Norman Security Suite Firewall *Disabled* {C051AEB5-26C2-D5C9-CABF-804C634DA564}
SP: Norman Security Suite Anti-Spyware *Disabled/Updated* {430BCE74-4A97-DB1F-DB50-120BE619A8A2}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Nieuw herstelpunt werd aangemaakt
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\1351aeed\002fd141_70c0cc01\LenovoSolutionCenter.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\1613286b\004edb3b_70c0cc01\LenovoMusic.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\195ef373\005fbe2e_70c0cc01\SimpleTapAppStoreAddon.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\1c3ee39d\00abf929_70c0cc01\Chrome.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\1e7b4664\00dbe616_70c0cc01\WirelessApi.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\2381c26e\00975a4b_70c0cc01\Wikipedia.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\26aa4a31\0040b434_70c0cc01\Flickr.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\33e2bf94\000c6ef9_f5b3cc01\SugarSync.SimpleTapAddons.FileManager.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\458909cf\00893344_70c0cc01\LenovoTV.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\561d3c66\0021aa3a_70c0cc01\Kayak.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\5648da14\009dd222_70c0cc01\Biztree.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\5de2c7bd\00f47839_70c0cc01\Groupon.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\72663ad3\006a294a_70c0cc01\Skype.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\7979d3c4\0010c747_70c0cc01\MessageCenterPlus.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\8152f693\00328d2d_70c0cc01\PriceGrabber.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\90fa6856\006a294a_70c0cc01\MSOffice.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\914198e6\004ad80e_79b4cc01\AccuWeatherTile.resources.DLL
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\9787ddea\004ad80e_79b4cc01\AccuWeatherTile.resources.DLL
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\a0a062d8\00818414_70c0cc01\CoreAudioApi.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\a201fafe\00d82a2b_70c0cc01\EvernoteLauncher.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\ac817b63\00818414_70c0cc01\DisplayBrightnessApi.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\b2ec56be\00328d2d_70c0cc01\AccuWeatherTile.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\bc9a5450\00437020_70c0cc01\ScreenRotate.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\c02c05b9\00abf929_70c0cc01\InternetExplorer.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\d8a7fb6f\0006e1bf_6fc0cc01\KeyboardLightApi.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\df74856b\007ec828_70c0cc01\GoogleSearch.dll
c:\users\guy\AppData\Local\Temp\SimpleTap\assembly\dl3\f5c600dd\00833a8f_58b4cc01\NewsTile.dll
Q:\Autorun.inf
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2015-02-14 to 2015-03-14  ))))))))))))))))))))))))))))))
.
.
2015-03-13 16:50 . 2015-01-29 09:07 11910896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9BD20C2A-7679-41CB-A730-D52E2DB83DFF}\mpengine.dll
2015-03-12 18:18 . 2015-03-12 18:04 24064 ----a-w- c:\windows\zoek-delete.exe
2015-03-12 18:18 . 2015-03-14 11:22 -------- d-----w- c:\users\guy\AppData\Local\Temp
2015-03-12 18:15 . 2015-03-12 18:15 -------- d-----w- c:\users\guy\AppData\Local\VeriSign
2015-03-12 17:30 . 2015-03-12 17:41 -------- d-----w- C:\zoek_backup
2015-03-11 17:02 . 2015-02-03 03:30 631808 ----a-w- c:\windows\system32\evr.dll
2015-03-11 17:01 . 2015-02-03 03:31 215552 ----a-w- c:\windows\system32\ubpm.dll
2015-03-09 12:19 . 2015-03-09 12:23 -------- d-----w- c:\program files\trend micro
2015-03-09 12:19 . 2015-03-09 12:20 -------- d-----w- C:\rsit
2015-03-08 10:22 . 2015-03-08 10:22 -------- d-sh--w- c:\users\guy\AppData\Local\EmieUserList
2015-03-08 10:22 . 2015-03-08 10:22 -------- d-sh--w- c:\users\guy\AppData\Local\EmieSiteList
2015-03-08 10:22 . 2015-03-08 10:22 -------- d-sh--w- c:\users\guy\AppData\Local\EmieBrowserModeList
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-03-11 16:59 . 2012-09-22 07:57 122905848 ----a-w- c:\windows\system32\MRT.exe
2015-02-24 02:17 . 2010-11-21 03:27 295552 ------w- c:\windows\system32\MpSigStub.exe
2015-02-07 13:37 . 2012-06-18 14:47 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-07 13:37 . 2012-06-18 14:47 701616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-01-08 11:56 . 2015-01-17 09:27 461120 ----a-w- c:\windows\system32\drivers\tdi_nf.sys
2015-01-08 11:56 . 2013-09-28 09:35 133152 ----a-w- c:\windows\system32\drivers\ale7_nf64.sys
2015-01-08 11:56 . 2012-06-17 10:09 130080 ----a-w- c:\windows\system32\drivers\ale_nf64.sys
2015-01-08 11:56 . 2013-09-28 09:35 123888 ----a-w- c:\windows\system32\drivers\ale7_nf.sys
2015-01-08 11:56 . 2012-06-17 10:09 120792 ----a-w- c:\windows\system32\drivers\ale_nf.sys
2014-12-19 03:06 . 2015-01-15 07:00 210432 ----a-w- c:\windows\system32\profsvc.dll
2014-12-19 01:46 . 2015-01-15 07:00 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-03-07 39408]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE" [2013-01-24 297024]
"TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2014-12-19 248176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Power Manager Power Agenda"="c:\progra~2\ThinkPad\UTILIT~1\DPMHost.exe" [2011-08-11 75064]
"Lenovo Registration"="c:\program files (x86)\Lenovo Registration\LenovoReg.exe" [2011-07-14 4351712]
"Norman ZANDA"="c:\program files\Norman\Npm\Bin\ZLH.EXE" [2014-08-21 88536]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2014-05-02 1065024]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Draadloos configuratie hulpprogramma.lnk - c:\program files (x86)\TP-LINK\TP-LINK Draadloos configuratie hulpprogramma\TWCU.exe -nogui [2013-10-29 846848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 LSCWinService;LSCWinService;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S1 ALE_NF;Norman Network Filter ALE driver;c:\windows\system32\drivers\ale7_nf64.sys;c:\windows\SYSNATIVE\drivers\ale7_nf64.sys [x]
S1 NGS;Norman General Security Driver;c:\program files\norman\ngs\bin\ngs64.sys;c:\program files\norman\ngs\bin\ngs64.sys [x]
S1 NPROSEC;Norman Security driver;c:\program files\Norman\Ngs\Bin\nprosec64.sys;c:\program files\Norman\Ngs\Bin\nprosec64.sys [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 jhi_service;Intel® Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [x]
S2 MyEPSON Connect Service;MyEPSON Connect Service;c:\program files (x86)\EPSON\MyEPSON Connect\mepService.exe;c:\program files (x86)\EPSON\MyEPSON Connect\mepService.exe [x]
S2 nfservice;Norman Flight Recorder service;c:\program files\Norman\npm\bin\nfservice.exe;c:\program files\Norman\npm\bin\nfservice.exe [x]
S2 NNFSVC;Norman Network Filtering service;c:\program files\Norman\Ngs\Bin\Nnf.exe;c:\program files\Norman\Ngs\Bin\Nnf.exe [x]
S2 NPFSvc32;Norman Personal Firewall Service;c:\program files\Norman\npf\bin\npfsvc32.exe;c:\program files\Norman\npf\bin\npfsvc32.exe [x]
S2 NPROSECSVC;Norman Security service;c:\program files\Norman\Ngs\Bin\Nprosec.exe;c:\program files\Norman\Ngs\Bin\Nprosec.exe [x]
S2 nregsec;Norman Registry Security driver;c:\program files\Norman\Ngs\Bin\nregsec64.sys;c:\program files\Norman\Ngs\Bin\nregsec64.sys [x]
S2 nseupdatesvc;Norman Engine Update Service;c:\program files\Norman\nse\bin\nseupdatesvc.exe;c:\program files\Norman\nse\bin\nseupdatesvc.exe [x]
S2 nvcsvc;Norman Anti Malware Service;c:\program files\Norman\nvc\bin\nvcsvc.exe;c:\program files\Norman\nvc\bin\nvcsvc.exe [x]
S2 NVOY;Norman Resource Provider (NICCA);c:\program files\Norman\Npm\Bin\Nvoy.exe;c:\program files\Norman\Npm\Bin\Nvoy.exe [x]
S2 NWSCMON;Norman WSC Monitor Service;c:\program files\Norman\Npm\Bin\nwscmon.exe;c:\program files\Norman\Npm\Bin\nwscmon.exe [x]
S2 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [x]
S2 Sks8821;Skdaemon Service;c:\program files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe;c:\program files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 VIPAppService;VIPAppService;c:\program files (x86)\Symantec\VIP Access Client\VIPAppService.exe;c:\program files (x86)\Symantec\VIP Access Client\VIPAppService.exe [x]
S3 gzflt;Norman Filesystem Driver;c:\program files\Norman\nvc\bin\gzflt.sys;c:\program files\Norman\nvc\bin\gzflt.sys [x]
S3 NJeeves2;Norman Jeeves;c:\program files\Norman\Npm\Bin\Njeeves2.exe;c:\program files\Norman\Npm\Bin\Njeeves2.exe [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RtlWlanu;Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlanu.sys [x]
S3 Scheduler;Norman Scheduler Service;c:\program files\Norman\Npm\Bin\scheduler.exe;c:\program files\Norman\Npm\Bin\scheduler.exe [x]
.
.
--- Andere Services/Drivers In Geheugen ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-21 11:13 1084744 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.115\Installer\chrmstp.exe
.
Inhoud van de 'Gedeelde Taken' map
.
2015-03-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-18 13:37]
.
2015-03-12 c:\windows\Tasks\EPSON XP-215 217 Series Invitation {91C01563-10F2-451D-80C4-08A6AB33AC4A}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-06-28 23:20]
.
2015-03-12 c:\windows\Tasks\EPSON XP-215 217 Series Update {91C01563-10F2-451D-80C4-08A6AB33AC4A}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [2014-06-28 23:20]
.
2015-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-07 08:13]
.
2015-03-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-07 08:13]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-12-09 11663976]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-14 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-14 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-14 418328]
"Skd8821"="c:\program files\Lenovo\Lenovo Slim USB Keyboard\Skd8821.exe" [2010-08-05 384000]
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\guy\AppData\Roaming\Mozilla\Firefox\Profiles\7zflw3p2.default\
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\Norman\Npm\Bin\Zanda.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\EPSON\MyEPSON Connect\mep.exe
c:\program files\Lenovo\SimpleTap\SimpleTap.exe
c:\program files\Lenovo\Lenovo Solution Center\LSCNotify.exe
c:\program files (x86)\Lenovo\message center plus\mcplaunch.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Voltooingstijd: 2015-03-14  12:32:12 - machine werd herstart
ComboFix-quarantined-files.txt  2015-03-14 11:32
.
Pre-Run: 413.717.049.344 bytes beschikbaar
Post-Run: 413.191.720.960 bytes beschikbaar
.
- - End Of File - - C08C13295E33364E839BCDEC42AFFA5D
D12EC78E8BD87AAF25C23276CBCC4E08
 

MET EN ZONDER VIRUS SCANER BLIJF HET PROBLEEM ZICH VOORDOEN

 

STEVE

Zoek.exe v5.0.0.0 Updated 05-March-2015
Tool run by guy on do 12/03/2015 at 19:04:34,73.
Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\guy\Desktop\zoek.exe [scan all users] [script inserted]

==== Older Logs ======================

C:\zoek-results2015-03-12-180033.log 54023 bytes

==== Empty Folders Check ======================

C:\Users\guy\AppData\Local\VeriSign deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"VIP@verisign.com"="C:\Program Files (x86)\Symantec\VIP Access Client" [24/08/2013 08:29]

==== Firefox Extensions ======================

ProfilePath: C:\Users\guy\AppData\Roaming\Thunderbird\Profiles\jvshgax0.default
- Instrument Test - %ProfilePath%\extensions\tbtestpilot@labs.mozilla.com.xpi

ProfilePath: C:\Users\guy\AppData\Roaming\TomTom\HOME\Profiles\0zsliu1w.default
- Map status indicator - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com
- TomTom HOME default theme - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\baseTheme@tomtom.com
- Emulator - %ProfilePath%\extensions\Navcore.9.430.890926@tomtom.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\guy\AppData\Roaming\Mozilla\Firefox\Profiles\7zflw3p2.default
C62322C77D1AAB77B1CF1130FCC3673A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll - Shockwave Flash

==== Chromium Look ======================

Google Chrome Version: 40.0.2214.115 (Possible outdated, latest Stable version: 41.0.2272.89)

YouTube - guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail - guy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\guy\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP",
"urls_to_restore_on_startup": [ "http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP" ]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.com/search?q={searchTerms}"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP_nlBE488"

==== Reset Google Chrome ======================

C:\Users\guy\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\guy\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\guy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\guy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\guy\AppData\Local\Mozilla\Firefox\Profiles\7zflw3p2.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\guy\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=3 folders=1 7556622 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\guy\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\guy\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on do 12/03/2015 at 19:27:40,41 ======================

 

 

 

# AdwCleaner v4.112 - Logbestand aangemaakt 12/03/2015 op 18:21:43
# Laatste update 09/03/2015 door Xplode
# Database : 2015-03-05.1 [server]
# Besturingssysteem : Windows 7 Professional Service Pack 1 (x64)
# Gebruikersnaam : guy - GUY-THUIS
# Gestart vanuit : C:\Users\guy\Desktop\adwcleaner_4.112.exe
# Optie : Scannen

***** [ Services ] *****

***** [ Bestanden / Mappen ] *****

Map Gevonden : C:\ProgramData\Partner

***** [ Geplande taken ] *****

***** [ Snelkoppelingen ] *****

***** [ Register ] *****

Sleutel Gevonden : HKCU\Software\Softonic
Sleutel Gevonden : [x64] HKCU\Software\Softonic
Sleutel Gevonden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Sleutel Gevonden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

***** [ Webbrowsers ] *****

-\\ Internet Explorer v11.0.9600.17689

-\\ Mozilla Firefox v35.0.1 (x86 nl)

-\\ Google Chrome v40.0.2214.115

*************************

AdwCleaner[R0].txt - [1094 bytes] - [12/03/2015 18:19:05]
AdwCleaner[R1].txt - [1012 bytes] - [12/03/2015 18:21:43]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1071 bytes] ##########

als ik op de computer bezig ben dan blijft hij hangen

b.v. ik wil een email verzenden  en ik schrijf mijn bericht, op een gegeven moment werkt er niets meer ik moet dan eerst in het kade van het email venster een keer kliken om het weer te aktiveren en dat heb ik ook met anderen programma´s

wat kan dat wezen.

 

steve

log.txt

als ik op de computer bezig ben dan blijft hij hangen

b.v. ik wil een email verzenden  en ik schrijf mijn bericht, op een gegeven moment werkt er niets meer ik moet dan eerst in het kade van het email venster een keer kliken om het weer te aktiveren en dat heb ik ook met anderen programma´s

wat kan dat wezen.

 

steve

fabrieks herstel door middel van cd van hp

hp Compaq 6710 b laptop

nu heb ik een 32 bit opgestuurt gekregen kan het zijn dat ik een 64 bit nodig heb

fabrieks herstel door middel van cd van hp

hp Compaq 6710 b laptop

ik heb eeb hp Compaq vista

na een fabrieks herstel heb ik aan de zijkanten zwarte balken hoe kan

ik deze vewijderen zodat ik een grote beeld krijg

ik werk met een hp Compaq na frbrieks herstel heb zwarte balken aan de zijkanten hoe kan ik

mijn scherm vergroten

ik heb via een veiling een hp Compaq 6710b gekocht

nu blijkt deze beveiligt te zijn met een password

hoe kan ik deze verwijderen zodat ik hem kan gebruiken

ik kan mijn laptop niet meer op starten daar ik met een interpol virus zit

ik werk met een windows 8 besturing

help help

wat is nu het beste wat ik kan doen om hem weer normaal draaiende te krijgen?

tijd en datum staan niet corect logbestand is uptodate

de datum staat verkeerd die is nog niet aangepast, het log bestand dat ik verstuurt heb is uptodate.

http://speccy.piriform.com/results/ZHC660ljvORrWZPMeOEc1Lx

kan het zijn omdat ik er een grotere harde schijf in heb geplaats dat hij langzamer is.zo wat kan ik er aan doen om hem sneller te maken zodat het weer aceptabel is .

ik heb mijn laptop uit elkaar gehaald en helemaal schoon gemaakt hij was inderdaat er stopfig ,bijgaand stuur ik de nieuwe speccy link http://speccy.piriform.com/results/pq43QVmKXcjByUBqhqtBD3o

het duurde meer dan een uur om dit voor elkaar te krijgen zo langzaam is hij op dit moment.

de laptop is een compaq nx9010 ik had vorig jaar een gecrasde hard disk die heb ik vervangen ik heb toen weer windows xp er op laten zetten en sindien is hij heel en ik bedoel heel erg traag. hierbij zend ik de link van de speccy.

http://speccy.piriform.com/results/E8Zun4GRsTwfoVBbWzd3mZH

hp laptop windows xp besturing

sorry dat is niet meer mogelijk mijn zoon

heeft hem al mee genomen

hallo ik heb een hp laptop mijn harde schijf was kapot en toen een nieuwe in geplaats en ook hebben ze toen ook een nieuwe software op geplaats.

maar nu start hij heel lanzaam op en wanneer ik op het internet wil duurt ook heel lang voordat er de pagina's door komen kortom hij is erg langzaam er er een oplossing voor dit probleem

heel vriendelijk bedankt probleem is opgelost.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 14:56:58, on 13/03/2012

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16930)

Boot mode: Safe mode with network support

Running processes:

C:\Users\Lu-ke\Desktop\HijackThis (1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.telenet.be

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Funmoods Search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.telenet.be

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.telenet.be

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Telenet Internet

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Funmoods Helper Object - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - C:\Program Files (x86)\Funmoods\funmoods\1.5.11.16\bh\funmoods.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll

O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)

O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll

O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Funmoods Toolbar - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - C:\Program Files (x86)\Funmoods\funmoods\1.5.11.16\funmoodsTlbr.dll

O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [internet Security] C:\Users\Lu-ke\AppData\Roaming\isecurity.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\System Control Manager\MSIService.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 9149 bytes

ik kan mijn computer opstarten maar al mijn exe bestanden zijn weg of besmet ,hij start dus geen programa's meer op.

is hier een oplossing voor om deze virus te verwijderen.