Trage latop+windows update blijft hangen

lg

18-04-2014 15:28

Deze laptop is traag geworden plus windows update blijft hangen bij het configuren op 9%.
Hierbij de gevraagde logjes.
LG
alwarebytes Anti-Malware
www.malwarebytes.org
Scandatum: 18-4-2014
Scantijd: 15:12:44
Logbestand: malware.txt
Beheerder: Ja
Versie: 2.00.1.1004
Malwaredatabase: v2014.04.18.03
Rootkitdatabase: v2014.03.27.01
Licentie: Gratis
Malwarebescherming: Uitgeschakeld
Kwaadaardige Website Bescherming: Uitgeschakeld
Chameleon: Uitgeschakeld
Besturingssysteem: Windows 7 Service Pack 1
Processor: x86
Bestandssysteem: NTFS
Gebruiker: Cobi Zandbergen
Scantype: Bedreigingsscan
Resultaat: Voltooid
Objecten Gescand: 220006
Verstreken Tijd: 11 m, 45 s
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Shuriken: Ingeschakeld
POP: Ingeschakeld
POA: Ingeschakeld
Processen: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registersleutels: 0
(No malicious items detected)
Registerwaardes: 0
(No malicious items detected)
Registerdata: 0
(No malicious items detected)
Mappen: 0
(No malicious items detected)
Bestanden: 0
(No malicious items detected)
Fysieke Sectoren: 0
(No malicious items detected)
(end)
Logfile of random's system information tool 1.09 (written by random/random)
Run by Cobi Zandbergen at 2014-04-18 15:21:00
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 44 GB (67%) free of 65 GB
Total RAM: 959 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:21:22, on 18-4-2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\vsnp2uvc.exe
C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Cobi Zandbergen\Desktop\RSIT.exe
C:\Program Files\trend micro\Cobi Zandbergen.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://nl.msn.com/?pc=UP97&ocid=UP97DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, enhanced for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: “c:\Program Files\Microsoft Security Client\msseces.exe” -hide -runkey
O4 - HKLM\..\Run: “C:\Program Files\Microsoft Office\Office14\BCSSync.exe” /DelayServices
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Java\Java Update\jusched.exe”
O4 - HKCU\..\Run: C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: “C:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU\..\RunOnce: C:\Windows\system32\cmd.exe /q /c rmdir /s /q “C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra ‘Tools’ menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
–
End of file - 6564 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000UA.job
======Registry dump======
Groove GFS Browser Helper - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll
“NvCplDaemon”=C:\Windows\system32\NvCpl.dll
“NvMediaCenter”=C:\Windows\system32\NvMcTray.dll
“MSC”=c:\Program Files\Microsoft Security Client\msseces.exe
“BCSSync”=C:\Program Files\Microsoft Office\Office14\BCSSync.exe
“Adobe ARM”=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
“snp2uvc”=C:\Windows\vsnp2uvc.exe
“tsnp2uvc”=C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe
“NPSStartup”=
“SunJavaUpdateSched”=C:\Program Files\Common Files\Java\Java Update\jusched.exe
“AutoStartNPSAgent”=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
“Google Update”=C:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe
“Uninstall C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”=C:\Windows\system32\cmd.exe
C:\Users\Cobi Zandbergen\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
C:\Program Files\Skype\Phone\Skype.exe
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
“{B5A7F190-DDA6-4420-B3BA-52453494E6CD}”=C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
“SecurityProviders”=credssp.dll
“ConsentPromptBehaviorAdmin”=5
“ConsentPromptBehaviorUser”=3
“EnableUIADesktopToggle”=0
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.msadpcm”=msadp32.acm
“midimapper”=midimap.dll
“wavemapper”=msacm32.drv
“VIDC.UYVY”=msyuv.dll
“VIDC.YUY2”=msyuv.dll
“VIDC.YVYU”=msyuv.dll
“VIDC.IYUV”=iyuv_32.dll
“vidc.i420”=iyuv_32.dll
“VIDC.YVU9”=tsbyuv.dll
“msacm.l3acm”=C:\Windows\System32\l3codeca.acm
“vidc.cvid”=iccvid.dll
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
“wave1”=wdmaud.drv
“mixer1”=wdmaud.drv
“wave2”=wdmaud.drv
“midi1”=wdmaud.drv
“mixer2”=wdmaud.drv
“aux1”=wdmaud.drv
“MSVideo8”=VfWWDM32.dll
“wave3”=wdmaud.drv
“midi2”=wdmaud.drv
“mixer3”=wdmaud.drv
“aux2”=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe “%1” %*
======List of files/folders created in the last 1 month======
2014-04-18 15:21:03 —-D—- C:\Program Files\trend micro
2014-04-18 15:21:00 —-D—- C:\rsit
2014-04-18 14:56:24 —-A—- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-18 14:55:48 —-A—- C:\Windows\system32\drivers\mwac.sys
2014-04-18 14:55:48 —-A—- C:\Windows\system32\drivers\mbamchameleon.sys
2014-04-18 14:55:48 —-A—- C:\Windows\system32\drivers\mbam.sys
2014-04-18 14:55:47 —-D—- C:\ProgramData\Malwarebytes
2014-04-18 14:55:47 —-D—- C:\Program Files\Malwarebytes Anti-Malware
2014-04-18 14:42:06 —-D—- C:\ProgramData\Oracle
2014-04-18 14:40:22 —-D—- C:\Program Files\Common Files\Java
2014-04-18 14:39:54 —-A—- C:\Windows\system32\javaws.exe
2014-04-18 14:39:35 —-A—- C:\Windows\system32\WindowsAccessBridge.dll
2014-04-18 14:39:35 —-A—- C:\Windows\system32\javaw.exe
2014-04-18 14:39:35 —-A—- C:\Windows\system32\java.exe
2014-04-18 13:42:03 —-A—- C:\Windows\ntbtlog.txt
2014-04-10 16:29:48 —-D—- C:\Windows\nl
2014-03-30 11:58:33 —-D—- C:\Windows\Migration
2014-03-29 10:25:16 —-A—- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-03-29 10:25:16 —-A—- C:\Windows\system32\RMActivate_isv.exe
2014-03-29 10:25:16 —-A—- C:\Windows\system32\RMActivate.exe
2014-03-29 10:25:15 —-A—- C:\Windows\system32\RMActivate_ssp.exe
2014-03-29 10:25:14 —-A—- C:\Windows\system32\secproc_isv.dll
2014-03-29 10:25:14 —-A—- C:\Windows\system32\secproc.dll
2014-03-29 10:25:13 —-A—- C:\Windows\system32\secproc_ssp_isv.dll
2014-03-29 10:25:13 —-A—- C:\Windows\system32\secproc_ssp.dll
2014-03-29 10:25:13 —-A—- C:\Windows\system32\msdrm.dll
======List of files/folders modified in the last 1 month======
2014-04-18 15:21:16 —-D—- C:\Windows\Prefetch
2014-04-18 15:21:13 —-D—- C:\Users\Cobi Zandbergen\AppData\Roaming\Skype
2014-04-18 15:21:03 —-RD—- C:\Program Files
2014-04-18 15:17:55 —-D—- C:\Windows\Temp
2014-04-18 15:00:17 —-D—- C:\Windows\system32\drivers
2014-04-18 14:55:47 —-HD—- C:\ProgramData
2014-04-18 14:52:55 —-D—- C:\Windows\system32\config
2014-04-18 14:52:43 —-D—- C:\Windows\winsxs
2014-04-18 14:40:28 —-SHD—- C:\Windows\Installer
2014-04-18 14:40:22 —-D—- C:\Program Files\Common Files
2014-04-18 14:39:54 —-D—- C:\Windows\System32
2014-04-18 14:39:34 —-D—- C:\Program Files\Java
2014-04-18 14:35:04 —-SHD—- C:\System Volume Information
2014-04-18 13:42:03 —-D—- C:\Windows
2014-04-18 13:26:46 —-D—- C:\Windows\system32\catroot2
2014-04-10 19:14:27 —-D—- C:\ProgramData\Microsoft Help
2014-04-10 19:08:59 —-D—- C:\Windows\system32\MRT
2014-04-10 19:06:34 —-A—- C:\Windows\system32\MRT.exe
2014-04-10 16:27:08 —-D—- C:\Program Files\Windows Live
2014-04-10 16:24:34 —-D—- C:\Windows\Logs
2014-04-10 12:18:00 —-D—- C:\Windows\system32\catroot
2014-04-01 08:47:49 —-D—- C:\Windows\Microsoft.NET
2014-03-31 17:18:02 —-A—- C:\Windows\system32\PerfStringBackup.INI
2014-03-31 17:17:53 —-D—- C:\Windows\inf
2014-03-30 17:32:02 —-D—- C:\Windows\rescache
2014-03-30 16:15:02 —-SD—- C:\Users\Cobi Zandbergen\AppData\Roaming\Microsoft
2014-03-30 14:18:22 —-D—- C:\Windows\system32\wdi
2014-03-30 12:36:42 —-D—- C:\Windows\system32\DriverStore
2014-03-30 12:08:04 —-RSD—- C:\Windows\assembly
2014-03-30 12:02:05 —-D—- C:\Windows\system32\en-US
2014-03-30 11:58:33 —-SD—- C:\ProgramData\Microsoft
2014-03-30 11:46:00 —-D—- C:\Program Files\Microsoft Security Client
2014-03-30 11:31:51 —-A—- C:\Windows\win.ini
2014-03-30 11:24:11 —-D—- C:\Windows\debug
2014-03-30 11:18:37 —-D—- C:\Windows\system32\nl-NL
2014-03-29 10:42:57 —-D—- C:\Windows\system32\Tasks
2014-03-29 10:42:53 —-D—- C:\Windows\Tasks
2014-03-29 10:34:14 —-D—- C:\Windows\Panther
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2media.sys
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys
R3 rt61x86;RT61 Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr61.sys
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys
S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe
S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
—————–EOF—————–
Ben

18-04-2014 15:32

Hallo,
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Download Zoek.exe naar het bureaublad.
* Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
* Dubbelklik vervolgens op Zoek.exe om de tool te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
torpigcheck;
emptyfolderscheck;delete
chromelook;
standardsearch;
filesrcm;
autoclean;
startupall;
* Klik nu op de knop "Run script".
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
* Post het geopende logje in het volgende bericht.
lg

18-04-2014 15:59

Zoals gevaagd
Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Cobi Zandbergen on vr 18-04-2014 at 15:38:28,65.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Cobi Zandbergen\Desktop\zoek.exe
==== System Restore Info ======================
18-4-2014 15:39:56 Zoek.exe System Restore Point Created Succesfully.
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll
==== Empty Folders Check ======================
C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\Users\Cobi Zandbergen\AppData\Local\DriverTuner deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Running Processes ======================
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\vsnp2uvc.exe
C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Cobi Zandbergen\Desktop\zoek.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
==== Deleting Services ======================
==== Deleting Files \ Folders ======================
C:\Program Files\Driver-Soft deleted
==== System Specs ======================
Windows: Windows 7 Ultimate Edition Service Pack 1 (Build 7601)
Memory (RAM): 960 MB
CPU Info: AMD Turion™ 64 X2 Mobile Technology TL-50
CPU Speed: 1605,2 MHz
Sound Card: Luidsprekers (High Definition A |
Digitale audio (S/PDIF) (High D |
Display Adapters: NVIDIA GeForce Go 6100 | NVIDIA GeForce Go 6100 | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Algemeen PnP-beeldscherm |
Screen Resolution: 1440 X 900 - 32 bit
Network: Network Present
Network Adapters: 802.11g MiniPCI Wireless Adapter | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (D: | ) D: HL-DT-STDVDRAM GSA-T10N
Ports: COM3 LPT Port NOT Present.
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C: 63,9GB | F: 29,3GB
Hard Disks - Free: C: 42,8GB | F: 29,2GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 09/22/06 | MSI_NB - 9222006
Time Zone: West-Europa (standaardtijd)
Motherboard *: MSI MS-1718X
Country: Nederland
Language: NLD
==== System Specs (Software) ======================
Anti-Virus: Microsoft Security Essentials On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: Microsoft Security Essentials disabled (Outdated)
Internet Explorer Version: 11.0.9600.16428
Adobe Reader version: 11.0.06.70
Sun Java version: 1.7.0_55 (32-bit)
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\COBIZA~1\AppData\Local\Temp ====
2014-04-15 20:50:42 A903EDEAEF449147512D94B7AB2D44AA 921512 —-a-w- C:\Users\Cobi Zandbergen\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
====== Java Cache =====
====== C:\Windows\system32 =====
2014-04-18 12:39:54 6EA69D2312F3571F6F8BEADD224165E8 264616 —-a-w- C:\Windows\System32\javaws.exe
2014-04-18 12:39:35 B42338F92D3BDADA79B6BE553E72587C 94632 —-a-w- C:\Windows\System32\WindowsAccessBridge.dll
2014-04-18 12:39:35 9533FE0A942E00114047140B42DF8E3D 175016 —-a-w- C:\Windows\System32\java.exe
2014-04-18 12:39:35 37C15684482B4D596316735DCEEE939A 175528 —-a-w- C:\Windows\System32\javaw.exe
====== C:\Windows\system32\drivers =====
2014-04-18 12:56:24 661B911FA04E73FB073FF9B1C9BD2E05 107736 —-a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-04-18 12:55:48 2BB23932978D623D3D395AEAB1825BF1 73432 —-a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-04-18 12:55:48 18898A87CBA96DEA2074C19E140938A8 51416 —-a-w- C:\Windows\System32\drivers\mwac.sys
2014-04-18 12:55:48 0C6EA0109CFEDF441F06D031E9A8D1A9 23256 —-a-w- C:\Windows\System32\drivers\mbam.sys
====== C:\Windows\Tasks ======
2014-03-29 08:42:57 3E194BDAC4E87C8AF202E66DEA87AC55 4096 —-a-w- C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000UA
2014-03-29 08:42:53 B29F0B376679238F8405CD7DCD511C13 1106 —-a-w- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000UA.job
2014-03-29 08:42:43 180CBBA92FA02404BA79C020BDCAE47C 3700 —-a-w- C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000Core
2014-03-29 08:42:39 1573BF98ADD0F18C64AB36DF25EA9A12 1054 —-a-w- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000Core.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-04-18 13:21:03 ——– d—–w- C:\Program Files\trend micro
2014-04-18 12:40:22 ——– d—–w- C:\Program Files\Common Files\Java
======= C: =====
====== C:\Users\Cobi Zandbergen\AppData\Roaming ======
2014-03-29 08:41:37 ——– d—–w- C:\Users\Cobi Zandbergen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-03-29 08:41:25 ——– d—–w- C:\Users\Cobi Zandbergen\AppData\Local\Programs
====== C:\Users\Cobi Zandbergen ======
2014-04-18 13:15:42 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Cobi Zandbergen\Desktop\RSIT.exe
2014-04-18 12:39:35 ——– d—–w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
====== C: exe-files ==
2014-04-18 13:21:04 9A2347903D6EDB84C10F288BC0578C1C 388608 —-a-w- C:\Program Files\trend micro\Cobi Zandbergen.exe
2014-04-18 13:15:42 69CA82A7482A00D8EE063D2B97FC4338 781383 —-a-w- C:\Users\Cobi Zandbergen\Desktop\RSIT.exe
2014-04-18 12:39:54 6EA69D2312F3571F6F8BEADD224165E8 264616 —-a-w- C:\Windows\System32\javaws.exe
2014-04-18 12:39:35 9533FE0A942E00114047140B42DF8E3D 175016 —-a-w- C:\Windows\System32\java.exe
2014-04-18 12:39:35 37C15684482B4D596316735DCEEE939A 175528 —-a-w- C:\Windows\System32\javaw.exe
2014-04-18 12:34:10 3842C46F2FBC7522EF625F1833530804 145408 —-a-w- C:\Users\Cobi Zandbergen\AppData\LocalLow\Sun\Java\jre1.7.0_55\lzma.exe
2014-04-15 20:50:42 A903EDEAEF449147512D94B7AB2D44AA 921512 —-a-w- C:\Users\Cobi Zandbergen\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
=== C: other files ==
2014-04-18 12:56:24 661B911FA04E73FB073FF9B1C9BD2E05 107736 —-a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-04-18 12:55:48 2BB23932978D623D3D395AEAB1825BF1 73432 —-a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-04-18 12:55:48 18898A87CBA96DEA2074C19E140938A8 51416 —-a-w- C:\Windows\System32\drivers\mwac.sys
2014-04-18 12:55:48 0C6EA0109CFEDF441F06D031E9A8D1A9 23256 —-a-w- C:\Windows\System32\drivers\mbam.sys
==== Startup Registry Enabled ======================
“Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /autoRun”
“Sidebar”=“%ProgramFiles%\Windows\Sidebar.exe /autoRun”
“AutoStartNPSAgent”=“C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe”
“Google Update”=“C:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe /c”
“mctadmin”=“C:\Windows\System32\mctadmin.exe”
“mctadmin”=“C:\Windows\System32\mctadmin.exe”
“Uninstall C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”=“C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”
“NvCplDaemon”=“RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup”
“NvMediaCenter”=“RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit”
“MSC”=“c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey”
“BCSSync”=“C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices”
“Adobe ARM”=“C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“snp2uvc”=“C:\Windows\vsnp2uvc.exe”
“tsnp2uvc”=“C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe”
“SunJavaUpdateSched”=“C:\Program Files\Common Files\Java\Java Update\jusched.exe”
“AutoStartNPSAgent”=“C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe”
“Google Update”=“C:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe /c”
“Uninstall C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”=“C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”
==== Startup Registry Disabled ======================
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Google+ Auto Backup”
“hkey”=“HKCU”
“command”=“\”C:\\Users\\Cobi Zandbergen\\AppData\\Local\\Programs\\Google\\Google+ Auto Backup\\Google+ Auto Backup.exe\“ /autostart”
“key”=“SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run”
“item”=“Skype”
“hkey”=“HKCU”
“command”=“\”C:\\Program Files\\Skype\\Phone\\Skype.exe\“ /minimized /regrun”
==== Task Scheduler Jobs ======================
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000Core.job –a—— C:FC:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000UA.job –a—— C:FC:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe
==== Other Scheduled Tasks ======================
“C:\Windows\system32\tasks\CCleanerSkipUAC”
“C:\Windows\system32\tasks\CreateChoiceProcessTask”
“C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000Core”
“C:\Windows\system32\tasks\GoogleUpdateTaskUserS-1-5-21-3565762379-3244207867-2334905860-1000UA”
“C:\Windows\system32\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask”
==== Folders in C:\PROGRA~2 0-6 Months Old ======================
2014-04-18 12:55:47 ——– d—–w- C:\PROGRA~2\Malwarebytes
==== Chrome Look ======================
YouTube - Cobi Zandbergen\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Cobi Zandbergen\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Wallet Service - Cobi Zandbergen\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Cobi Zandbergen\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://nl.msn.com/?pc=UP97&ocid=UP97DHP”
New Values:
“Start Page”=“http://nl.msn.com/?pc=UP97&ocid=UP97DHP”
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
“DefaultScope”=“{0633EE93-D776-472f-A0FF-E1416B8B2E3A}”
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR”
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== HijackThis Entries ======================
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: “c:\Program Files\Microsoft Security Client\msseces.exe” -hide -runkey
O4 - HKLM\..\Run: “C:\Program Files\Microsoft Office\Office14\BCSSync.exe” /DelayServices
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: C:\Program Files\Common Files\SNP2UVC\tsnp2uvc.exe
O4 - HKLM\..\Run: “C:\Program Files\Common Files\Java\Java Update\jusched.exe”
O4 - HKCU\..\Run: C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: “C:\Users\Cobi Zandbergen\AppData\Local\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU\..\RunOnce: C:\Windows\system32\cmd.exe /q /c rmdir /s /q “C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910”
O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra ‘Tools’ menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
==== Empty IE Cache ======================
C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8KZTRMVT will be deleted at reboot
C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OZBG64PZ will be deleted at reboot
C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PQ2PRC0M will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Cobi Zandbergen\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=3 folders=2 1391171 bytes)
==== Empty Temp Folders ======================
C:\Users\Cobi Zandbergen\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\COBIZA~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
“C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8KZTRMVT” not found
“C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OZBG64PZ” not found
“C:\Users\Cobi Zandbergen\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PQ2PRC0M” not found
==== EOF on vr 18-04-2014 at 15:55:45,46 ======================
Ben

18-04-2014 16:16

Hallo,
Ik begrijp waarom deze pc niet snel is Memory (RAM): 960 MB je heb toch wel 1500/2000 MB nodig om Windows 7 lekker te laten draaien.
Dit kan haperingen geven waardoor hij blijft hangen om grote bestanden te downloaden en te installeren.
Hard Disks: C: 63,9GB | F: 29,3GB
Hard Disks - Free: C: 42,8GB | F: 29,2GB
Je hard disks beginnen ook al aardig vol te raken en ik denk dat deze pc op zijn einde aan capaciteiten raakt
De logjes zijn verder netjes.
lg

18-04-2014 16:20

Even via een andere pc geheugen nha dik gezien zal kijken wat er mogelijk is.
77 gb vrij op twee schijven moet voldoende zijn voor deze gebruiker.
Ik ga zo kijken of de updates door komen.
Ben

18-04-2014 16:24

Hallo,
Er is geen 77gb vrij:
Hard Disks: C: 63,9GB | F: 29,3GB
Hard Disks - Free: C: 42,8GB | F: 29,2GB
Op C: 42,8 GB vrij
Op F: 0,1 GB vrij
lg

18-04-2014 16:39

F staat op 29,1 vrij van de 29,2
C op 42,6 vrij van de 63,8
Laptop is opgestart en de update's zijn geinstalleerd
LG.
Ben

18-04-2014 16:44

Hallo,
Je heb helemaal gelijk (tu)
lg

18-04-2014 16:50

Ben nog delfix draaien om op te ruimen?
Of eerst nog adwcleaner?
LG
Ben

18-04-2014 17:52

Hallo,
Delfix is genoeg (tu)

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Trage latop+windows update blijft hangen

lg

Ben

lg

Ben

lg

Ben

lg

Ben

lg

Ben