Pagina 1 van 2 12 LaatsteLaatste
Weergegeven resultaten: 1 t/m 10 van 16
  1. #1
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts

    Laptop sneller doen werken en opstarten, nazicht noodzakelijk

    Goedemiddag,

    Is weer een tijdje geleden dat ik nog actief ben geweest op Minatica... Vandaag nog eens de site doorlopen en het komt me nog allemaal bekend voor

    Heb een HP Probook 6550b, 6j geleden via school aangeschaft en ben er nog steeds tevreden over. Maar heb volgende opmerkingen;
    - Ik werk nog onder mijn domeinnaam van school, dus het wachtwoord van de laptop kan niet aangepast of gewijzigd worden? Alles zou opnieuw geinstalleerd moeten worden wat niet mijn bedoeling is...
    - Opstarten gaat redelijk maar kan sneller
    - Symantec Endpoint protection 'was' de anti-virus van school maar denk niet dat deze nog naar behoren werkt... want krijg iedere 5min volgende melding...
    "OLD VIRUS DEFINITION FILE, Your virus definitions are currently out of date. Contact your system administartor on how to update them.
    Dit virusprogramma is mij absoluut niet heilig dus misschien best een ander installeren?!

    Ik zit hieronder alvast mijn Hijackthis logje en verneem graag hoe het verder moet, bedankt alvast

  2. #2
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts
    Hierbij al mijn GMER log

    GMER 2.2.19882 - http://www.gmer.net
    Rootkit scan 2016-06-14 13:08:04
    Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST925041 rev.0006 232,89GB
    Running: kyey6vxz.exe; Driver: C:\Users\3030319\AppData\Local\Temp\kxdcqaog.sys




    ---- Kernel code sections - GMER 2.2 ----


    .text C:\WINDOWS\System32\win32k.sys!W32pServiceTable fffff9600018ca00 15 bytes [00, 31, EF, 01, 00, 36, 6A, ...]
    .text C:\WINDOWS\System32\win32k.sys!W32pServiceTable + 16 fffff9600018ca10 11 bytes [00, E4, FB, FF, C0, 4B, E6, ...]


    ---- Threads - GMER 2.2 ----


    Thread C:\WINDOWS\system32\svchost.exe [1464:884] 00007ffa2e574440
    Thread C:\WINDOWS\system32\svchost.exe [1464:3028] 00007ffa2e571040
    Thread C:\WINDOWS\system32\csrss.exe [3456:4820] fffff960008c32d0
    Thread C:\WINDOWS\Explorer.EXE [4000:5072] 00007ffa22cb1480
    Thread C:\WINDOWS\Explorer.EXE [4000:2680] 00007ffa2b46f3c0
    Thread C:\WINDOWS\Explorer.EXE [4000:4100] 00007ffa2b46f3c0
    Thread C:\WINDOWS\Explorer.EXE [4000:1336] 00007ffa24fda710
    Thread C:\WINDOWS\Explorer.EXE [4000:1244] 00007ffa2b46f3c0
    Thread C:\WINDOWS\Explorer.EXE [4000:4072] 00007ffa2b515030
    Thread C:\WINDOWS\Explorer.EXE [4000:5340] 00007ffa3144c900


    ---- Registry - GMER 2.2 ----


    Reg HKLM\SYSTEM\CurrentControlSet\Control\Diagnostics\ Performance@ActiveShutdownDCL C:\WINDOWS\System32\WDI\LogFiles\WdiContextLog.etl .003
    Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDriv ers\Configuration\AUO01EE0_01_07D8_98^12D12DAFF7F4 4A68FD2C6EFD506187E6@Timestamp 0x1C 0xF6 0x08 0xD5 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D3 6E972-E325-11CE-BFC1-08002BE10318}\{6504CF03-9521-458A-BA34-A2723DC21103}\Connection@Name Reusable ISATAP Interface {6504CF03-9521-458A-BA34-A2723DC21103}
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D3 6E972-E325-11CE-BFC1-08002BE10318}\{B46E3159-B48F-43A1-8944-069F4667B92F}\Connection@Name isatap.{89DD3514-2748-4669-B795-788CE5C0D905}
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Power\User\P owerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e\7516b95f-f776-4464-8c53-06167f40cc99\aded5e82-b909-4619-9949-f5d71dac0bcb@ACSettingIndex 35
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed 411010127
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime 7936
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TotalResumeTime 17522
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeBootMgrTime 571
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeAppTime 7599
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeAppStartTimestamp 7527
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeLibraryInitTime 133
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeHiberFileTime 7204
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeRestoreImageStartTimestamp 7901
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeIoTime 4501
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeDecompressTime 2435
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeMapTime 160
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeUnmapTime 5
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeUserInOutTime 54
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeAllocateTime 18
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeKernelSwitchTimestamp 15126
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnFromHandlerTimestamp 15140
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@SleeperThreadEndTimestamp 15151
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TimeStampCounterAtSwitchTime 15137
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnSystemPowerState 16324
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberHiberFileTime 6583
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberInitTime 1056
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberSharedBufferTime 11
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TotalHibernateTime 14047
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@DeviceResumeTime 1134
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@BootPagesProcessed 381451
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@BootPagesWritten 0x76 0x8A 0x02 0x00 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberCompressRate 45
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeReadRate 144
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberIoCpuTime 6565
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HybridBootAnimationTime 46
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeCompleteTimestamp 0xAC 0xD6 0xDD 0x19 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@GlassSessionId 1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Par ameters\Keys\70f3955bd7ad
    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Par ameters\Keys\70f3955bd7ad@28bab50d6117 0xC3 0xE9 0x9B 0xDA ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Upg rade\LocalRadioSettings
    Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Pa rameters\Isatap\{6504CF03-9521-458A-BA34-A2723DC21103}@InterfaceName Reusable ISATAP Interface {6504CF03-9521-458A-BA34-A2723DC21103}
    Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Pa rameters\Isatap\{6504CF03-9521-458A-BA34-A2723DC21103}@ReusableType 1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Pa rameters\Isatap\{B46E3159-B48F-43A1-8944-069F4667B92F}@InterfaceName isatap.{89DD3514-2748-4669-B795-788CE5C0D905}
    Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Pa rameters\Isatap\{B46E3159-B48F-43A1-8944-069F4667B92F}@ReusableType 0
    Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Pa rameters\Isatap\{B46E3159-B48F-43A1-8944-069F4667B92F}@DefunctTimestamp 0x1A 0x33 0x57 0x57 ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@Type 2
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@Start 3
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@ErrorControl 1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@Tag 2
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@ImagePath \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@DisplayName MBAMSwissArmy
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@Group FSFilter Activity Monitor
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my@WOW64 1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my\Instances
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my\Instances@DefaultInstance MBAMSwissArmy Instance
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my\Instances\MBAMSwissArmy Instance
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my\Instances\MBAMSwissArmy Instance@Flags 0
    Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMSwissAr my
    Reg HKLM\SYSTEM\CurrentControlSet\Services\NcbService\ NCB\KapiNlmCache\43@Timestamp 0x3D 0xA7 0x5E 0xBB ...
    Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Epoch@Epoch 14585
    Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAcces s\Epoch2@Epoch 3825
    Reg HKLM\SYSTEM\CurrentControlSet\Services\SynTP\Param eters@DetectTimeMS 774
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters@DhcpNameServer 192.168.0.1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpIPAddress 192.168.0.106
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpServer 192.168.0.1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@Lease 7200
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@LeaseObtainedTime 1465852533
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@T1 1465856133
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@T2 1465858833
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@LeaseTerminatesTime 1465859733
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpNetworkHint E4564777F627B60235C65636864756E6
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpNameServer 192.168.0.1
    Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Param eters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpDefaultGateway 192.168.0.1?
    Reg HKLM\SYSTEM\CurrentControlSet\Services\TCPIP6\Para meters\Interfaces\{89DD3514-2748-4669-B795-788CE5C0D905}@DhcpV6NetworkHint E4564777F627B60235C65636864756E6
    Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@Rw 0x64 0x62 0x03 0x00 ...
    Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@Rw Mask 0x64 0x62 0x03 0x00 ...
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Bri ghtness@ 35
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Shutdown@CleanShutdown 1
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\iexplore@Count 880
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\GWX \Usage@UsageTime 0x8E 0x31 0xF7 0x00 ...
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Pus hNotifications@MobileBroadbandLastResetDate 0x63 0x61 0x3C 0xE1 ...
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Sto re@LastTileRefresh 0x52 0xD3 0xB0 0xE1 ...
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Sto re\RefreshBannedAppList@BannedAppsLastModified 0x00 0xE0 0x1F 0x9C ...
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@0 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID\eID Viewer.lnk?C:\Program Files (x86)\Belgium Identity Card\EidViewer\eID Viewer.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@1 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID\Utilities\MS Office 2010 XAdES XL signature configuration.lnk?C:\Program Files (x86)\Belgium Identity Card\beidoffice2010_XAdES_XL.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@2 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@3 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@4 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@5 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@6 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\GROOVE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@7 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@8 C:\Users\3030319\AppData\Roaming\Microsoft\Windows \Start Menu\Programs\Dropbox\Dropbox.lnk?C:\Users\3030319 \AppData\Roaming\Dropbox\bin\Dropbox.exe?/home?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@9 C:\Users\3030319\AppData\Roaming\Microsoft\Windows \Start Menu\Programs\Popcorn Time\Popcorn Time.lnk?C:\Users\3030319\AppData\Local\Popcorn Time\node-webkit\Popcorn Time.exe?.?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@10 C:\Users\3030319\AppData\Roaming\Microsoft\Windows \Start Menu\Programs\WinRAR\WinRAR.lnk?C:\Program Files (x86)\WinRAR\WinRAR.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@11 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk?C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@12 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2014.lnk?C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@13 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 8.lnk?C:\Program Files (x86)\Nitro\Pro 8\NitroPDF.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@14 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID\eID Viewer.lnk?C:\Program Files (x86)\Belgium Identity Card\EidViewer\eID Viewer.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@15 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID\Utilities\MS Office 2010 XAdES XL signature configuration.lnk?C:\Program Files (x86)\Belgium Identity Card\beidoffice2010_XAdES_XL.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@16 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID\Utilities\MS Outlook registry configuration.lnk?C:\Program Files (x86)\Belgium Identity Card\beidoutlooksnc.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@17 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver.lnk?C:\Program Files (x86)\Citrix\ICA Client\pnagent.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@18 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@19 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube to MP3 Converter.lnk?C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@20 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@21 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe? ?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@22 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk?C:\Progra m Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@23 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in DirectX-modus.lnk?C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe?-setDX?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@24 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth starten in OpenGL-modus.lnk?C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe?-setOGL?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@25 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth verwijderen.lnk?C:\Windows\SysWOW64\msiexec.exe?/x {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@26 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth\Google Earth.lnk?C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@27 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk?C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe?-tab about?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@28 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk?C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe?-tab update?
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@29 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk?C:\Program Files (x86)\Java\jre1.8.0_51\bin\javacpl.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@30 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice\Fotoshow.lnk?C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\Fotoshow.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@31 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kruidvat fotoservice\Kruidvat fotoservice.lnk?C:\Program Files (x86)\Fotoservice\Kruidvat fotoservice\Kruidvat fotoservice.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@32 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Visio 2010.lnk?C:\Program Files (x86)\Microsoft Office\Office14\VISIO.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@33 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Clip Organizer.lnk?C:\Program Files (x86)\Microsoft Office\Office14\MSTORE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@34 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office 2010 Tools\Microsoft Office Picture Manager.lnk?C:\Program Files (x86)\Microsoft Office\Office14\OIS.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@35 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSACCESS.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@36 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@37 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\GROOVE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@38 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\ONENOTE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@39 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@40 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSPUB.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@41 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@42 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@43 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Database Compare 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\DCF\DATABASECOMPARE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@44 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@45 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Spreadsheet Compare 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\DCF\SPREADSHEETCOMPARE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@46 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetriedashboard voor Office 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\msotd.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@47 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Telemetrielogboek voor Office 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\msoev.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@48 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk?C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\Silverlight.Configuration. exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@49 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister\MixMeister Fusion.lnk?C:\Program Files (x86)\MixMeister Fusion\FusionDemo.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@50 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype voor bureaublad.lnk?C:\Program Files (x86)\Skype\Phone\Skype.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@51 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk?C:\WINDOWS\system32\WindowsPowerShe ll\v1.0\powershell.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@52 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ\Rip DVD.lnk?C:\Program Files (x86)\VirtualDJ\ripdvd.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@53 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ\Rip Vinyl.lnk?C:\Program Files (x86)\VirtualDJ\ripvinyl.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@54 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ\Virtual DJ Pro.lnk?C:\Program Files (x86)\VirtualDJ\virtualdj_pro.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@55 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSPUB.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@56 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@57 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@58 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@59 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@60 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@61 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\GROOVE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@62 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSACCESS.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@63 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSACCESS.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@64 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@65 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@66 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@67 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@68 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Database Compare 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\DCF\DATABASECOMPARE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@69 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@70 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Spreadsheet Compare 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\DCF\SPREADSHEETCOMPARE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@71 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\MSACCESS.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@72 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@73 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\ONENOTE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@74 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@75 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@76 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@77 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk?C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\Silverlight.Configuration. exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@78 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@79 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\POWERPNT.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@80 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@81 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@82 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@83 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@84 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\GROOVE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@85 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@86 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@87 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\GROOVE.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@88 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk?C:\Program Files (x86)\Microsoft Office\Office15\lync.exe??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@89 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk?C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE??
    Reg HKCU\Software\Microsoft\Windows\CurrentVersion\UFH \SHC@90 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Hulpprogramma's van Office 2013\Lync opnamebeheer.lnk?C:\Program Files (x86)\Microsoft Office\Office15\OcPubMgr.exe??
    Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows@UserSelectedDefault 1


    ---- EOF - GMER 2.2 ----

  3. #3
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts
    En de HijackTHis log.

    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 13:13:25, on 14/06/2016
    Platform: Unknown Windows (WinNT 6.02.1008)
    MSIE: Internet Explorer v11.0 (11.00.9600.18123)




    Boot mode: Normal


    Running processes:
    C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe
    C:\Program Files (x86)\Citrix\ICA Client\PNAMain.exe
    C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
    C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
    C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
    C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Users\3030319\Downloads\HijackThis.exe


    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.phl.be
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
    O2 - BHO: Symantec Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\bin\IPS\IPSBHO.DLL
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
    O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
    O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKCU\..\Run: [Facebook Update] "C:\Users\3030319\AppData\Local\Facebook\Update\Fa cebookUpdate.exe" /c /nocrashserver
    O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
    O4 - Startup: Dropbox.lnk = C:\Users\3030319\AppData\Roaming\Dropbox\bin\Dropb ox.exe
    O4 - Global Startup: Receiver.lnk = ?
    O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~2\Office15\ONBttnIE.dll/105
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office15\EXCEL.EXE/3000
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
    O9 - Extra button: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
    O9 - Extra 'Tools' menuitem: Lync - klikken om te bellen - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
    O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = student.phlimburg.be
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = student.phlimburg.be
    O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
    O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
    O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
    O23 - Service: @oem2.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
    O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
    O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
    O23 - Service: @oem16.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
    O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: Symantec Endpoint Protection (SepMasterService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin\ccSvcHst.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\Smc.exe
    O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.2015.2015.105\Bin64\snac64.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
    O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


    --
    End of file - 13474 bytes

  4. #4
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 mei 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.183
    Bedankjes
    1.108
    Bedankt
    2.640 keer in 1.710 posts
    Download AdwCleaner by Xplode naar het bureaublad.
    • Sluit alle openstaande vensters.
    • Dubbelklik op AdwCleaner om hem te starten.
    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren,
    • Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Klik vervolgens op Scan.
    • Klik vervolgens op Clean als er items zijn gevonden.
    • Klik bij Herstarten Noodzakelijk op OK


    Nadat de PC opnieuw is opgestart, opent meestal een logfile.
    Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner[S0].txt

  5. De volgende gebruiker bedankt Rosty voor deze nuttige post:

    RobinS (15 juni 2016)

  6. #5
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts
    # AdwCleaner v5.200 - Logbestand aangemaakt 15/06/2016 op 16:59:20
    # Laatste update 14/06/2016 door ToolsLib
    # Database : 2016-06-15.1 [Server]
    # Besturingssysteem : Windows 8.1 Pro (X64)
    # Gebruikersnaam : 3030319 - CNU0295FZJ
    # Gestart vanuit : C:\Users\3030319\Downloads\adwcleaner_5.200.exe
    # Optie : Verwijderen
    # Ondersteuning : https://toolslib.net/forum


    ***** [ Services ] *****




    ***** [ Mappen ] *****


    [-] Map verwijderd : C:\Users\3030319\AppData\Roaming\RHEng


    ***** [ Bestanden ] *****




    ***** [ DLLs ] *****




    ***** [ WMI ] *****




    ***** [ Snelkoppelingen ] *****




    ***** [ Geplande taken ] *****




    ***** [ Register ] *****


    [-] Sleutel verwijderd : HKLM\SOFTWARE\Classes\Prod.cap
    [-] Sleutel verwijderd : HKLM\SOFTWARE\Babylon


    ***** [ Internetbrowsers ] *****




    *************************


    :: "Tracing" sleutels verwijderd
    :: Winsock instellingen gereset


    *************************


    C:\AdwCleaner\AdwCleaner[C1].txt - [947 bytes] - [15/06/2016 16:59:20]
    C:\AdwCleaner\AdwCleaner[S1].txt - [976 bytes] - [15/06/2016 16:55:41]


    ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1091 bytes] ##########

  7. #6
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 mei 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.183
    Bedankjes
    1.108
    Bedankt
    2.640 keer in 1.710 posts
    Download TFC/TempFileCleaner
    Downloadlokatie: Dit programma absoluut naar het bureaublad downloaden of anders naar het bureaublad verplaatsen!

    TFC opstarten:
    • Windows 2000 en Windows XP: dubbelklik op TFC.exe.
    • Windows Vista, Windows 7 en Windows 8 rechtsklik op TFC.exe en kies "Als Administrator uitvoeren".

    • Niet schrikken - het tool sluit alle lopende programma's - ergo: verzeker je dus ervan, dat je werk al is opgeslagen!
    • Vervolgens klik je op de knop Start om de scan te starten. Deze scan kan kort of langer duren, wees geduldig en laat TFC zijn taak doen en wacht tot TFC klaar is.
    • Indien TFC gereed is, dan kan de melding komen, dat de computer opnieuw opgestart wordt.
    • Gebeurt het afsluiten niet automatisch, start dan zelf de computer opnieuw op.
    • Noot: TFC vertoont geen log!
    • Je mag TFC blijvend gebruiken

  8. #7
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts
    DONE!
    Ter info;

    Getting user folders.

    Stopping running processes.

    Emptying Temp folders.


    User: 3030319
    ->Temp folder emptied: 76391556 bytes
    ->Temporary Internet Files folder emptied: 29446622 bytes
    ->Java cache emptied: 3294227 bytes
    ->Google Chrome cache emptied: 507072966 bytes
    ->Flash cache emptied: 1253 bytes

    User: Administrator
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: All Users

    User: Default
    ->Temp folder emptied: 1624 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default.migrated

    User: Public

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 491975368 bytes
    %systemroot%\system32\config\systemprofile\AppData \Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes

    Emptying RecycleBin. Do not interrupt.

    RecycleBin emptied: 0 bytes
    Process complete!

    Total Files Cleaned = 1 057,00 mb

  9. #8
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 mei 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.183
    Bedankjes
    1.108
    Bedankt
    2.640 keer in 1.710 posts
    En, hoe werkt alles nu?

  10. #9
    Gevorderd   RobinS's schermafbeelding
    Geregistreerd
    17 september 2005
    Locatie
    Limburg
    Berichten
    227
    Bedankjes
    135
    Bedankt
    16 keer in 14 posts
    Alles gaat redelijk vlot nu, bedankt!

    MAAR om even hierop terug te komen, is er aan andere optie?
    - Ik werk nog onder mijn domeinnaam van school, dus het wachtwoord van de laptop kan niet aangepast of gewijzigd worden? Alles zou opnieuw geinstalleerd moeten worden wat niet mijn bedoeling is...

  11. #10
    Spyware Slayer   Rosty's schermafbeelding
    Geregistreerd
    19 mei 2005
    Locatie
    Zandvliet/ Ledegem
    Berichten
    4.183
    Bedankjes
    1.108
    Bedankt
    2.640 keer in 1.710 posts
    Citaat Oorspronkelijk geplaatst door RobinS Bekijk bericht
    Alles gaat redelijk vlot nu, bedankt!

    MAAR om even hierop terug te komen, is er aan andere optie?
    - Ik werk nog onder mijn domeinnaam van school, dus het wachtwoord van de laptop kan niet aangepast of gewijzigd worden? Alles zou opnieuw geinstalleerd moeten worden wat niet mijn bedoeling is...
    En kan dat ook niet verandert worden via school?

Discussie informatie

Users Browsing this Thread

Momenteel bekijken 1 gebruikers deze discussie. (0 leden en 1 gasten)

Soortgelijke discussies

  1. 1 laptop werkt maar de kleine laptop wil ik ook doen werken
    Door bryana-fay in forum Netwerken en internetproviders
    Reacties: 4
    Laatste bericht: 29 november 2011, 18:12
  2. Laptop heeft blauw scherm bij opstarten
    Door caro65 in forum Processoren, moederborden en geheugen
    Reacties: 8
    Laatste bericht: 13 mei 2009, 21:27
  3. Tab functie in Firefox nog beter doen werken
    Door gertj3 in forum Tips & Trucs
    Reacties: 0
    Laatste bericht: 18 juli 2007, 11:45
  4. hoe oudere versie Incredimail terug doen werken?
    Door novice in forum Internet
    Reacties: 1
    Laatste bericht: 22 mei 2007, 17:38
  5. kan ik deze nog rapper doen werken
    Door kir2 in forum Processoren, moederborden en geheugen
    Reacties: 10
    Laatste bericht: 24 november 2006, 09:21

Favorieten/bladwijzers

Favorieten/bladwijzers

Regels voor berichten

  • Je mag geen nieuwe discussies starten
  • Je mag niet reageren op berichten
  • Je mag geen bijlagen versturen
  • Je mag niet je berichten bewerken
  •