reimage.com

[sacho]

Superantivirus?
Start eens Ccleaner. en doe deze twee eens, volg de rode en groene pijlen.
Plaats deze twee bestanden door te kopïeren en plakken.

[garene]

Sacho,
Ik zal dat toepassen van zodra ik weer last krijg van dat reimage-gedoe.
Bedankt voor de goede raad en hulp.

[garene]

Het loopt nu de spuitgaten uit. Als ik chrome opstart en op een bladwijze klik draait het scherm weg en komt Google steeds ter voorschijn.
Heb Adwcleaner gelanceerd, Malwarebytes. Zodra ik iets aan klik krijg ik publiciteit in nieuwe tabbladen. Ook berichten van Proximus die zeggen dat mijn Windows 7 verouderd is etc.

Sony, kan je mij meer uitleg geven aub over de rode en groene pijltjes ?
Dank u.

[sacho]

Start Ccleaner, gereedschap tab programma's deinstalleren.
Dan klikt u op opslaan als tekstbericht.
Hetzelfde met tab opstarten.
Plaast deze twee logs eens hier om te zien wat er verkeerd staat op uw computer.
Waarom plaatst u de log niet van ADW cleaner zodat we kunnen zien of het goed is uitgevoerd.

[garene]

OK, hier is het :
startup :
ABBYY FineReader 6.0 Sprint ABBYY Software House 2/05/2013 116 MB 6.00.2146.41621
Adobe Acrobat Reader DC Adobe Systems Incorporated 21/01/2017 207 MB 15.023.20056
Adobe AIR Adobe Systems Incorporated 14/10/2011 3.0.0.4080
Adobe Flash Player 17 ActiveX Adobe Systems Incorporated 8/04/2015 6,00 MB 17.0.0.134
Apple Application Support (32 bits) Apple Inc. 6/07/2015 96,0 MB 3.2
Apple Application Support (64 bits) Apple Inc. 6/07/2015 109 MB 3.2
Apple Software Update Apple Inc. 9/05/2016 2,69 MB 2.2.0.150
Audacity 2.0.3 Audacity Team 12/07/2013 44,1 MB 2.0.3
Belgium e-ID middleware 4.0.7 (build 7466) Belgian Government 10/05/2015 27,8 MB 4.0.7466
Bonjour Apple Inc. 11/12/2014 2,66 MB 3.0.0.10
CCleaner Piriform 31/07/2015 5.08
Contrôle ActiveX Windows Live Mesh pour connexions à distance Microsoft Corporation 18/07/2011 5,57 MB 15.4.5722.2
Corel Paint Shop Pro Photo XI Corel Inc 6/09/2012 217 MB 11.00.0000
CyberLink YouCam 5 CyberLink Corp. 13/12/2011 317 MB 5.0.1108
Dolby Home Theater v4 Dolby Laboratories Inc 13/12/2011 28,0 MB 7.2.7000.4
FileZilla Client 3.19.0 Tim Kosse 27/07/2016 22,3 MB 3.19.0
Google Chrome Google Inc. 28/02/2014 56.0.2924.87
Google Earth Google 5/02/2017 90,7 MB 7.1.8.3036
Google Toolbar for Internet Explorer Google Inc. 28/11/2016 7.5.8231.2252
HomeBank Off-Line 5.32 ING Belgium 12/09/2012 47,5 MB
HP LaserJet Professional P1100-P1560-P1600 Series 24/08/2013
Intel(R) Management Engine Components Intel Corporation 9/02/2017 7.0.0.1144
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Intel Corporation 13/12/2011 87,9 MB 1.0.0.0454
Intel(R) PROSet/Wireless WiFi Software Intel Corporation 13/12/2011 130 MB 14.01.1000
Intel(R) Rapid Storage Technology Intel Corporation 11/10/2016 10.1.0.1008
IrfanView (remove only) Irfan Skiljan 14/09/2012 1,50 MB 4.32
Jasc Animation Shop 3 Jasc Software Inc 14/09/2012 15,0 MB 3.11
Java 8 Update 101 Oracle Corporation 19/08/2016 93,2 MB 8.0.1010.13
Malwarebytes version 3.0.6.1469 Malwarebytes 13/02/2017 150 MB 3.0.6.1469
Medion Home Cinema CyberLink Corp. 13/12/2011 37,3 MB 8.0.3216
Microsoft .NET Framework 4.5.2 Microsoft Corporation 16/02/2015 38,8 MB 4.5.51209
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 19/10/2014 1,59 MB 4.0.40804.0
Microsoft Office 2010 Microsoft Corporation 18/07/2011 6,31 MB 14.0.4763.1000
Microsoft Office Click-to-Run 2010 Microsoft Corporation 7/09/2012 14.0.4763.1000
Microsoft Office Enterprise 2007 Microsoft Corporation 8/09/2012 12.0.6612.1000
Microsoft Office File Validation Add-In Microsoft Corporation 14/06/2016 10,9 MB 14.0.5130.5003
Microsoft Office Starter 2010 - English Microsoft Corporation 7/09/2012 14.0.4763.1000
Microsoft OneDrive Microsoft Corporation 24/07/2016 43,2 MB 17.3.6390.0509
Microsoft Silverlight Microsoft Corporation 12/10/2016 596 MB 5.1.50901.0
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 9/02/2017 236 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 9/04/2015 788 KB 9.0.30729.6161
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 13/12/2011 1,34 MB 4.20.9876.0
NVIDIA GeForce Experience 2.1.1.1 NVIDIA Corporation 2/09/2014 2.1.1.1
NVIDIA Graphics Driver 354.35 NVIDIA Corporation 15/02/2016 354.35
NVIDIA HD Audio Driver 1.3.34.4 NVIDIA Corporation 16/02/2016 1.3.34.4
NVIDIA PhysX System Software 9.15.0428 NVIDIA Corporation 30/07/2015 9.15.0428
QuickTime 7 Apple Inc. 9/05/2016 69,1 MB 7.79.80.95
Realtek Ethernet Controller Driver For Windows 7 Realtek 13/12/2011 7.23.623.2010
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 13/12/2011 6.0.1.6378
Realtek USB 2.0 Reader Driver Realtek Semiconductor Corp. 13/12/2011 6.1.7600.10008
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 13/12/2011 1,02 MB 2.0.4.0
Spelling Dictionaries Support For Adobe Reader X Adobe Systems Incorporated 18/07/2011 65,5 MB 10.0.0
Sqirlz Water Reflections xiberpix 24/10/2012 2.6
Synaptics Pointing Device Driver Synaptics Incorporated 13/12/2011 46,4 MB 15.1.14.0
System Control Manager Micro-Star International Co., Ltd. 13/12/2011 2.210.1104.M007.02
Windows Driver Package - Fedict SmartCard (04/30/2014 4.0.7.5) Fedict 10/05/2015 04/30/2014 4.0.7.5
Windows Live Essentials Microsoft Corporation 18/07/2011 15.4.3538.0513
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 18/07/2011 5,37 MB 15.4.5722.2
Yahoo! Install Manager 6/09/2012
Yahoo! Software Update 11/10/2012

install :
Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKCU:Run swg Google Inc. "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
No HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
No HKLM:Run AVG_UI "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
Yes HKLM:Run BTMTrayAgent Microsoft Corporation rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
Yes HKLM:Run Dolby Home Theater v4 Dolby Laboratories Inc. "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
Yes HKLM:Run GrooveMonitor Microsoft Corporation "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Yes HKLM:Run HPUsageTrackingLEDM Hewlett-Packard Company "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
Yes HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
Yes HKLM:Run IntelPAN Intel(R) Corporation "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
Yes HKLM:Run lxddamon Lexmark International, Inc. "C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddamon.exe"
Yes HKLM:Run lxddmon.exe Lexmark International, Inc. "C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddmon.exe"
Yes HKLM:Run Malwarebytes TrayApp Malwarebytes C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
Yes HKLM:Run MGSysCtrl Micro-Star International Co., Ltd. C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
Yes HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
No HKLM:Run Panda Security URL Filtering "C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filtering.exe"
No HKLM:Run PSUAMain Panda Security, S.L. "C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAMain.exe" /LaunchSysTray
Yes HKLM:Run RtHDVBg Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4
Yes HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
Yes HKLM:Run ShadowPlay Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Yes HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
Yes Startup User OneNote 2007 Screen Clipper and Launcher.lnk Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

PS. Panda kan ik niet verwijderen[/b]

[Sony]

garene,

In CCleaner,
Klik op Opties
Klik op Bewaking
Verwijder daar al de vinkjes , het programma zal protesteren , toch de
vinkjes verwijderen.
De computer terug opstarten.
Kijk met verkenner eens bij C:\AdwCleaner\ AdwCleaner[CX].txt – (met de recentste datum ) (X staat voor een cijfer).
Dat is de log van AdwCleaner zet die eens in een volgend bericht.

Sony

[sacho]

Voor die panda's: ccleaner, gereedschap tab opstarten.
alle twee aanklikken en dan waarde verwijderen.

Welke antivirus is daar actief?

Ccleaner is al lang niet meer geupdated.
Daar staat niks op wat de oorzaak kan zijn van uw probleem.

En zeker eens doen wat Sony zegt.

[garene]

AdwCleaner v6.043 - Logfile created 14/02/2017 at 12:35:04
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-13.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Renée - RENÉE-PC
# Running from : C:\Users\Renée\Downloads\adwcleaner_6.043 (1).exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
------------------------------------------------------------------------------------
AdwCleaner v6.043 - Logfile created 14/02/2017 at 12:26:58
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-13.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Renée - RENÉE-PC
# Running from : C:\Users\Renée\Downloads\adwcleaner_6.043 (1).exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

No malicious services found.


***** [ Folders ] *****

No malicious folders found.


***** [ Files ] *****

No malicious files found.


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

Key Found: HKU\S-1-5-21-150848416-3556657415-3564201656-1000\Software\AppDataLow\Software\adawarebp
Key Found: HKCU\Software\AppDataLow\Software\adawarebp
Key Found: [x64] HKCU\Software\AppDataLow\Software\adawarebp


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2807 Bytes] - [09/02/2017 13:18:50]
C:\AdwCleaner\AdwCleaner[S0].txt - [2680 Bytes] - [09/02/2017 13:17:49]
C:\AdwCleaner\AdwCleaner[S1].txt - [1346 Bytes] - [14/02/2017 12:26:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1419 Bytes]
---------------------------------------------------------------------------------
Ik heb alle antivirusprogramma's verwijderd.

[Sony]

garene,

Mode: Scan

Je hebt alleen laten scannen en niet laten verwijderen, herhaal de bewerking
eerst scannen en dan op verwijderen klikken, en aub plaats de nieuwe log
na het verwijderen hier in een volgende bericht.

Sony

[garene]

Dit is de laatste cleaning, er werd niets gevonden :
# AdwCleaner v6.043 - Logfile created 16/02/2017 at 11:38:32
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-13.1 [Local]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Renée - RENÉE-PC
# Running from : C:\Users\Renée\Downloads\adwcleaner_6.043 (2).exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious keys found.
***** [ Shortcuts ] *****
No infected shortcut found.
***** [ Scheduled Tasks ] *****
No malicious task found.
***** [ Registry ] *****
No malicious registry entries found.


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2807 Bytes] - [09/02/2017 13:18:50]
C:\AdwCleaner\AdwCleaner[C2].txt - [1408 Bytes] - [14/02/2017 12:35:04]
C:\AdwCleaner\AdwCleaner[S0].txt - [2680 Bytes] - [09/02/2017 13:17:49]
C:\AdwCleaner\AdwCleaner[S1].txt - [1502 Bytes] - [14/02/2017 12:26:58]
C:\AdwCleaner\AdwCleaner[S2].txt - [1311 Bytes] - [16/02/2017 11:38:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1384 Bytes] ##########

[Sony]

garene,

OK, hoe is de situatie nu met je computer ?

Start AdwCleaner nog eens op,
Klik van boven op bestand
klik op Deïnstalleren.
Zo verwijder ja alls van AdwCleaner van je computer
als je dat nog moet gebruiken moet je die toch terug downloaden
en heb je steeds de juiste/laatste log ter beschikking.

Sony

[garene]

Hopeloos !
reimage steekt nog de kop, het bericht zegt dat mijn pc besmet is met 3virussen en stelt voor om Windows 7 te herstellen.
Doe ik het of niet ?
Ik krijg mails van Printerest, als ik op een afbeelding klik, van zodra de pagina geladen is verdwijnt de pagina en krijg ik de starttab van Google.
Idem als ik klik op bladwijzers.
Wat is er mis ?

[Sony]

garene,

zeker niet uitvoeren.
Maak eens een HijackThis log.
Hoe je dat moet doen kun je lezen op onderstaande link:
http://www.seniorennet.be/forum/viewtopic.php?t=179617
Maak de log en plaats die hier in een nieuw bericht.

Sony

[garene]

Sony,
Ik heb een aantal programma's verwijderd. Gecleaned, heropgestart en reimage is agressiever geworden met pub en waarschuwingen.
Wat kan ik nog doen ? Ik denk dat ik de HD C, D en E zal moeten herformateren.

Dit is de logfile :
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 19:21:27, on 16/02/2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)

FIREFOX: 37.0.1 (x86 nl)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Renée\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.bing.com/search?q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com/search?q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.bing.com/search?q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\RunOnce: [panda4_0dn] reg.exe delete "HKCU\Software\AppDataLow\Software\panda4_0dn" /f (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [panda4_0dn_XP] reg.exe delete "HKCU\Software\panda4_0dn" /f (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [panda4_0dn] reg.exe delete "HKCU\Software\AppDataLow\Software\panda4_0dn" /f (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{DC15C30A-4415-40AD-AA59-720E4633AE56}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\System Control Manager\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: Panda Cloud Antivirus Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUAService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

[verhaegen]

start hjt als administrator
doe een nieuwe scan der mee (do a system scan only)

onderstaande lijnen in hjt opzoeken , en aanvinken

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.bing.com/search?q={searchTerms}

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com/search?q={searchTerms}

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.bing.com/search?q={searchTerms}

O17 - HKLM\System\CCS\Services\Tcpip\..\{DC15C30A-4415-40AD-AA59-720E4633AE56}: NameServer = 8.8.8.8,8.8.4.4

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8

O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 8.8.8.8

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8


klik dan op "fix cheked"

typ in uitvoeren of in het zoekvenster
services.msc en klik op de aangegeven prog
zoek aldaar deze service

- Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe

eenmaal gevonden , dubbelklik der op
dan bij de vermelding "opstarttype"
klik je op dat pijltje dat der staat naas automatis , en verander je dat naar "uitgeschakeld"

sluit het venster als die op uitgeschakeld staat

maak een nieuwe hjt log en plaats die alhier