Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

updates


  • Please log in to reply
20 replies to this topic

#1 jarens

jarens

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 29 May 2017 - 05:33 AM

Please help, Every time I shutdown my computer I get a warning that that there are updates to be installed, but nothing happens so the updates are not installed, this happens every time I shut down always the same 9 updates listed below.

 

KB. 2676562

 “    2871997

 “    3004376

 “    3011780

 “    3031432

 “    3033929

 “    3046269

 “    3068708

 “    3184143

Any help would be much appreciated.

 

Joop



BC AdBot (Login to Remove)

 


#2 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 29 May 2017 - 05:55 AM

Hi,

 

Try to download and install the first update manually:

- if you have Windows 7 32 bits: https://www.microsoft.com/en-us/download/details.aspx?id=29788

- if you have Windows 7 64 bits: https://www.microsoft.com/en-us/download/details.aspx?id=29815

 


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#3 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 29 May 2017 - 10:05 AM

Thank you for the quik reply SleepyDude, no change no mater what I do, the message remains the same. The funny part is the d…. thing is telling me that the update were installed, but when I shutdown  I see that updates are to be installed.

 

Kind regards

Joop



#4 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 29 May 2017 - 10:10 AM

Check Windows System files integrity

  • open the Command Prompt as Administrator (Tutorial)
  • type the following command and press Enter:
    sfc /scannow
    
    Note: This may take some time to finish.

    let me know if it doesn't say "No integrity violations found"

 

 


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#5 hamluis

hamluis

    Moderator


  • Moderator
  • 55,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:10:36 AM

Posted 29 May 2017 - 10:52 AM

Thank you for the quik reply SleepyDude, no change no mater what I do, the message remains the same. The funny part is the d…. thing is telling me that the update were installed, but when I shutdown  I see that updates are to be installed.

 

 

If you see the screen that I believe you see...part of the message is also to not shut down and to await the installation of updates.  Did you follow that request?

 

Louis



#6 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 30 May 2017 - 01:54 AM

SleepyDude, as soon as I press enter after "C:\Windows\system32>" get a message ( Herstelservice can niet worden gestart. ) which means in Dutch, Restore service can not be started.

 

hamluis, I have been seeing that message every time I shutdown the computer, the same updates.

 

Regards

 

Joop



#7 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 30 May 2017 - 03:16 AM

Hi,

 

Lets see if we can collect more information about what is going on...

 

Download MiniToolBox and save the file to the Desktop.
Close the browser and run the tool, click Yes to accept the Commercial disclaimer and then check the following options:

 

  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (select Only Problems)
  • List Users, Partitions and Memory size
  • List Minidump Files
  • List Restore Points

Click on Go.

 

Post the resulting log in your next reply.


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#8 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 30 May 2017 - 04:44 AM

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Joop (administrator) on 30-05-2017 at 11:40:06
Running from "C:\Users\Joop\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: MS-7680 Manufacturer: MSI

Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/30/2017 11:12:06 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service) (User: )
Description: De index kan niet worden geïnitialiseerd.
Details:      De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service) (User: )
Description: De toepassing kan niet worden geïnitialiseerd.
Context: toepassing Windows
Details:     De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service) (User: )
Description: Het object van de gegevensverzamelaar kan niet worden geïnitialiseerd.
Context: toepassing Windows, catalogus SystemIndex
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service) (User: )
Description: De invoegtoepassing in <Search.TripoliIndexer> kan niet worden geïnitialiseerd.
Context: toepassing Windows, catalogus SystemIndex
Details:    Kan element niet vinden.  (HRESULT : 0x80070490) (0x80070490)

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service) (User: )
Description: De invoegtoepassing in <Search.JetPropStore> kan niet worden geïnitialiseerd.
Context: toepassing Windows, catalogus SystemIndex
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service) (User: )
Description: De Windows Search-service kan de gegevens van het eigenschappenarchief niet laden.
Context: toepassing Windows, catalogus SystemIndex
Details:    De database met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service) (User: )
Description: De Windows Search-service wordt gestopt vanwege een probleem met de indexeerfunctie, The catalog is corrupt.
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service) (User: )
Description: De zoekservice heeft beschadigde gegevensbestanden ontdekt in de index {id=4700}. De service probeert dit probleem automatisch te verhelpen door de index opnieuw samen te stellen.
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:40 AM) (Source: Windows Search Service) (User: )
Description: Het Jet-eigenschappenarchief kan niet worden geopend door de Windows Search-service.
Details:    0x%08x (0xc0041800 - De database met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041800))

System errors:
=============
Error: (05/30/2017 11:09:12 AM) (Source: BugCheck) (User: )
Description: 0x0000007e (0xffffffffc0000005, 0x0000000000000000, 0xfffff880033a0dc8, 0xfffff880033a0620)C:\Windows\MEMORY.DMP053017-27284-01

Error: (05/30/2017 11:09:11 AM) (Source: EventLog) (User: )
Description: De vorige afsluiting van het systeem om 11:07:04 op ‎30-‎5-‎2017 is onverwacht gebeurd.

Error: (05/30/2017 10:26:46 AM) (Source: Service Control Manager) (User: )
Description: De Windows Search-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 30000 milliseconden worden uitgevoerd: Service opnieuw starten.

Error: (05/30/2017 10:26:44 AM) (Source: Service Control Manager) (User: )
Description: De Windows Search-service is gestopt met de specifieke servicefout %%-1073473535.

Error: (05/30/2017 10:23:05 AM) (Source: Service Control Manager) (User: )
Description: De Avast Antivirus-service kan vanwege de volgende fout niet worden gestart:
%%1053 = De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Error: (05/30/2017 10:23:05 AM) (Source: Service Control Manager) (User: )
Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Avast Antivirus.

Error: (05/30/2017 10:22:34 AM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa8007aca4e0, 0xfffff8800f44f5f8, 0x0000000000000000, 0x0000000000000002)C:\Windows\MEMORY.DMP053017-36707-01

Error: (05/30/2017 10:22:33 AM) (Source: EventLog) (User: )
Description: De vorige afsluiting van het systeem om 10:13:44 op ‎30-‎5-‎2017 is onverwacht gebeurd.

Error: (05/30/2017 08:16:53 AM) (Source: Service Control Manager) (User: )
Description: De Windows Update-service is bij het starten vastgelopen.

Error: (05/30/2017 08:11:26 AM) (Source: Service Control Manager) (User: )
Description: De avgbIDSAgent-service kan vanwege de volgende fout niet worden gestart:
%%1053 = De service heeft de start- of stuuropdracht niet op juiste wijze beantwoord.

Microsoft Office Sessions:
=========================
Error: (05/30/2017 11:12:06 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service)(User: )
Description:
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service)(User: )
Description: Context: toepassing Windows
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service)(User: )
Description: Context: toepassing Windows, catalogus SystemIndex
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/30/2017 10:26:43 AM) (Source: Windows Search Service)(User: )
Description: Context: toepassing Windows, catalogus SystemIndex
Details:    Kan element niet vinden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service)(User: )
Description: Context: toepassing Windows, catalogus SystemIndex
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801).  Search.JetPropStore

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service)(User: )
Description: Context: toepassing Windows, catalogus SystemIndex
Details:    De database met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service)(User: )
Description:
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801) The catalog is corrupt

Error: (05/30/2017 10:26:41 AM) (Source: Windows Search Service)(User: )
Description:
Details:    De catalogus met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041801) (0xc0041801)  4700

Error: (05/30/2017 10:26:40 AM) (Source: Windows Search Service)(User: )
Description:
Details:     0x%08x (0xc0041800 - De database met de inhoudsindex is beschadigd.  (HRESULT : 0xc0041800))

CodeIntegrity Errors:
===================================
  Date: 2017-05-05 17:00:52.565
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 17:00:52.453
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 17:00:49.494
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 17:00:49.360
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 17:00:47.993
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiBus.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 17:00:47.882
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiBus.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 16:45:03.754
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 16:45:03.598
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiK0C2D.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 16:44:55.455
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiBus.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

  Date: 2017-05-05 16:44:55.315
  Description: De integriteit van de kopie van het bestand \Device\HarddiskVolume2\Windows\System32\drivers\SaiBus.sys kan niet worden geverifieerd omdat de bestands-hash niet is gevonden op het systeem. Tijdens een recente hardware- of softwarewijziging is mogelijk een bestand geïnstalleerd dat onjuist ondertekend of beschadigd is, of dat mogelijk kwaadwillende software van een onbekende bron is.

=========================== Installed Programs ============================
ABC Islands X-Generation 2.0 (HKLM-x32\...\tsimabcx) (Version:  - )
Acronis True Image WD Edition (HKLM-x32\...\{18C886B4-AE66-41C9-BD4D-B5AEDF52A4C1}) (Version: 18.0.6126 - Acronis)
Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe® Photoshop® Album Starter Edition 3.2 (HKLM-x32\...\Adobe® Photoshop® Album Starter Edition 3.2) (Version: 3.2.0 - http://www.adobe.com)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AVG (HKLM\...\{67975182-2130-493C-A58F-7C2604B8852A}) (Version: 1.191.1 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\{149D912F-03DB-4895-913E-820CB11965C0}) (Version: 16.74.1 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies)
AVG Protection (HKLM-x32\...\AVG Antivirus) (Version: 17.4.3014 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)

Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.2.0 - Canon Inc.)
Canon MG6800 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6800_series) (Version: 1.00 - Canon Inc.)
Canon MG6800 series On-screen Manual (HKLM-x32\...\Canon MG6800 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.2 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DriverNavigator 3.6.9 (HKLM\...\DriverNavigator_is1) (Version: 3.6.9.0 - Easeware)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Fieseler Storch X (HKLM-x32\...\Fieseler Storch X1.0) (Version: 1.0 - FSAddon Publishing)
Fighters (HKLM-x32\...\{281F536B-793F-4579-A1F2-3D4BD37C27E0}) (Version: 4.5.155 - SPAMFIGHTER ApS) Hidden
FMW 1 (HKLM\...\{8AD6BA27-BBD3-4EA8-82D6-5E60AADC57AC}) (Version: 1.202.1 - AVG Technologies) Hidden
FSC (HKLM-x32\...\{2A9A269C-1C36-493C-96D8-60B23FAB2E10}) (Version: 9.6 - FlightSim Commander Team)
FSFDT FSCopilot (HKLM-x32\...\FSFDT FSCopilot) (Version:  - )
FSFDT FSInn (HKLM-x32\...\FSFDT FSInn) (Version:  - )
FSMMovingMap (HKLM-x32\...\FSMMovingMap) (Version:  - )
FSTrampFree (HKLM-x32\...\{0B3EAF6B-BBF1-45EF-B4DA-D16DC7574507}_is1) (Version: 6.20 - Team FSTramp)
Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.3 - Gadwin Systems, Inc.)
Gebruikersregistratie voor Canon MG6800 series (HKLM-x32\...\Gebruikersregistratie voor Canon MG6800 series) (Version:  - ‭Canon Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
IvAp v2.0.2 (build 2773) (HKLM-x32\...\IvAp-v2_is1) (Version:  - IVAO)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-stuurprogrammapakket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Malwarebytes versie 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.60905.0 (HKLM-x32\...\{D1AC9B0B-2727-4811-91DC-1FC3C4E47A9B}) (Version: 10.0.60905.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator X (HKLM-x32\...\InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}) (Version: 10.0.61355.0 - Microsoft Game Studios)
Microsoft Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1_9527A496-5DF9-412A-ADC7-168BA5379CA6) (Version: 10.0.61355.0 - Microsoft Game Studios)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Word 2000 (HKLM-x32\...\{00170413-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 53.0.3 (x86 nl) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 nl)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA 3D Vision controllerstuurprogramma 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision stuurprogramma 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation)
NVIDIA Grafisch stuurprogramma 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA PhysX systeemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
PCCloneEx Lite+ (HKLM-x32\...\PCCloneEx Lite+) (Version:  - )
RCS B-25J "Yellow Rose" (HKLM-x32\...\RCS B-25J "Yellow Rose") (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
SafeZone Stable 3.55.2393.596 (HKLM-x32\...\SafeZone 3.55.2393.596) (Version: 3.55.2393.596 - Avast Software) Hidden
Saitek ProFlight Fsx Plugin 7.0.50.1 (HKLM\...\{918582C7-0F0E-4FA1-A49C-65CA9864DDD8}) (Version: 7.0.50.1 - Saitek)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.47.1 (HKLM\...\{D5D03CAA-7141-48D8-9FF5-3F3CEFD475E1}) (Version: 7.0.47.1 - Mad Catz)
SPAMfighter (HKLM-x32\...\{68E76A24-44C6-49C3-A5E1-9C95A693B4D7}) (Version: 7.6.130 - Spamfighter ApS) Hidden
SPAMfighter (HKLM-x32\...\SPAMfighter) (Version: 7.6.130 - Spamfighter ApS)
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SPYWAREfighter (HKLM-x32\...\SPYWAREfighter) (Version: 4.5.155 - SPAMFIGHTER ApS)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

========================= Devices: ================================


========================= Memory info: ===================================
Percentage of memory in use: 59%
Total physical RAM: 4077.56 MB
Available physical RAM: 1631.75 MB
Total Virtual: 8153.31 MB
Available Virtual: 5576.29 MB

========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:465.66 GB) (Free:274.51 GB) NTFS
2 Drive d: () (CDROM) (Total:4.37 GB) (Free:3.88 GB) UDF

========================= Users: ========================================
Gebruikersaccounts voor \\JOOP-PC

Administrator            Gast                     Joop                     
De opdracht is voltooid.

========================= Minidump Files ==================================
C:\Windows\Minidump\053017-27284-01.dmp
C:\Windows\Minidump\053017-36707-01.dmp

**** End of log ****

 

I hope this help


Edited by hamluis, 31 May 2017 - 11:43 AM.


#9 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 30 May 2017 - 06:29 AM

Hi,

 

One problem I see on the logs is that you have more than one Antivirus installed: AVG and Avast

 

Contrary to what some people think, having more than one antivirus program doesn't give you more protection. With several Real-Time protections active the computer becomes slower accessing files and could crash due to resource conflicting, also you could get False Alarms when one AV starts identifying as virus the files from the other antivirus program.

Before continue we need to address that problem and choose only one of those antivirus programs to keep, the other two need to be removed.
AVG and Avast can have paid subscriptions, I need you to confirm if you paid for any one of this two and if the subscription you have is still valid.

 

If you are using only the free versions please select one to keep and tell me which one you choose.


Edited by SleepyDude, 30 May 2017 - 06:29 AM.

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#10 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 30 May 2017 - 08:26 AM

Well some good news Sleepy/Dude, I don't see the updates any more when shuting down, and the computer is faster starting-up. Have Avast free Antivirus, and Avast Safe Zone Browser which is pay ware.

 

regards

Joop



#11 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 30 May 2017 - 08:58 AM

Well some good news Sleepy/Dude, I don't see the updates any more when shuting down, and the computer is faster starting-up. Have Avast free Antivirus, and Avast Safe Zone Browser which is pay ware.

 

Good. Did you remove AVG?

 

You should run the AVG Remover tool to make sure that all leftovers of AVG are gone.


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#12 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 30 May 2017 - 09:58 AM

It is clean of AVG, I may have been a little hasty about the updates, If I go to all programs click on windows update, I still see 8 updates there?? 23kb and the last one is 92kb??



#13 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 30 May 2017 - 10:50 AM

Try to install the July 2016 Rollup updated on September 2016

http://www.microsoft.com/en-us/download/details.aspx?id=53335

 

It contains the latest Windows Upate client and makes WU supposedly work better.


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#14 jarens

jarens
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Netherlands
  • Local time:04:36 PM

Posted 31 May 2017 - 03:22 AM

If you mean KB3172605, cant install this, get message that it's not compatable for my computer??



#15 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:04:36 PM

Posted 31 May 2017 - 03:59 AM

If you mean KB3172605, cant install this, get message that it's not compatable for my computer??

 

Sorry I provided the wrong link for x86 not x64!

 

The correct one is https://www.microsoft.com/en-us/download/details.aspx?id=53332


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users