avast

Status
Niet open voor verdere reacties.
T

theeke1958

hoi ik las hier op de site over avast 6 internet security als ik die instaleer krijg ik de melding als ik op internet explorer kan pagina niet vinden .maar dit heeft waarschinlijk te maken met webreb .hoe kan dat.of doe ik iets fout.kan ik trouwens naast microsoft security essentials die ik nu even heb geinstaleerd ander virusscanner laten draaien.
groetjes theeke
 
Dag theeke1, webrep is reputatiesoftware .

Voer eens deze stappen uit.

1. Download DDS naar je bureaublad van één van deze locaties.
DDS Bleeping Computer
DDS Bleeping Computer


DDS is een diagnose tooltje dat gebruik maakt van scripts. Schakel daarom eerst je beveiliginssoftware uit vooraleer DDS te gebruiken.
Dubbelklik op DDS om het tooltje te starten.
Hierna zal DDS twee logfiles openen :
- DDS.txt
- Attach.txt

Er zal gevraagd worden om de logjes op te slaan. Wanneer de logjes niet worden opgeslagen worden ze niet automatisch bewaard. Sla de logjes ergens op een locatie van je harde schijf op waar je ze snel terugvind, of sla ze eventueel op het bureaublad op.

2. Download hier MalwareBytes AntiMalware naar je bureaublad. (Uit te voeren als Mbam MalwareBytes nog niet geïnstalleerd is).

Dubbelklik op mbam-setup.exe om het programma te installeren.
Zorg ervoor dat na installatie deze opties aangevinkt zijn:
Update MalwareBytes' Anti-Malware
Start MalwareBytes' Anti-Malware
Klik daarna op Voltooien.

Als er een een update gevonden wordt, zal deze gedownload en geïnstalleerd worden.


Als er gevraagd word of je de "Evaluatie wil starten" mag je deze weigeren, en kun je later nog inschakelen wanneer je hier gebruik wilt van maken.
Zodra het programma gestart is, klik op het tabblad "Instellingen".
Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
Klik dan op het tabblad "Scanner", kies hier voor "Volledige scan".
Klik vervolgens op "Scannen" om de scan te starten.
Het scannen kan een tijdje duren, dus wees geduldig.
Wanneer de scan klaar is, klik op OK,en daarna "Bekijk Resultaten" om de resultaten te zien.
Zorg ervoor dat daar alles aangevinkt is, en klik dan op: "Verwijder geselecteerde".
Na het verwijderen zal een log openen .Wanneer gevraagd word om de computer opnieuw op te starten, sta je dit toe.

Het log wordt automatisch bewaard door MalwareBytes' Anti-Malware en kun je terugvinden door op de "Logbestanden" tab te klikken .

Hijackthis downloaden en installeren:
Surf naar HijackThis - Trend Micro USA en download de installer (2.0.4) naar het bureaublad.
Na het downloaden klik op het icoontje van de installer (HiJackThis.msi) , waardoor hijackThis op de computer zal geinstalleerd worden.
Na installatie zal het icoontje van hijackThis op het bureaublad geplaatst worden.

Hoe een scan uitvoeren met HiJackThis:
Ben je gebruiker van Windows XP klik dan op het icoontje van HJT waardoor het programma zal gestart worden.
Klik onderaan op Main menu en haal het vinkje weg bij Do not show this window when I start HijackThis.
Vervolgens verschijnt het menu.
Klik vervolgens op Do a system scan and save a logfile
Als HJT klaar is met de scan zal automatisch kladblok geopend worden met de inhoud van het logje.
Sla het logje op als type alle bestanden.
Het logje zal hiermee bewaard worden op je computer.
Voeg het logje als bijlage in je bericht, of selecteer gans de inhoud van het logje, en kopieer en plak deze in je bericht.

Ben je gebruiker van Windows Vista of windows7 , dient hijackThis uitgevoerd worden als administrator. Ga hiervoor naar de map C:\Trend Micro\Hijackthis of naar de locatie op je computer waar je HijackThis geïnstalleerd hebt en klik daar rechts op hijackthis.exe en kies voor uitvoeren als administrator.

Voeg in je volgende bericht.
DDS log
Mbam Malwarebytes log
HijackThis log

Belangrijk !!! Niet vergeten na gebruik DDS terug je beveiligingssoftware in te schakelen.
 
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by theo at 21:15:40 on 2012-01-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3885.1818 [GMT 1:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.nl/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://nl.woofi.info
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Partner BHO Class: {83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4} - C:\ProgramData\Partner\Partner.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
uRun: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
mRun: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
StartupFolder: C:\Users\theo\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MAILWA~1.LNK - C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\FANCYS~1.LNK - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SRSPRE~1.LNK - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: buienradar.nl\www
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1 62.179.104.196 213.46.228.196
TCP: Interfaces\{D0C39DFC-B4E8-4587-8254-20A14671EA7C} : DhcpNameServer = 192.168.1.1 62.179.104.196 213.46.228.196
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{9FDDE16B-836F-4806-AB1F-1455CBEFF289}
{AA58ED58-01DD-4d91-8333-CF10577473F7}
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{2318C2B1-4965-11d4-9B18-009027A5CD4F}
mRun-x64: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
mRun-x64: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun-x64: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun-x64: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun-x64: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun-x64: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun-x64: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun-x64: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun-x64: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun-x64: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
.
============= SERVICES / DRIVERS ===============
.
R0 lullaby;lullaby;C:\Windows\system32\DRIVERS\lullaby.sys --> C:\Windows\system32\DRIVERS\lullaby.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R0 PCTCore;PCTools KDS;C:\Windows\system32\drivers\PCTCore64.sys --> C:\Windows\system32\drivers\PCTCore64.sys [?]
R0 TfFsMon;TfFsMon;C:\Windows\system32\drivers\TfFsMon.sys --> C:\Windows\system32\drivers\TfFsMon.sys [?]
R0 TfSysMon;TfSysMon;C:\Windows\system32\drivers\TfSysMon.sys --> C:\Windows\system32\drivers\TfSysMon.sys [?]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys --> C:\Windows\system32\DRIVERS\klim6.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 FileServe Toolbar Helper;FileServe Toolbar Helper;C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe [2011-3-22 224256]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-6-14 13592]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-1-21 652872]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-11-6 2255464]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-8-12 87040]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-3-15 428384]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-12-5 92592]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-11-6 2314240]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-11-28 73728]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys --> C:\Windows\system32\DRIVERS\ETD.sys [?]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys --> C:\Windows\system32\DRIVERS\Impcd.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\system32\DRIVERS\JME.sys --> C:\Windows\system32\DRIVERS\JME.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
R3 MTsensor64;PU ACPI UTILITY;C:\Windows\system32\DRIVERS\PuAcpi64.sys --> C:\Windows\system32\DRIVERS\PuAcpi64.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe --> C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [?]
S2 AFBAgent;AFBAgent; [x]
S2 Amsp;Trend Micro Solution Platform;"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad --> C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe" --> C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-1-7 253600]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\system32\Drivers\ssadadb.sys --> C:\Windows\system32\Drivers\ssadadb.sys [?]
S3 AWiCSrvc;AWiCSrvc;C:\Program Files (x86)\Atheros\AWiCSrvc.exe [2011-5-26 50336]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-28 183560]
S3 HTCAND64;HTC Device Driver;C:\Windows\system32\Drivers\ANDROIDUSB.sys --> C:\Windows\system32\Drivers\ANDROIDUSB.sys [?]
S3 htcnprot;HTC NDIS Protocol Driver;C:\Windows\system32\DRIVERS\htcnprot.sys --> C:\Windows\system32\DRIVERS\htcnprot.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 51740536]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 Partner Service;Partner Service;C:\ProgramData\Partner\Partner.exe [2010-11-6 332272]
S3 pctplsg;pctplsg;\??\C:\Windows\System32\drivers\pctplsg64.sys --> C:\Windows\System32\drivers\pctplsg64.sys [?]
S3 Revoflt;Revoflt;C:\Windows\system32\DRIVERS\revoflt.sys --> C:\Windows\system32\DRIVERS\revoflt.sys [?]
S3 sdAuxService;PC Tools Auxiliary Service;C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe --> C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe [?]
S3 sdCoreService;PC Tools Security Service;C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe --> C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe [?]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\system32\DRIVERS\SiSG664.sys --> C:\Windows\system32\DRIVERS\SiSG664.sys [?]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys --> C:\Windows\system32\DRIVERS\ssadbus.sys [?]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys --> C:\Windows\system32\DRIVERS\ssadmdfl.sys [?]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys --> C:\Windows\system32\DRIVERS\ssadmdm.sys [?]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\system32\DRIVERS\ssadserd.sys --> C:\Windows\system32\DRIVERS\ssadserd.sys [?]
S3 TfNetMon;TfNetMon;\??\C:\Windows\system32\drivers\TfNetMon.sys --> C:\Windows\system32\drivers\TfNetMon.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 Browser Defender Update Service;Browser Defender Update Service;"C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe" --> C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe [?]
S4 ThreatFire;ThreatFire;C:\Program Files (x86)\Spyware Doctor\TFEngine\TFService.exe service --> C:\Program Files (x86)\Spyware Doctor\TFEngine\TFService.exe service [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-01-31 18:59:49 -------- d-----w- C:\Users\theo\AppData\Local\{0C05B79A-5616-4216-AFE8-B6510C2CE3DC}
2012-01-31 18:59:38 -------- d-----w- C:\Users\theo\AppData\Local\{271681B9-8E2B-42DF-A882-A1D5E9208DEF}
2012-01-31 17:49:55 -------- d-----w- C:\Users\theo\AppData\Local\Temp
2012-01-30 20:14:25 -------- d-----w- C:\Program Files (x86)\AVG
2012-01-30 18:46:50 -------- d-----w- C:\Users\theo\AppData\Local\{3DE8D6DE-0113-45D2-A674-1D281A30F53C}
2012-01-30 18:46:39 -------- d-----w- C:\Users\theo\AppData\Local\{D0F014B6-5CCF-4511-AAF6-EDFFED45AEDC}
2012-01-29 16:16:16 -------- d-----w- C:\Program Files (x86)\Common Files\ParetoLogic
2012-01-29 16:16:12 -------- d-----w- C:\Program Files (x86)\ParetoLogic
2012-01-29 15:36:58 917840 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65DD3A62-DBF6-4C11-91FB-2BED36BA32E5}\gapaengine.dll
2012-01-29 15:36:41 8602168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9395D262-E57F-45A9-BD72-8342153F44DF}\mpengine.dll
2012-01-29 15:33:23 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2012-01-29 15:33:15 -------- d-----w- C:\Program Files\Microsoft Security Client
2012-01-29 13:42:23 -------- d-----w- C:\Users\theo\AppData\Local\{221BFEC2-794A-494B-9589-887F412258E0}
2012-01-29 13:42:11 -------- d-----w- C:\Users\theo\AppData\Local\{675B63D7-4B05-4019-8D2C-97F3F1A49E4D}
2012-01-28 23:31:58 -------- d-----w- C:\Users\theo\AppData\Local\uTorrent
2012-01-28 22:56:26 -------- d-----w- C:\Users\theo\AppData\Local\{3156DA13-680B-4332-97A7-7F5740ED2421}
2012-01-28 22:56:14 -------- d-----w- C:\Users\theo\AppData\Local\{1987A57E-4D5A-47BD-941A-91B02741C021}
2012-01-28 08:16:57 -------- d-----w- C:\Users\theo\AppData\Local\{50BF5387-3BF8-4151-A6A3-2E2C1C5F209E}
2012-01-28 08:16:45 -------- d-----w- C:\Users\theo\AppData\Local\{7359AD31-CCE9-461A-B044-E6262E65B84A}
2012-01-27 19:16:41 -------- d-----w- C:\Windows\System32\wbem\Logs
2012-01-27 18:12:29 -------- d-----w- C:\Users\theo\AppData\Local\{0D7D0253-1BE7-47DC-9311-8C781086F185}
2012-01-27 18:12:15 -------- d-----w- C:\Users\theo\AppData\Local\{32D679B4-53B0-4F06-A0B8-79C7D9E7C985}
2012-01-26 19:00:00 -------- d-----w- C:\Users\theo\AppData\Local\Babylon
2012-01-26 18:59:58 -------- d-----w- C:\Users\theo\AppData\Roaming\Babylon
2012-01-26 18:59:58 -------- d-----w- C:\ProgramData\Babylon
2012-01-26 18:59:56 -------- d-----w- C:\Program Files (x86)\Your Uninstaller! 7
2012-01-26 16:19:11 -------- d-----w- C:\Users\theo\AppData\Local\{D308063D-1986-4FC0-8C85-1B1C6D93BB12}
2012-01-26 16:19:00 -------- d-----w- C:\Users\theo\AppData\Local\{D350D851-199E-4EB0-96A0-CD71E0100FDC}
2012-01-25 18:12:57 -------- d-----w- C:\Users\theo\AppData\Local\{57A08078-6D19-4FE2-8DFB-43BF6D2CDE21}
2012-01-25 18:12:38 -------- d-----w- C:\Users\theo\AppData\Local\{06107DF7-EE12-4B80-BE99-1CBD9C0505B5}
2012-01-24 18:32:56 -------- d-----w- C:\Program Files (x86)\Firetrust
2012-01-24 18:08:09 -------- d-----w- C:\Users\theo\AppData\Local\{79BCD92D-317F-4204-99A7-5FC3C029143A}
2012-01-24 18:07:54 -------- d-----w- C:\Users\theo\AppData\Local\{48B89403-10C4-4BAA-92C7-3DAD854FACB9}
2012-01-23 18:56:50 -------- d-----w- C:\Users\theo\AppData\Local\{DDA08424-DFA9-4DFB-BAB7-B4A6B0CA0E25}
2012-01-23 18:56:36 -------- d-----w- C:\Users\theo\AppData\Local\{15D62830-659F-4ABE-83D5-76AFB70D64D8}
2012-01-22 18:45:13 -------- d-----w- C:\ProgramData\ASUS
2012-01-22 14:24:54 15880 ----a-w- C:\Windows\System32\drivers\PuAcpi64.sys
2012-01-22 13:45:31 -------- d-----w- C:\Users\theo\AppData\Local\{0A8538A4-F548-4372-8C9E-498B4A51F9A8}
2012-01-22 13:45:15 -------- d-----w- C:\Users\theo\AppData\Local\{876A08A1-27FA-41CF-BE4C-F4DD07AF5759}
2012-01-22 08:40:17 -------- d-----w- C:\Users\theo\AppData\Roaming\ParetoLogic
2012-01-22 08:40:17 -------- d-----w- C:\Users\theo\AppData\Roaming\DriverCure
2012-01-22 08:40:07 -------- d-----w- C:\ProgramData\ParetoLogic
2012-01-21 23:15:19 -------- d-----w- C:\Users\theo\AppData\Local\{67EDE615-F8B6-4A68-9E2C-8D50042CC53C}
2012-01-21 23:15:08 -------- d-----w- C:\Users\theo\AppData\Local\{0B454181-4D21-4BFF-8D38-002A77B73A68}
2012-01-21 15:08:08 -------- d-----w- C:\ProgramData\AVAST Software
2012-01-21 10:28:41 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2012-01-21 10:28:35 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-01-21 10:28:35 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-01-21 09:40:13 -------- d-----w- C:\Users\theo\AppData\Local\{738B26C3-8F36-4ECE-88D2-29FE52FB4F93}
2012-01-21 09:40:00 -------- d-----w- C:\Users\theo\AppData\Local\{0FB12D15-49E2-462F-A29E-B4B3C69FE161}
2012-01-20 18:16:37 -------- d-----w- C:\Users\theo\AppData\Local\{A03E00DD-359B-4931-B012-043D6928CE94}
2012-01-20 18:16:22 -------- d-----w- C:\Users\theo\AppData\Local\{64CD7399-9A0F-4C5F-9DC1-7E1A2C9E4F2D}
2012-01-19 18:08:28 -------- d-----w- C:\Users\theo\AppData\Local\{9B0AC623-68BB-44CC-B0CB-9E0E6F452EA3}
2012-01-19 18:08:14 -------- d-----w- C:\Users\theo\AppData\Local\{C71EA3C7-C5E3-457E-BC5D-A277C574E39D}
2012-01-18 21:55:58 -------- d-----w- C:\Users\theo\AppData\Local\{01631F1C-CC0C-479A-B033-DD827D00B783}
2012-01-18 21:55:45 -------- d-----w- C:\Users\theo\AppData\Local\{C3CCB702-CF48-4C0A-8F4D-68670F70B2C6}
2012-01-17 18:15:56 -------- d-----w- C:\Users\theo\AppData\Local\{BF32F1F2-7BB3-4467-800E-ABA254A39ABF}
2012-01-17 18:15:36 -------- d-----w- C:\Users\theo\AppData\Local\{924D4452-5794-4943-9F5C-60FB48BAB4A5}
2012-01-16 18:16:57 -------- d-----w- C:\Program Files (x86)\TomTom International B.V
2012-01-16 18:16:42 -------- d-----w- C:\Program Files (x86)\TomTom HOME 2
2012-01-16 18:05:38 -------- d-----w- C:\Users\theo\AppData\Local\{7AB58E8B-18B1-4E4C-95C5-A9CD8EB36960}
2012-01-16 18:05:25 -------- d-----w- C:\Users\theo\AppData\Local\{697E1525-38A2-4813-BCBE-A4F6856F516B}
2012-01-15 20:43:28 -------- d-----w- C:\Users\theo\AppData\Local\{E0A0B2F3-9D70-46E2-89D4-DD4CE0296352}
2012-01-15 20:43:16 -------- d-----w- C:\Users\theo\AppData\Local\{4CEEFBD8-CAA0-4673-91A3-C0675A97EA8B}
2012-01-15 08:31:39 -------- d-----w- C:\Users\theo\AppData\Local\{1DCF2DE3-908B-41D1-B4A4-EB8FC44E47C0}
2012-01-15 08:31:28 -------- d-----w- C:\Users\theo\AppData\Local\{079A78FD-1DC5-4D64-9D5B-42CAA5B42D42}
2012-01-14 20:31:01 -------- d-----w- C:\Users\theo\AppData\Local\{D3363C46-CAB8-4AF6-ACE0-61979BBC28A2}
2012-01-14 20:30:49 -------- d-----w- C:\Users\theo\AppData\Local\{964FC719-07BF-4C08-A215-D6D5C66DBB89}
2012-01-14 13:18:17 -------- d-----w- C:\Users\theo\AppData\Local\Samsung
2012-01-14 13:17:57 -------- d-----w- C:\Users\theo\AppData\Roaming\Samsung
2012-01-14 13:07:44 1917416 ----a-w- C:\Windows\System32\WdfCoInstaller01005.dll
2012-01-14 13:07:44 1917416 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01005.dll
2012-01-14 13:07:44 177640 ----a-w- C:\Windows\System32\drivers\ssadmdm.sys
2012-01-14 13:07:44 16872 ----a-w- C:\Windows\System32\drivers\ssadmdfl.sys
2012-01-14 13:07:44 157672 ----a-w- C:\Windows\System32\drivers\ssadbus.sys
2012-01-14 13:07:44 13800 ----a-w- C:\Windows\System32\drivers\ssadwhnt.sys
2012-01-14 13:07:44 13800 ----a-w- C:\Windows\System32\drivers\ssadwh.sys
2012-01-14 13:07:44 13288 ----a-w- C:\Windows\System32\drivers\ssadcmnt.sys
2012-01-14 13:07:44 13288 ----a-w- C:\Windows\System32\drivers\ssadcm.sys
2012-01-14 13:07:43 36328 ----a-w- C:\Windows\System32\drivers\ssadadb.sys
2012-01-14 13:07:43 146920 ----a-w- C:\Windows\System32\drivers\ssadserd.sys
2012-01-14 13:01:48 -------- d-----w- C:\Windows\System32\catroot2
2012-01-14 13:00:34 4659712 ----a-w- C:\Windows\SysWow64\Redemption.dll
2012-01-14 13:00:05 821824 ----a-w- C:\Windows\SysWow64\dgderapi.dll
2012-01-14 13:00:05 -------- d-----w- C:\Program Files (x86)\MarkAny
2012-01-14 12:59:36 -------- d-----w- C:\ProgramData\Samsung
2012-01-14 12:59:36 -------- d-----w- C:\Program Files (x86)\Samsung
2012-01-14 08:05:32 -------- d-----w- C:\Users\theo\AppData\Local\{27FF4418-7711-49E9-BF41-CEE077EEEFFF}
2012-01-14 08:05:18 -------- d-----w- C:\Users\theo\AppData\Local\{4988FEC8-EF7E-4AFD-9353-5296AD18606C}
2012-01-13 20:54:38 -------- d-----w- C:\ProgramData\TomTom
2012-01-13 20:43:32 18432 ----a-w- C:\Windows\System32\drivers\NTIDrvr.sys
2012-01-13 20:43:32 16896 ----a-w- C:\Windows\System32\drivers\UBHelper.sys
2012-01-13 17:51:28 -------- d-----w- C:\Users\theo\AppData\Local\{9BFA131D-7CCB-470B-8EF3-5BF8B41F6FFB}
2012-01-13 17:51:02 -------- d-----w- C:\Users\theo\AppData\Local\{7BC7569A-4408-4480-8997-0717A97095CF}
2012-01-12 21:40:40 -------- d-----w- C:\Windows\SoftwareDistributionold
2012-01-12 18:59:46 -------- d-----w- C:\ProgramData\Ocster Backup
2012-01-12 18:22:17 -------- d-----w- C:\Users\theo\AppData\Local\{9DCEEBE5-D14C-4714-8205-2A500B43A8C8}
2012-01-12 18:22:04 -------- d-----w- C:\Users\theo\AppData\Local\{40425E11-CC6A-454F-A143-9E379A8973D7}
2012-01-12 00:16:24 -------- d-----w- C:\Users\theo\AppData\Local\{0A5DE030-B69F-47E1-A674-5F4F19926281}
2012-01-12 00:16:13 -------- d-----w- C:\Users\theo\AppData\Local\{1B885023-BA3C-47F1-B57B-76AA9EB59C84}
2012-01-11 21:17:01 -------- d-----w- C:\Users\theo\AppData\Local\{B56777F6-61E2-4F36-A049-B627CAB3D2AC}
2012-01-11 21:16:49 -------- d-----w- C:\Users\theo\AppData\Local\{406AA5B8-AA34-4011-8802-94D93B7EE149}
2012-01-11 20:01:24 -------- d-----w- C:\Users\theo\AppData\Roaming\Windows Live Writer
2012-01-11 20:01:24 -------- d-----w- C:\Users\theo\AppData\Local\Windows Live Writer
2012-01-11 18:25:03 -------- d-----w- C:\Users\theo\AppData\Local\{9E63D8FB-4BFB-45ED-AB14-5D6CCA4217A1}
2012-01-11 18:24:51 -------- d-----w- C:\Users\theo\AppData\Local\{23A789EB-EAC5-4DF8-8648-71A2836670C8}
2012-01-10 18:25:40 -------- d-----w- C:\Users\theo\AppData\Local\{BC7D7004-854D-4777-8386-3C36F556F80B}
2012-01-10 18:25:17 -------- d-----w- C:\Users\theo\AppData\Local\{CC9A3185-0FB5-41C3-9288-01A3A492AEB8}
2012-01-09 22:07:58 -------- d-----w- C:\Users\theo\AppData\Local\{FF815980-0244-424F-8E2A-767AD4C186FE}
2012-01-09 22:07:44 -------- d-----w- C:\Users\theo\AppData\Local\{FF714952-ABDA-4681-9F17-C872EF1DB078}
2012-01-09 19:22:37 -------- d-----w- C:\Users\theo\Option
2012-01-09 19:18:54 -------- d-----w- C:\ProgramData\BlazeVideo
2012-01-09 18:49:13 -------- d-----w- C:\Users\theo\AppData\Local\{FF0AE8E6-CAB1-4B51-8F35-B8DD72B3C2CD}
2012-01-09 18:49:00 -------- d-----w- C:\Users\theo\AppData\Local\{196BAE5A-72EA-4765-BAF4-608E2A529E8E}
2012-01-08 21:03:25 -------- d-----w- C:\Users\theo\AppData\Local\{7E87E211-F26D-46F7-B01E-105F6BE2C907}
2012-01-08 21:03:13 -------- d-----w- C:\Users\theo\AppData\Local\{A3B44EB6-914F-4A7F-AAED-5D8C7D1F656E}
2012-01-08 19:48:09 -------- d-----w- C:\ProgramData\NTI Launcher
2012-01-08 19:46:06 -------- d-----w- C:\Program Files (x86)\Common Files\muvee Technologies
2012-01-08 19:44:36 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
2012-01-08 19:29:00 -------- d-----w- C:\Program Files (x86)\Downloaded Installations
2012-01-08 09:02:41 -------- d-----w- C:\Users\theo\AppData\Local\{DE1C55CA-BE00-487C-8B21-1F4B8FBDA02F}
2012-01-08 09:02:29 -------- d-----w- C:\Users\theo\AppData\Local\{66212391-FB45-4202-84B9-F0AA48538854}
2012-01-07 17:48:02 -------- d-----w- C:\Users\theo\AppData\Local\{114E3808-6F7C-49DE-ADC4-545069FCA6CC}
2012-01-07 17:47:49 -------- d-----w- C:\Users\theo\AppData\Local\{C41BA1D7-3972-47B5-8C62-8A03D0E754F8}
2012-01-07 17:21:37 417440 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-01-07 16:54:20 2200 ----a-w- C:\Windows\System32\ASOROSet.bin
2012-01-07 15:31:51 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2012-01-07 14:14:03 -------- d-----w- C:\ProgramData\Norton
2012-01-07 14:07:57 -------- d-----w- C:\ProgramData\NortonInstaller
2012-01-07 08:10:35 -------- d-----w- C:\Users\theo\AppData\Roaming\Systweak
2012-01-07 08:10:33 18816 ----a-w- C:\Windows\System32\roboot64.exe
2012-01-07 05:47:20 -------- d-----w- C:\Users\theo\AppData\Local\{794672E9-659D-4E72-97B5-17688F25CB86}
2012-01-07 05:47:08 -------- d-----w- C:\Users\theo\AppData\Local\{BBF12600-D20A-4C85-90DD-3B629FC9BDE6}
2012-01-06 18:10:27 -------- d-sh--w- C:\$RECYCLE.BIN
2012-01-06 16:01:01 -------- d--h--w- C:\ProgramData\MFAData
2012-01-06 11:30:38 -------- d--h--w- C:\ProgramData\Malwarebytes
2012-01-06 10:49:31 90192 ----a-w- C:\Windows\System32\drivers\bdfndisf6.sys
2012-01-06 10:30:00 -------- d-----w- C:\Users\theo\AppData\Local\{BE16C3B4-7AB1-49B1-BF2E-ECE3922221EA}
2012-01-06 10:29:48 -------- d-----w- C:\Users\theo\AppData\Local\{40F109D4-2211-4509-98E7-86076CE60829}
2012-01-05 22:54:23 -------- d-----w- C:\Users\theo\AppData\Roaming\QuickScan
2012-01-05 22:53:26 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2012-01-05 22:16:11 -------- d-----w- C:\Users\theo\AppData\Local\{7C7492C6-AF9D-4333-BB5C-1A9066FE8DAD}
2012-01-05 22:15:59 -------- d-----w- C:\Users\theo\AppData\Local\{D39AE0CB-8D06-471A-9D7D-BA211316B95A}
2012-01-05 08:33:17 -------- d-----w- C:\Users\theo\AppData\Local\{EC6CD73B-D908-4274-BDFA-F0393E139748}
2012-01-05 08:33:05 -------- d-----w- C:\Users\theo\AppData\Local\{3BB92CAA-7BF0-4467-8B89-610FC4F201A3}
2012-01-05 00:32:06 53248 ----a-r- C:\Users\theo\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2012-01-05 00:29:54 -------- d-----w- C:\Intel
2012-01-05 00:27:51 -------- d--h--w- C:\ProgramData\DriverGenius
2012-01-05 00:09:42 -------- d-----w- C:\Program Files (x86)\SpotLite
2012-01-04 20:51:05 -------- d--h--w- C:\ProgramData\IncrediMail
2012-01-04 20:50:28 -------- d--h--w- C:\ProgramData\IM
2012-01-04 20:22:49 -------- d-----w- C:\ProgramData\Spotnet
2012-01-04 20:06:35 -------- d-----w- C:\ProgramData\SpotGrit
2012-01-04 19:40:09 -------- d-----w- C:\Users\theo\AppData\Local\{C80F4D17-458C-422C-B273-3E56829BF61A}
2012-01-04 19:39:57 -------- d-----w- C:\Users\theo\AppData\Local\{DD457022-DFF8-4FA9-9070-6D10CB7F73F6}
2012-01-04 19:14:19 -------- d--h--w- C:\ProgramData\Messenger Plus!
2012-01-04 18:51:57 -------- d--h--w- C:\ASUS.DAT
2012-01-04 18:15:02 98816 ----a-w- C:\Windows\sed.exe
2012-01-04 18:15:02 518144 ----a-w- C:\Windows\SWREG.exe
2012-01-04 18:15:02 256000 ----a-w- C:\Windows\PEV.exe
2012-01-04 18:15:02 208896 ----a-w- C:\Windows\MBR.exe
2012-01-04 09:42:46 8822856 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{841AA7E3-F349-42EB-9BE6-594C79D3338E}\mpengine.dll
2012-01-04 07:39:24 -------- d-----w- C:\Users\theo\AppData\Local\{F18B8555-445E-4D57-A6F3-665CD6E62F49}
2012-01-04 07:39:11 -------- d-----w- C:\Users\theo\AppData\Local\{A6E9B9D1-B8B9-4350-A359-0F64FAD2ED91}
2012-01-03 17:48:49 388096 ----a-r- C:\Users\theo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-01-03 17:48:47 -------- d-----w- C:\Program Files (x86)\Trend Micro
2012-01-03 11:23:06 970336 ----a-w- C:\Windows\System32\drivers\timntr.sys
2012-01-03 10:44:18 -------- d-----w- C:\Users\theo\AppData\Local\{15E61083-2F09-4FED-AA2A-E69BF843B84C}
2012-01-03 10:44:06 -------- d-----w- C:\Users\theo\AppData\Local\{9A3E18F3-E8EF-44A3-A22B-7FF50564A329}
2012-01-02 22:19:29 -------- d-----w- C:\Users\theo\AppData\Local\{48087721-F1F9-4BA8-8950-0772D3FB8B16}
2012-01-02 22:19:16 -------- d-----w- C:\Users\theo\AppData\Local\{311C9108-9EA8-47B2-90CB-03521DA4A21B}
2012-01-02 21:36:39 -------- d-----w- C:\Users\theo\AppData\Roaming\EeeStorageUploader
2012-01-02 21:36:30 -------- d-----w- C:\Users\theo\AppData\Roaming\temp
2012-01-02 20:18:04 477696 --sha-w- C:\EUMONBMP.SYS
2012-01-02 16:43:46 270720 ------w- C:\Windows\System32\MpSigStub.exe
2012-01-02 16:29:16 57480 ----a-w- C:\Windows\System32\drivers\eubakup.sys
2012-01-02 16:29:16 19592 ----a-w- C:\Windows\System32\drivers\eudskacs.sys
2012-01-02 16:29:16 189576 ----a-w- C:\Windows\System32\drivers\EuFdDisk.sys
2012-01-02 16:29:12 51336 ----a-w- C:\Windows\System32\drivers\EUBKMON.sys
2012-01-02 10:17:10 -------- d-----w- C:\Users\theo\AppData\Local\{DC0DF5EC-CD37-4B04-B0E1-77D9193F602C}
2012-01-02 10:16:56 -------- d-----w- C:\Users\theo\AppData\Local\{C81428EE-B250-4587-83EB-3AEA69563034}
.
==================== Find3M ====================
.
2012-01-07 17:21:37 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-03 11:23:11 1263200 ----a-w- C:\Windows\System32\drivers\tdrpm273.sys
2011-12-26 18:11:09 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2011-12-21 00:02:26 4448256 ----a-w- C:\Windows\SysWow64\GPhotos.scr
2011-12-20 19:24:47 56 ----a-w- C:\Windows\System32\SupportTool.exe.bat
2011-12-20 19:21:29 91920 ----a-w- C:\Windows\System32\drivers\tmactmon.sys
2011-12-20 19:21:29 70928 ----a-w- C:\Windows\System32\drivers\tmevtmgr.sys
2011-12-20 19:21:29 167696 ----a-w- C:\Windows\System32\drivers\tmcomm.sys
2011-12-20 19:21:29 105744 ----a-w- C:\Windows\System32\drivers\tmtdi.sys
2011-12-06 14:55:48 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2011-11-24 04:52:09 3145216 ----a-w- C:\Windows\System32\win32k.sys
2011-11-23 14:13:10 2796544 ----a-w- C:\Windows\System32\drivers\athrx.sys
2011-11-23 14:13:10 2796544 ----a-w- C:\Windows\System32\athrx.sys
2011-11-23 13:15:40 34624 ----a-w- C:\Windows\System32\TURegOpt.exe
2011-11-23 13:15:32 28992 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2011-11-23 13:15:30 35648 ----a-w- C:\Windows\System32\uxtuneup.dll
2011-11-23 13:15:30 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll
2011-11-23 13:15:26 25920 ----a-w- C:\Windows\System32\authuitu.dll
2011-11-17 16:11:52 145424 ----a-w- C:\Windows\System32\drivers\JME.sys
2011-11-10 04:54:13 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-11-05 05:32:50 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-11-05 04:26:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-11-04 01:53:39 2309120 ----a-w- C:\Windows\System32\jscript9.dll
2011-11-04 01:44:47 1390080 ----a-w- C:\Windows\System32\wininet.dll
2011-11-04 01:44:21 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
2011-11-04 01:34:43 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2011-11-03 22:47:42 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
2011-11-03 22:40:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2011-11-03 22:39:47 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-11-03 22:31:57 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2009-04-08 17:31:56 106496 ----a-w- C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45:20 155648 ----a-w- C:\Program Files (x86)\Common Files\MSIactionall.dll
.
============= FINISH: 21:16:54,16 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 17-3-2011 20:58:08
System Uptime: 31-1-2012 18:45:04 (3 hours ago)
.
Motherboard: ASUSTeK Computer Inc. | | K52Jc
Processor: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz | Socket 989 | 919/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 116 GiB total, 51,715 GiB free.
D: is FIXED (NTFS) - 328 GiB total, 326,549 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: ArcSec
Device ID: ROOT\LEGACY_ARCSEC\0000
Manufacturer:
Name: ArcSec
PNP Device ID: ROOT\LEGACY_ARCSEC\0000
Service: ArcSec
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0000
Manufacturer: Avira
Name: Microsoft Virtual WiFi Miniport Adapter #9 - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0000
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0001
Manufacturer: Avira
Name: Atheros AR9285 Wireless Network Adapter - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0001
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0002
Manufacturer: Avira
Name: Microsoft Virtual WiFi Miniport Adapter #4 - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0002
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0003
Manufacturer: Avira
Name: JMicron PCI Express Gigabit Ethernet Adapter - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0003
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0004
Manufacturer: Avira
Name: WAN-minipoort (IP) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0004
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0005
Manufacturer: Avira
Name: WAN-minipoort (Network Monitor) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0005
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0006
Manufacturer: Avira
Name: WAN-minipoort (IPv6) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0006
Service: avfwim
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: avfwot
Device ID: ROOT\LEGACY_AVFWOT\0000
Manufacturer:
Name: avfwot
PNP Device ID: ROOT\LEGACY_AVFWOT\0000
Service: avfwot
.
==== System Restore Points ===================
.
RP763: 29-1-2012 11:10:53 - Installed AVG 2012
RP764: 29-1-2012 11:12:04 - Removed AVG 2012
RP765: 29-1-2012 14:50:14 - Installed AVG 2012
RP766: 29-1-2012 14:51:03 - Installed AVG 2012
RP767: 29-1-2012 14:52:14 - Removed AVG 2012
RP768: 29-1-2012 15:16:08 - Before uninstalling ParetoLogic PC Health Advisor
RP769: 29-1-2012 15:24:11 - Installed AVG 2012
RP770: 29-1-2012 15:24:50 - Installed AVG 2012
RP771: 29-1-2012 15:26:13 - Removed AVG 2012
RP772: 29-1-2012 15:33:05 - Before uninstalling AVG PC Tuneup
RP773: 29-1-2012 15:52:08 - Installed AVG 2012
RP774: 29-1-2012 15:52:44 - Installed AVG 2012
RP775: 29-1-2012 15:54:22 - Removed AVG 2012
RP776: 29-1-2012 16:05:38 - Installed AVG 2012
RP777: 29-1-2012 16:06:12 - Installed AVG 2012
RP778: 29-1-2012 16:07:40 - Removed AVG 2012
RP779: 29-1-2012 16:20:45 - Installed AVG 2012
RP780: 29-1-2012 16:21:14 - Installed AVG 2012
RP781: 29-1-2012 16:22:07 - Removed AVG 2012
RP782: 29-1-2012 16:26:17 - Installed AVG 2012
RP783: 29-1-2012 16:26:43 - Installed AVG 2012
RP784: 29-1-2012 16:27:46 - Removed AVG 2012
RP785: 29-1-2012 17:22:20 - PC Health Advisor Backup
RP786: 29-1-2012 17:41:50 - PC Health Advisor Backup
RP787: 30-1-2012 23:11:04 - PC Health Advisor Backup
RP788: 30-1-2012 23:13:08 - PC Health Advisor Backup
.
==== Installed Programs ======================
.
Áîëåå 80 òåì äëÿ Windows 7. 2.00
Acrobat.com
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Reader X (10.1.2) - Nederlands
ASUS AI Recovery
ASUS AP Bank
ASUS CopyProtect
ASUS Data Security Manager
ASUS FancyStart
ASUS LifeFrame3
ASUS SmartLogon
ASUS Splendid Video Enhancement Technology
ASUS Virtual Camera
Atheros Driver Installation Program
ATK Package
AVG PC Tuneup
Bing Bar
Boingo Wi-Fi
Bookworm Deluxe
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco Network Magic
Cisco PEAP Module
ControlDeck
Cooking Dash
CursorFX
D3DX10
Driver Genius Pro 10.0.0.820
Driver Genius Professional Edition
DVD Shrink 2010
eReg
FileServe Toolbar
Game Park Console
Google Toolbar for Internet Explorer
Governor of Poker
GrabIt 1.7.2 Beta 4 (build 997)
HiJackThis
Hotel Dash Suite Success
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
ImgBurn
IncrediMail
IncrediMail 2.0
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
IspAssistant-FileServe
Java Auto Updater
Java(TM) 6 Update 30
Jewel Quest 3
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
Junk Mail filter update
LightScribe System Software
Luxor 3
Mahjongg dimensions
MailWasherPro
Malwarebytes Anti-Malware versie 1.60.0.1800
Mesh Runtime
Messenger Companion
Messenger Plus! 5
Microsoft Office 2010
Microsoft Silverlight
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MovieTracer
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB973685)
Network Magic
NewsLeecher v5.0 Beta 3
NTI Media Maker 8
NVIDIA 3D Vision Controller Driver
NVIDIA PhysX
NVIDIA Updatus
ParetoLogic PC Health Advisor
Picasa 3
Plants vs Zombies
PMB
PMB-updater
Protection Center
Pure Networks Platform
Qualcomm Atheros Fast Reconnect
Qualcomm Atheros WiFi Driver Installation
Radio Online V7.5.2
Samsung Kies
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)
Setup
SpotLite
Spotnet
syncables desktop SE
TomTom HOME 2.8.3.2458
TomTom HOME Visual Studio Merge Modules
TuneUp Utilities Language Pack (nl-NL)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Vinny27 - Driver Genius PRO Edition v11.0.0.1112
Vinny27 - Driver Genius PRO v10.0.0.820 NL
Visual Studio 2008 x64 Redistributables
Visual Studio C++ 10.0 Runtime
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinFlash
WinRAR 4.01 (32-bit)
Wireless Console 3
World of Goo
Your Uninstaller! 7
.
==== End Of File ===========================
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:10:42, on 31-1-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\theo\Desktop\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Woofi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\Windows\is-82P43.exe" /REG /REGSVRMODE
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: MailWasherPro.lnk = C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: Buienradar.nl - Weer - Actuele neerslag, weerbericht, weersverwachting, sneeuwradar en satellietbeelden
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files (x86)\Atheros\AWiCSrvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileServe Toolbar Helper - Unknown owner - C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe

--
End of file - 16317 bytes
Malwarebytes Anti-Malware (PRO) 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Databaseversie: v2012.01.31.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
theo :: THEO-PC [administrator]

Realtime bescherming: Uitgeschakeld

31-1-2012 21:24:26
mbam-log-2012-01-31 (21-24-26).txt

Scantype: Volledige scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 346255
Verstreken tijd: 1 uur/uren, 51 minuut/minuten, 9 seconde(n)

Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 5
C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo.Uninstaller.Pro.2.x.x.Generic.Patch-JW.exe (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\FileServe Toolbar\ffmpeg.exe (Adware.Mp3Tube) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\FileServe Toolbar\ShowMsg.exe (PUP.Zwangi) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\ParetoLogic\PCHA\paretologic.pc.health.advisor.3.1.0.23.patch-SReg.exe (PUP.Hacktool.Patcher) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Pure Networks\Network Magic\Patch.exe (Patch.NetworkMagic) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)
hoop dat goed is groetjes theeke
 
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by theo at 21:15:40 on 2012-01-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3885.1818 [GMT 1:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Windows\system32\DllHost.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.nl/
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://nl.woofi.info
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Partner BHO Class: {83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4} - C:\ProgramData\Partner\Partner.dll
BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
uRun: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
uRun: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
mRun: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
StartupFolder: C:\Users\theo\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MAILWA~1.LNK - C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\FANCYS~1.LNK - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SRSPRE~1.LNK - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
Trusted Zone: buienradar.nl\www
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: DhcpNameServer = 192.168.1.1 62.179.104.196 213.46.228.196
TCP: Interfaces\{D0C39DFC-B4E8-4587-8254-20A14671EA7C} : DhcpNameServer = 192.168.1.1 62.179.104.196 213.46.228.196
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
mASetup: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{9FDDE16B-836F-4806-AB1F-1455CBEFF289}
{AA58ED58-01DD-4d91-8333-CF10577473F7}
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{2318C2B1-4965-11d4-9B18-009027A5CD4F}
mRun-x64: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
mRun-x64: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun-x64: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun-x64: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun-x64: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun-x64: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
mRun-x64: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
mRun-x64: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
mRun-x64: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
mRun-x64: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
.
============= SERVICES / DRIVERS ===============
.
R0 lullaby;lullaby;C:\Windows\system32\DRIVERS\lullaby.sys --> C:\Windows\system32\DRIVERS\lullaby.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R0 PCTCore;PCTools KDS;C:\Windows\system32\drivers\PCTCore64.sys --> C:\Windows\system32\drivers\PCTCore64.sys [?]
R0 TfFsMon;TfFsMon;C:\Windows\system32\drivers\TfFsMon.sys --> C:\Windows\system32\drivers\TfFsMon.sys [?]
R0 TfSysMon;TfSysMon;C:\Windows\system32\drivers\TfSysMon.sys --> C:\Windows\system32\drivers\TfSysMon.sys [?]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys --> C:\Windows\system32\DRIVERS\klim6.sys [?]
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-3 15416]
R2 FileServe Toolbar Helper;FileServe Toolbar Helper;C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe [2011-3-22 224256]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-6-14 13592]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-1-21 652872]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-11-6 2255464]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-8-12 87040]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-3-15 428384]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-12-5 92592]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-11-6 2314240]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-11-28 73728]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys --> C:\Windows\system32\DRIVERS\ETD.sys [?]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys --> C:\Windows\system32\DRIVERS\Impcd.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\system32\DRIVERS\JME.sys --> C:\Windows\system32\DRIVERS\JME.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
R3 MTsensor64;PU ACPI UTILITY;C:\Windows\system32\DRIVERS\PuAcpi64.sys --> C:\Windows\system32\DRIVERS\PuAcpi64.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe --> C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [?]
S2 AFBAgent;AFBAgent; [x]
S2 Amsp;Trend Micro Solution Platform;"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad --> C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe" --> C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-1-7 253600]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\system32\Drivers\ssadadb.sys --> C:\Windows\system32\Drivers\ssadadb.sys [?]
S3 AWiCSrvc;AWiCSrvc;C:\Program Files (x86)\Atheros\AWiCSrvc.exe [2011-5-26 50336]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-28 183560]
S3 HTCAND64;HTC Device Driver;C:\Windows\system32\Drivers\ANDROIDUSB.sys --> C:\Windows\system32\Drivers\ANDROIDUSB.sys [?]
S3 htcnprot;HTC NDIS Protocol Driver;C:\Windows\system32\DRIVERS\htcnprot.sys --> C:\Windows\system32\DRIVERS\htcnprot.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 51740536]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 Partner Service;Partner Service;C:\ProgramData\Partner\Partner.exe [2010-11-6 332272]
S3 pctplsg;pctplsg;\??\C:\Windows\System32\drivers\pctplsg64.sys --> C:\Windows\System32\drivers\pctplsg64.sys [?]
S3 Revoflt;Revoflt;C:\Windows\system32\DRIVERS\revoflt.sys --> C:\Windows\system32\DRIVERS\revoflt.sys [?]
S3 sdAuxService;PC Tools Auxiliary Service;C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe --> C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe [?]
S3 sdCoreService;PC Tools Security Service;C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe --> C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe [?]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\system32\DRIVERS\SiSG664.sys --> C:\Windows\system32\DRIVERS\SiSG664.sys [?]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys --> C:\Windows\system32\DRIVERS\ssadbus.sys [?]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys --> C:\Windows\system32\DRIVERS\ssadmdfl.sys [?]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys --> C:\Windows\system32\DRIVERS\ssadmdm.sys [?]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\system32\DRIVERS\ssadserd.sys --> C:\Windows\system32\DRIVERS\ssadserd.sys [?]
S3 TfNetMon;TfNetMon;\??\C:\Windows\system32\drivers\TfNetMon.sys --> C:\Windows\system32\drivers\TfNetMon.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 Browser Defender Update Service;Browser Defender Update Service;"C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe" --> C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe [?]
S4 ThreatFire;ThreatFire;C:\Program Files (x86)\Spyware Doctor\TFEngine\TFService.exe service --> C:\Program Files (x86)\Spyware Doctor\TFEngine\TFService.exe service [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-01-31 18:59:49 -------- d-----w- C:\Users\theo\AppData\Local\{0C05B79A-5616-4216-AFE8-B6510C2CE3DC}
2012-01-31 18:59:38 -------- d-----w- C:\Users\theo\AppData\Local\{271681B9-8E2B-42DF-A882-A1D5E9208DEF}
2012-01-31 17:49:55 -------- d-----w- C:\Users\theo\AppData\Local\Temp
2012-01-30 20:14:25 -------- d-----w- C:\Program Files (x86)\AVG
2012-01-30 18:46:50 -------- d-----w- C:\Users\theo\AppData\Local\{3DE8D6DE-0113-45D2-A674-1D281A30F53C}
2012-01-30 18:46:39 -------- d-----w- C:\Users\theo\AppData\Local\{D0F014B6-5CCF-4511-AAF6-EDFFED45AEDC}
2012-01-29 16:16:16 -------- d-----w- C:\Program Files (x86)\Common Files\ParetoLogic
2012-01-29 16:16:12 -------- d-----w- C:\Program Files (x86)\ParetoLogic
2012-01-29 15:36:58 917840 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65DD3A62-DBF6-4C11-91FB-2BED36BA32E5}\gapaengine.dll
2012-01-29 15:36:41 8602168 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9395D262-E57F-45A9-BD72-8342153F44DF}\mpengine.dll
2012-01-29 15:33:23 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2012-01-29 15:33:15 -------- d-----w- C:\Program Files\Microsoft Security Client
2012-01-29 13:42:23 -------- d-----w- C:\Users\theo\AppData\Local\{221BFEC2-794A-494B-9589-887F412258E0}
2012-01-29 13:42:11 -------- d-----w- C:\Users\theo\AppData\Local\{675B63D7-4B05-4019-8D2C-97F3F1A49E4D}
2012-01-28 23:31:58 -------- d-----w- C:\Users\theo\AppData\Local\uTorrent
2012-01-28 22:56:26 -------- d-----w- C:\Users\theo\AppData\Local\{3156DA13-680B-4332-97A7-7F5740ED2421}
2012-01-28 22:56:14 -------- d-----w- C:\Users\theo\AppData\Local\{1987A57E-4D5A-47BD-941A-91B02741C021}
2012-01-28 08:16:57 -------- d-----w- C:\Users\theo\AppData\Local\{50BF5387-3BF8-4151-A6A3-2E2C1C5F209E}
2012-01-28 08:16:45 -------- d-----w- C:\Users\theo\AppData\Local\{7359AD31-CCE9-461A-B044-E6262E65B84A}
2012-01-27 19:16:41 -------- d-----w- C:\Windows\System32\wbem\Logs
2012-01-27 18:12:29 -------- d-----w- C:\Users\theo\AppData\Local\{0D7D0253-1BE7-47DC-9311-8C781086F185}
2012-01-27 18:12:15 -------- d-----w- C:\Users\theo\AppData\Local\{32D679B4-53B0-4F06-A0B8-79C7D9E7C985}
2012-01-26 19:00:00 -------- d-----w- C:\Users\theo\AppData\Local\Babylon
2012-01-26 18:59:58 -------- d-----w- C:\Users\theo\AppData\Roaming\Babylon
2012-01-26 18:59:58 -------- d-----w- C:\ProgramData\Babylon
2012-01-26 18:59:56 -------- d-----w- C:\Program Files (x86)\Your Uninstaller! 7
2012-01-26 16:19:11 -------- d-----w- C:\Users\theo\AppData\Local\{D308063D-1986-4FC0-8C85-1B1C6D93BB12}
2012-01-26 16:19:00 -------- d-----w- C:\Users\theo\AppData\Local\{D350D851-199E-4EB0-96A0-CD71E0100FDC}
2012-01-25 18:12:57 -------- d-----w- C:\Users\theo\AppData\Local\{57A08078-6D19-4FE2-8DFB-43BF6D2CDE21}
2012-01-25 18:12:38 -------- d-----w- C:\Users\theo\AppData\Local\{06107DF7-EE12-4B80-BE99-1CBD9C0505B5}
2012-01-24 18:32:56 -------- d-----w- C:\Program Files (x86)\Firetrust
2012-01-24 18:08:09 -------- d-----w- C:\Users\theo\AppData\Local\{79BCD92D-317F-4204-99A7-5FC3C029143A}
2012-01-24 18:07:54 -------- d-----w- C:\Users\theo\AppData\Local\{48B89403-10C4-4BAA-92C7-3DAD854FACB9}
2012-01-23 18:56:50 -------- d-----w- C:\Users\theo\AppData\Local\{DDA08424-DFA9-4DFB-BAB7-B4A6B0CA0E25}
2012-01-23 18:56:36 -------- d-----w- C:\Users\theo\AppData\Local\{15D62830-659F-4ABE-83D5-76AFB70D64D8}
2012-01-22 18:45:13 -------- d-----w- C:\ProgramData\ASUS
2012-01-22 14:24:54 15880 ----a-w- C:\Windows\System32\drivers\PuAcpi64.sys
2012-01-22 13:45:31 -------- d-----w- C:\Users\theo\AppData\Local\{0A8538A4-F548-4372-8C9E-498B4A51F9A8}
2012-01-22 13:45:15 -------- d-----w- C:\Users\theo\AppData\Local\{876A08A1-27FA-41CF-BE4C-F4DD07AF5759}
2012-01-22 08:40:17 -------- d-----w- C:\Users\theo\AppData\Roaming\ParetoLogic
2012-01-22 08:40:17 -------- d-----w- C:\Users\theo\AppData\Roaming\DriverCure
2012-01-22 08:40:07 -------- d-----w- C:\ProgramData\ParetoLogic
2012-01-21 23:15:19 -------- d-----w- C:\Users\theo\AppData\Local\{67EDE615-F8B6-4A68-9E2C-8D50042CC53C}
2012-01-21 23:15:08 -------- d-----w- C:\Users\theo\AppData\Local\{0B454181-4D21-4BFF-8D38-002A77B73A68}
2012-01-21 15:08:08 -------- d-----w- C:\ProgramData\AVAST Software
2012-01-21 10:28:41 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2012-01-21 10:28:35 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-01-21 10:28:35 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-01-21 09:40:13 -------- d-----w- C:\Users\theo\AppData\Local\{738B26C3-8F36-4ECE-88D2-29FE52FB4F93}
2012-01-21 09:40:00 -------- d-----w- C:\Users\theo\AppData\Local\{0FB12D15-49E2-462F-A29E-B4B3C69FE161}
2012-01-20 18:16:37 -------- d-----w- C:\Users\theo\AppData\Local\{A03E00DD-359B-4931-B012-043D6928CE94}
2012-01-20 18:16:22 -------- d-----w- C:\Users\theo\AppData\Local\{64CD7399-9A0F-4C5F-9DC1-7E1A2C9E4F2D}
2012-01-19 18:08:28 -------- d-----w- C:\Users\theo\AppData\Local\{9B0AC623-68BB-44CC-B0CB-9E0E6F452EA3}
2012-01-19 18:08:14 -------- d-----w- C:\Users\theo\AppData\Local\{C71EA3C7-C5E3-457E-BC5D-A277C574E39D}
2012-01-18 21:55:58 -------- d-----w- C:\Users\theo\AppData\Local\{01631F1C-CC0C-479A-B033-DD827D00B783}
2012-01-18 21:55:45 -------- d-----w- C:\Users\theo\AppData\Local\{C3CCB702-CF48-4C0A-8F4D-68670F70B2C6}
2012-01-17 18:15:56 -------- d-----w- C:\Users\theo\AppData\Local\{BF32F1F2-7BB3-4467-800E-ABA254A39ABF}
2012-01-17 18:15:36 -------- d-----w- C:\Users\theo\AppData\Local\{924D4452-5794-4943-9F5C-60FB48BAB4A5}
2012-01-16 18:16:57 -------- d-----w- C:\Program Files (x86)\TomTom International B.V
2012-01-16 18:16:42 -------- d-----w- C:\Program Files (x86)\TomTom HOME 2
2012-01-16 18:05:38 -------- d-----w- C:\Users\theo\AppData\Local\{7AB58E8B-18B1-4E4C-95C5-A9CD8EB36960}
2012-01-16 18:05:25 -------- d-----w- C:\Users\theo\AppData\Local\{697E1525-38A2-4813-BCBE-A4F6856F516B}
2012-01-15 20:43:28 -------- d-----w- C:\Users\theo\AppData\Local\{E0A0B2F3-9D70-46E2-89D4-DD4CE0296352}
2012-01-15 20:43:16 -------- d-----w- C:\Users\theo\AppData\Local\{4CEEFBD8-CAA0-4673-91A3-C0675A97EA8B}
2012-01-15 08:31:39 -------- d-----w- C:\Users\theo\AppData\Local\{1DCF2DE3-908B-41D1-B4A4-EB8FC44E47C0}
2012-01-15 08:31:28 -------- d-----w- C:\Users\theo\AppData\Local\{079A78FD-1DC5-4D64-9D5B-42CAA5B42D42}
2012-01-14 20:31:01 -------- d-----w- C:\Users\theo\AppData\Local\{D3363C46-CAB8-4AF6-ACE0-61979BBC28A2}
2012-01-14 20:30:49 -------- d-----w- C:\Users\theo\AppData\Local\{964FC719-07BF-4C08-A215-D6D5C66DBB89}
2012-01-14 13:18:17 -------- d-----w- C:\Users\theo\AppData\Local\Samsung
2012-01-14 13:17:57 -------- d-----w- C:\Users\theo\AppData\Roaming\Samsung
2012-01-14 13:07:44 1917416 ----a-w- C:\Windows\System32\WdfCoInstaller01005.dll
2012-01-14 13:07:44 1917416 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01005.dll
2012-01-14 13:07:44 177640 ----a-w- C:\Windows\System32\drivers\ssadmdm.sys
2012-01-14 13:07:44 16872 ----a-w- C:\Windows\System32\drivers\ssadmdfl.sys
2012-01-14 13:07:44 157672 ----a-w- C:\Windows\System32\drivers\ssadbus.sys
2012-01-14 13:07:44 13800 ----a-w- C:\Windows\System32\drivers\ssadwhnt.sys
2012-01-14 13:07:44 13800 ----a-w- C:\Windows\System32\drivers\ssadwh.sys
2012-01-14 13:07:44 13288 ----a-w- C:\Windows\System32\drivers\ssadcmnt.sys
2012-01-14 13:07:44 13288 ----a-w- C:\Windows\System32\drivers\ssadcm.sys
2012-01-14 13:07:43 36328 ----a-w- C:\Windows\System32\drivers\ssadadb.sys
2012-01-14 13:07:43 146920 ----a-w- C:\Windows\System32\drivers\ssadserd.sys
2012-01-14 13:01:48 -------- d-----w- C:\Windows\System32\catroot2
2012-01-14 13:00:34 4659712 ----a-w- C:\Windows\SysWow64\Redemption.dll
2012-01-14 13:00:05 821824 ----a-w- C:\Windows\SysWow64\dgderapi.dll
2012-01-14 13:00:05 -------- d-----w- C:\Program Files (x86)\MarkAny
2012-01-14 12:59:36 -------- d-----w- C:\ProgramData\Samsung
2012-01-14 12:59:36 -------- d-----w- C:\Program Files (x86)\Samsung
2012-01-14 08:05:32 -------- d-----w- C:\Users\theo\AppData\Local\{27FF4418-7711-49E9-BF41-CEE077EEEFFF}
2012-01-14 08:05:18 -------- d-----w- C:\Users\theo\AppData\Local\{4988FEC8-EF7E-4AFD-9353-5296AD18606C}
2012-01-13 20:54:38 -------- d-----w- C:\ProgramData\TomTom
2012-01-13 20:43:32 18432 ----a-w- C:\Windows\System32\drivers\NTIDrvr.sys
2012-01-13 20:43:32 16896 ----a-w- C:\Windows\System32\drivers\UBHelper.sys
2012-01-13 17:51:28 -------- d-----w- C:\Users\theo\AppData\Local\{9BFA131D-7CCB-470B-8EF3-5BF8B41F6FFB}
2012-01-13 17:51:02 -------- d-----w- C:\Users\theo\AppData\Local\{7BC7569A-4408-4480-8997-0717A97095CF}
2012-01-12 21:40:40 -------- d-----w- C:\Windows\SoftwareDistributionold
2012-01-12 18:59:46 -------- d-----w- C:\ProgramData\Ocster Backup
2012-01-12 18:22:17 -------- d-----w- C:\Users\theo\AppData\Local\{9DCEEBE5-D14C-4714-8205-2A500B43A8C8}
2012-01-12 18:22:04 -------- d-----w- C:\Users\theo\AppData\Local\{40425E11-CC6A-454F-A143-9E379A8973D7}
2012-01-12 00:16:24 -------- d-----w- C:\Users\theo\AppData\Local\{0A5DE030-B69F-47E1-A674-5F4F19926281}
2012-01-12 00:16:13 -------- d-----w- C:\Users\theo\AppData\Local\{1B885023-BA3C-47F1-B57B-76AA9EB59C84}
2012-01-11 21:17:01 -------- d-----w- C:\Users\theo\AppData\Local\{B56777F6-61E2-4F36-A049-B627CAB3D2AC}
2012-01-11 21:16:49 -------- d-----w- C:\Users\theo\AppData\Local\{406AA5B8-AA34-4011-8802-94D93B7EE149}
2012-01-11 20:01:24 -------- d-----w- C:\Users\theo\AppData\Roaming\Windows Live Writer
2012-01-11 20:01:24 -------- d-----w- C:\Users\theo\AppData\Local\Windows Live Writer
2012-01-11 18:25:03 -------- d-----w- C:\Users\theo\AppData\Local\{9E63D8FB-4BFB-45ED-AB14-5D6CCA4217A1}
2012-01-11 18:24:51 -------- d-----w- C:\Users\theo\AppData\Local\{23A789EB-EAC5-4DF8-8648-71A2836670C8}
2012-01-10 18:25:40 -------- d-----w- C:\Users\theo\AppData\Local\{BC7D7004-854D-4777-8386-3C36F556F80B}
2012-01-10 18:25:17 -------- d-----w- C:\Users\theo\AppData\Local\{CC9A3185-0FB5-41C3-9288-01A3A492AEB8}
2012-01-09 22:07:58 -------- d-----w- C:\Users\theo\AppData\Local\{FF815980-0244-424F-8E2A-767AD4C186FE}
2012-01-09 22:07:44 -------- d-----w- C:\Users\theo\AppData\Local\{FF714952-ABDA-4681-9F17-C872EF1DB078}
2012-01-09 19:22:37 -------- d-----w- C:\Users\theo\Option
2012-01-09 19:18:54 -------- d-----w- C:\ProgramData\BlazeVideo
2012-01-09 18:49:13 -------- d-----w- C:\Users\theo\AppData\Local\{FF0AE8E6-CAB1-4B51-8F35-B8DD72B3C2CD}
2012-01-09 18:49:00 -------- d-----w- C:\Users\theo\AppData\Local\{196BAE5A-72EA-4765-BAF4-608E2A529E8E}
2012-01-08 21:03:25 -------- d-----w- C:\Users\theo\AppData\Local\{7E87E211-F26D-46F7-B01E-105F6BE2C907}
2012-01-08 21:03:13 -------- d-----w- C:\Users\theo\AppData\Local\{A3B44EB6-914F-4A7F-AAED-5D8C7D1F656E}
2012-01-08 19:48:09 -------- d-----w- C:\ProgramData\NTI Launcher
2012-01-08 19:46:06 -------- d-----w- C:\Program Files (x86)\Common Files\muvee Technologies
2012-01-08 19:44:36 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
2012-01-08 19:29:00 -------- d-----w- C:\Program Files (x86)\Downloaded Installations
2012-01-08 09:02:41 -------- d-----w- C:\Users\theo\AppData\Local\{DE1C55CA-BE00-487C-8B21-1F4B8FBDA02F}
2012-01-08 09:02:29 -------- d-----w- C:\Users\theo\AppData\Local\{66212391-FB45-4202-84B9-F0AA48538854}
2012-01-07 17:48:02 -------- d-----w- C:\Users\theo\AppData\Local\{114E3808-6F7C-49DE-ADC4-545069FCA6CC}
2012-01-07 17:47:49 -------- d-----w- C:\Users\theo\AppData\Local\{C41BA1D7-3972-47B5-8C62-8A03D0E754F8}
2012-01-07 17:21:37 417440 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-01-07 16:54:20 2200 ----a-w- C:\Windows\System32\ASOROSet.bin
2012-01-07 15:31:51 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2012-01-07 14:14:03 -------- d-----w- C:\ProgramData\Norton
2012-01-07 14:07:57 -------- d-----w- C:\ProgramData\NortonInstaller
2012-01-07 08:10:35 -------- d-----w- C:\Users\theo\AppData\Roaming\Systweak
2012-01-07 08:10:33 18816 ----a-w- C:\Windows\System32\roboot64.exe
2012-01-07 05:47:20 -------- d-----w- C:\Users\theo\AppData\Local\{794672E9-659D-4E72-97B5-17688F25CB86}
2012-01-07 05:47:08 -------- d-----w- C:\Users\theo\AppData\Local\{BBF12600-D20A-4C85-90DD-3B629FC9BDE6}
2012-01-06 18:10:27 -------- d-sh--w- C:\$RECYCLE.BIN
2012-01-06 16:01:01 -------- d--h--w- C:\ProgramData\MFAData
2012-01-06 11:30:38 -------- d--h--w- C:\ProgramData\Malwarebytes
2012-01-06 10:49:31 90192 ----a-w- C:\Windows\System32\drivers\bdfndisf6.sys
2012-01-06 10:30:00 -------- d-----w- C:\Users\theo\AppData\Local\{BE16C3B4-7AB1-49B1-BF2E-ECE3922221EA}
2012-01-06 10:29:48 -------- d-----w- C:\Users\theo\AppData\Local\{40F109D4-2211-4509-98E7-86076CE60829}
2012-01-05 22:54:23 -------- d-----w- C:\Users\theo\AppData\Roaming\QuickScan
2012-01-05 22:53:26 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2012-01-05 22:16:11 -------- d-----w- C:\Users\theo\AppData\Local\{7C7492C6-AF9D-4333-BB5C-1A9066FE8DAD}
2012-01-05 22:15:59 -------- d-----w- C:\Users\theo\AppData\Local\{D39AE0CB-8D06-471A-9D7D-BA211316B95A}
2012-01-05 08:33:17 -------- d-----w- C:\Users\theo\AppData\Local\{EC6CD73B-D908-4274-BDFA-F0393E139748}
2012-01-05 08:33:05 -------- d-----w- C:\Users\theo\AppData\Local\{3BB92CAA-7BF0-4467-8B89-610FC4F201A3}
2012-01-05 00:32:06 53248 ----a-r- C:\Users\theo\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2012-01-05 00:29:54 -------- d-----w- C:\Intel
2012-01-05 00:27:51 -------- d--h--w- C:\ProgramData\DriverGenius
2012-01-05 00:09:42 -------- d-----w- C:\Program Files (x86)\SpotLite
2012-01-04 20:51:05 -------- d--h--w- C:\ProgramData\IncrediMail
2012-01-04 20:50:28 -------- d--h--w- C:\ProgramData\IM
2012-01-04 20:22:49 -------- d-----w- C:\ProgramData\Spotnet
2012-01-04 20:06:35 -------- d-----w- C:\ProgramData\SpotGrit
2012-01-04 19:40:09 -------- d-----w- C:\Users\theo\AppData\Local\{C80F4D17-458C-422C-B273-3E56829BF61A}
2012-01-04 19:39:57 -------- d-----w- C:\Users\theo\AppData\Local\{DD457022-DFF8-4FA9-9070-6D10CB7F73F6}
2012-01-04 19:14:19 -------- d--h--w- C:\ProgramData\Messenger Plus!
2012-01-04 18:51:57 -------- d--h--w- C:\ASUS.DAT
2012-01-04 18:15:02 98816 ----a-w- C:\Windows\sed.exe
2012-01-04 18:15:02 518144 ----a-w- C:\Windows\SWREG.exe
2012-01-04 18:15:02 256000 ----a-w- C:\Windows\PEV.exe
2012-01-04 18:15:02 208896 ----a-w- C:\Windows\MBR.exe
2012-01-04 09:42:46 8822856 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{841AA7E3-F349-42EB-9BE6-594C79D3338E}\mpengine.dll
2012-01-04 07:39:24 -------- d-----w- C:\Users\theo\AppData\Local\{F18B8555-445E-4D57-A6F3-665CD6E62F49}
2012-01-04 07:39:11 -------- d-----w- C:\Users\theo\AppData\Local\{A6E9B9D1-B8B9-4350-A359-0F64FAD2ED91}
2012-01-03 17:48:49 388096 ----a-r- C:\Users\theo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-01-03 17:48:47 -------- d-----w- C:\Program Files (x86)\Trend Micro
2012-01-03 11:23:06 970336 ----a-w- C:\Windows\System32\drivers\timntr.sys
2012-01-03 10:44:18 -------- d-----w- C:\Users\theo\AppData\Local\{15E61083-2F09-4FED-AA2A-E69BF843B84C}
2012-01-03 10:44:06 -------- d-----w- C:\Users\theo\AppData\Local\{9A3E18F3-E8EF-44A3-A22B-7FF50564A329}
2012-01-02 22:19:29 -------- d-----w- C:\Users\theo\AppData\Local\{48087721-F1F9-4BA8-8950-0772D3FB8B16}
2012-01-02 22:19:16 -------- d-----w- C:\Users\theo\AppData\Local\{311C9108-9EA8-47B2-90CB-03521DA4A21B}
2012-01-02 21:36:39 -------- d-----w- C:\Users\theo\AppData\Roaming\EeeStorageUploader
2012-01-02 21:36:30 -------- d-----w- C:\Users\theo\AppData\Roaming\temp
2012-01-02 20:18:04 477696 --sha-w- C:\EUMONBMP.SYS
2012-01-02 16:43:46 270720 ------w- C:\Windows\System32\MpSigStub.exe
2012-01-02 16:29:16 57480 ----a-w- C:\Windows\System32\drivers\eubakup.sys
2012-01-02 16:29:16 19592 ----a-w- C:\Windows\System32\drivers\eudskacs.sys
2012-01-02 16:29:16 189576 ----a-w- C:\Windows\System32\drivers\EuFdDisk.sys
2012-01-02 16:29:12 51336 ----a-w- C:\Windows\System32\drivers\EUBKMON.sys
2012-01-02 10:17:10 -------- d-----w- C:\Users\theo\AppData\Local\{DC0DF5EC-CD37-4B04-B0E1-77D9193F602C}
2012-01-02 10:16:56 -------- d-----w- C:\Users\theo\AppData\Local\{C81428EE-B250-4587-83EB-3AEA69563034}
.
==================== Find3M ====================
.
2012-01-07 17:21:37 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-03 11:23:11 1263200 ----a-w- C:\Windows\System32\drivers\tdrpm273.sys
2011-12-26 18:11:09 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2011-12-21 00:02:26 4448256 ----a-w- C:\Windows\SysWow64\GPhotos.scr
2011-12-20 19:24:47 56 ----a-w- C:\Windows\System32\SupportTool.exe.bat
2011-12-20 19:21:29 91920 ----a-w- C:\Windows\System32\drivers\tmactmon.sys
2011-12-20 19:21:29 70928 ----a-w- C:\Windows\System32\drivers\tmevtmgr.sys
2011-12-20 19:21:29 167696 ----a-w- C:\Windows\System32\drivers\tmcomm.sys
2011-12-20 19:21:29 105744 ----a-w- C:\Windows\System32\drivers\tmtdi.sys
2011-12-06 14:55:48 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2011-11-24 04:52:09 3145216 ----a-w- C:\Windows\System32\win32k.sys
2011-11-23 14:13:10 2796544 ----a-w- C:\Windows\System32\drivers\athrx.sys
2011-11-23 14:13:10 2796544 ----a-w- C:\Windows\System32\athrx.sys
2011-11-23 13:15:40 34624 ----a-w- C:\Windows\System32\TURegOpt.exe
2011-11-23 13:15:32 28992 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2011-11-23 13:15:30 35648 ----a-w- C:\Windows\System32\uxtuneup.dll
2011-11-23 13:15:30 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll
2011-11-23 13:15:26 25920 ----a-w- C:\Windows\System32\authuitu.dll
2011-11-17 16:11:52 145424 ----a-w- C:\Windows\System32\drivers\JME.sys
2011-11-10 04:54:13 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2011-11-05 05:32:50 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-11-05 04:26:03 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-11-04 01:53:39 2309120 ----a-w- C:\Windows\System32\jscript9.dll
2011-11-04 01:44:47 1390080 ----a-w- C:\Windows\System32\wininet.dll
2011-11-04 01:44:21 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
2011-11-04 01:34:43 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2011-11-03 22:47:42 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
2011-11-03 22:40:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2011-11-03 22:39:47 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-11-03 22:31:57 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2009-04-08 17:31:56 106496 ----a-w- C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45:20 155648 ----a-w- C:\Program Files (x86)\Common Files\MSIactionall.dll
.
============= FINISH: 21:16:54,16 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 17-3-2011 20:58:08
System Uptime: 31-1-2012 18:45:04 (3 hours ago)
.
Motherboard: ASUSTeK Computer Inc. | | K52Jc
Processor: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz | Socket 989 | 919/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 116 GiB total, 51,715 GiB free.
D: is FIXED (NTFS) - 328 GiB total, 326,549 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: ArcSec
Device ID: ROOT\LEGACY_ARCSEC\0000
Manufacturer:
Name: ArcSec
PNP Device ID: ROOT\LEGACY_ARCSEC\0000
Service: ArcSec
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0000
Manufacturer: Avira
Name: Microsoft Virtual WiFi Miniport Adapter #9 - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0000
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0001
Manufacturer: Avira
Name: Atheros AR9285 Wireless Network Adapter - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0001
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0002
Manufacturer: Avira
Name: Microsoft Virtual WiFi Miniport Adapter #4 - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0002
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0003
Manufacturer: Avira
Name: JMicron PCI Express Gigabit Ethernet Adapter - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0003
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0004
Manufacturer: Avira
Name: WAN-minipoort (IP) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0004
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0005
Manufacturer: Avira
Name: WAN-minipoort (Network Monitor) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0005
Service: avfwim
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: AvFw Packet Filter Miniport
Device ID: ROOT\AV_FLTDEV9MP\0006
Manufacturer: Avira
Name: WAN-minipoort (IPv6) - AvFw Packet Filter Miniport
PNP Device ID: ROOT\AV_FLTDEV9MP\0006
Service: avfwim
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: avfwot
Device ID: ROOT\LEGACY_AVFWOT\0000
Manufacturer:
Name: avfwot
PNP Device ID: ROOT\LEGACY_AVFWOT\0000
Service: avfwot
.
==== System Restore Points ===================
.
RP763: 29-1-2012 11:10:53 - Installed AVG 2012
RP764: 29-1-2012 11:12:04 - Removed AVG 2012
RP765: 29-1-2012 14:50:14 - Installed AVG 2012
RP766: 29-1-2012 14:51:03 - Installed AVG 2012
RP767: 29-1-2012 14:52:14 - Removed AVG 2012
RP768: 29-1-2012 15:16:08 - Before uninstalling ParetoLogic PC Health Advisor
RP769: 29-1-2012 15:24:11 - Installed AVG 2012
RP770: 29-1-2012 15:24:50 - Installed AVG 2012
RP771: 29-1-2012 15:26:13 - Removed AVG 2012
RP772: 29-1-2012 15:33:05 - Before uninstalling AVG PC Tuneup
RP773: 29-1-2012 15:52:08 - Installed AVG 2012
RP774: 29-1-2012 15:52:44 - Installed AVG 2012
RP775: 29-1-2012 15:54:22 - Removed AVG 2012
RP776: 29-1-2012 16:05:38 - Installed AVG 2012
RP777: 29-1-2012 16:06:12 - Installed AVG 2012
RP778: 29-1-2012 16:07:40 - Removed AVG 2012
RP779: 29-1-2012 16:20:45 - Installed AVG 2012
RP780: 29-1-2012 16:21:14 - Installed AVG 2012
RP781: 29-1-2012 16:22:07 - Removed AVG 2012
RP782: 29-1-2012 16:26:17 - Installed AVG 2012
RP783: 29-1-2012 16:26:43 - Installed AVG 2012
RP784: 29-1-2012 16:27:46 - Removed AVG 2012
RP785: 29-1-2012 17:22:20 - PC Health Advisor Backup
RP786: 29-1-2012 17:41:50 - PC Health Advisor Backup
RP787: 30-1-2012 23:11:04 - PC Health Advisor Backup
RP788: 30-1-2012 23:13:08 - PC Health Advisor Backup
.
==== Installed Programs ======================
.
Áîëåå 80 òåì äëÿ Windows 7. 2.00
Acrobat.com
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Reader X (10.1.2) - Nederlands
ASUS AI Recovery
ASUS AP Bank
ASUS CopyProtect
ASUS Data Security Manager
ASUS FancyStart
ASUS LifeFrame3
ASUS SmartLogon
ASUS Splendid Video Enhancement Technology
ASUS Virtual Camera
Atheros Driver Installation Program
ATK Package
AVG PC Tuneup
Bing Bar
Boingo Wi-Fi
Bookworm Deluxe
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco Network Magic
Cisco PEAP Module
ControlDeck
Cooking Dash
CursorFX
D3DX10
Driver Genius Pro 10.0.0.820
Driver Genius Professional Edition
DVD Shrink 2010
eReg
FileServe Toolbar
Game Park Console
Google Toolbar for Internet Explorer
Governor of Poker
GrabIt 1.7.2 Beta 4 (build 997)
HiJackThis
Hotel Dash Suite Success
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
ImgBurn
IncrediMail
IncrediMail 2.0
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
IspAssistant-FileServe
Java Auto Updater
Java(TM) 6 Update 30
Jewel Quest 3
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
Junk Mail filter update
LightScribe System Software
Luxor 3
Mahjongg dimensions
MailWasherPro
Malwarebytes Anti-Malware versie 1.60.0.1800
Mesh Runtime
Messenger Companion
Messenger Plus! 5
Microsoft Office 2010
Microsoft Silverlight
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MovieTracer
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB973685)
Network Magic
NewsLeecher v5.0 Beta 3
NTI Media Maker 8
NVIDIA 3D Vision Controller Driver
NVIDIA PhysX
NVIDIA Updatus
ParetoLogic PC Health Advisor
Picasa 3
Plants vs Zombies
PMB
PMB-updater
Protection Center
Pure Networks Platform
Qualcomm Atheros Fast Reconnect
Qualcomm Atheros WiFi Driver Installation
Radio Online V7.5.2
Samsung Kies
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)
Setup
SpotLite
Spotnet
syncables desktop SE
TomTom HOME 2.8.3.2458
TomTom HOME Visual Studio Merge Modules
TuneUp Utilities Language Pack (nl-NL)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Vinny27 - Driver Genius PRO Edition v11.0.0.1112
Vinny27 - Driver Genius PRO v10.0.0.820 NL
Visual Studio 2008 x64 Redistributables
Visual Studio C++ 10.0 Runtime
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinFlash
WinRAR 4.01 (32-bit)
Wireless Console 3
World of Goo
Your Uninstaller! 7
.
==== End Of File ===========================
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:10:42, on 31-1-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\theo\Desktop\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Woofi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "C:\Windows\is-82P43.exe" /REG /REGSVRMODE
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: MailWasherPro.lnk = C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: Buienradar.nl - Weer - Actuele neerslag, weerbericht, weersverwachting, sneeuwradar en satellietbeelden
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files (x86)\Atheros\AWiCSrvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileServe Toolbar Helper - Unknown owner - C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe

--
End of file - 16317 bytes
Malwarebytes Anti-Malware (PRO) 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Databaseversie: v2012.01.31.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
theo :: THEO-PC [administrator]

Realtime bescherming: Uitgeschakeld

31-1-2012 21:24:26
mbam-log-2012-01-31 (21-24-26).txt

Scantype: Volledige scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 346255
Verstreken tijd: 1 uur/uren, 51 minuut/minuten, 9 seconde(n)

Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 5
C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo.Uninstaller.Pro.2.x.x.Generic.Patch-JW.exe (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\FileServe Toolbar\ffmpeg.exe (Adware.Mp3Tube) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\FileServe Toolbar\ShowMsg.exe (PUP.Zwangi) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\ParetoLogic\PCHA\paretologic.pc.health.advisor.3.1.0.23.patch-SReg.exe (PUP.Hacktool.Patcher) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Program Files (x86)\Pure Networks\Network Magic\Patch.exe (Patch.NetworkMagic) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)
hoop dat goed is groetjes theeke
 
Dag theeke.

Gebruik jij je computer om betalingen uit te voeren via internet?
Ik ga je verder begeleiden om je computer terug malwarevrij te krijgen.
Tijdens de stappen, mag je geen nieuwe software installeren of software verwijderen.
Ik bedoel hier niets verkeerd mee, enkel een goede raad die ik je geef.
Vermijd die programmaatjes om je computer op te kuisen of sneller te maken. Ook voorzichtig zijn in de toekomst met trial software op de computer te installeren.
 
Deze ken ik, dit is een gevaarlijke: Pure Networks\Network Magic\Patch.exe (Patch.NetworkMagic)
Gelukkig was het een test PC, maar hij had een behoorlijk griepje opgelopen.

Maar als je een betaalde versie hebt is dit wel een fantasties progje van Cisco / Linksys.
 
hoi swake wat moet ik nu gaan doen dan.ik doe bijna geen betalingen via m,n laptop.ik heb boven ook een pc staan daar doe ik de betalingen.maar wat ik hier onder lees network magic is die niet goed dan hij staat ook boven op m,n pc.maar wat moet ik nu doen dan.

groetjes theeke
 
Dag Theeke
Voer deze stappen uit.

Ga naar start - alle programma's - bureauaccesoires.
Rechtsklik bij Opdrachtprompt en voer uit als administrator

Type het volgende
sc stop "Partner Service" > Druk op de enter toets

sc delete "Partner Service" > Druk op de enter toets

exit > Druk enter toets

Herstart hierna de computer
Start HijackThis en voer uit als administrator
Klik op Do a system scan only en vink na de scan volgende items aan.
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll

Zorg ervoor dat alle programma's afgesloten zijn, behalve HijackThis. Sluit ook Internet Explorer als die geopend is.
Klik vervolgens op Fix Checked.
Sluit HijackThis
Verwijder dan dit uit de softwarelijst.

C:\ProgramData\Partner\Partner.exe

Download hier TDSSkiller naar je bureaublad.

Pak de bestanden in tdsskiller.zip uit.
Open de map tdsskiller en dubbelklik op TDSSKiller.exe om TDSSKiller te starten.
Als er door TDSSkiller een melding verschijnt dat er een update wordt gevonden klikt dan op Load update.

tdskiller_update.jpg



Een nieuwere versie van TDDSkiller zal gedownload worden , en sla deze op het bureaublad op.
Start opnieuw TDSKiller na de update.
Klik op Change parameters en zorg ervoor dat onderstaande opties allemaal aangevinkt zijn.


tdskiller_settings.jpg




Klik op Start Scan en volg de instructies.
Als de scan klaar is klik je op Report.
Selecteer de inhoud (log) en plaats deze in uw volgende bericht.


Als het nodig was om de computer terug herop te starten , vind je de logfile terug in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt

Plaats in je volgend bericht

Logbestand TDSSKiller
Nieuw HijackThis logje.

ik heb boven ook een pc staan daar doe ik de betalingen.maar wat ik hier onder lees network magic is die niet goed dan hij staat ook boven op m,n pc.maar wat moet ik nu doen dan.
Klik om te vergroten...

Als je hiervoor niet betaald hebt, volledig van de computer verwijderen.
Controleer ook je rekening uitreksels van je bank of er betalingen werden uitgevoerd , die niet door jou verricht werden.
 
hoi nog even een vraagje er is niks afgeschreven op de bank wat niet van ons is .maar network magic zat bij m,n router linksys .dus weet niet of dat dan betaalt is.maar mn, laptop draait via wifi als network afgooi heb ik dan nog internet.ga ik zo uit voeren wat hier boven staat.maar ev naar m,n vrouw kijken die is ziek.
groetjes theeke
 
Als hij bij je router zat hoef je niet ongerust te zijn. Had je hem ergens gedownload dan was het wat anders.
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:01, on 1-2-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Users\theo\Desktop\TDSSKiller.exe
C:\Users\theo\Desktop\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Woofi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: MailWasherPro.lnk = C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: Buienradar.nl - Weer - Actuele neerslag, weerbericht, weersverwachting, sneeuwradar en satellietbeelden
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files (x86)\Atheros\AWiCSrvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileServe Toolbar Helper - Unknown owner - C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe

--
End of file - 15961 bytes
21:29:23.0668 2928 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49
21:29:23.0835 2928 ============================================================
21:29:23.0836 2928 Current date / time: 2012/02/01 21:29:23.0835
21:29:23.0836 2928 SystemInfo:
21:29:23.0836 2928
21:29:23.0836 2928 OS Version: 6.1.7601 ServicePack: 1.0
21:29:23.0836 2928 Product type: Workstation
21:29:23.0836 2928 ComputerName: THEO-PC
21:29:23.0836 2928 UserName: theo
21:29:23.0836 2928 Windows directory: C:\Windows
21:29:23.0836 2928 System windows directory: C:\Windows
21:29:23.0836 2928 Running under WOW64
21:29:23.0836 2928 Processor architecture: Intel x64
21:29:23.0836 2928 Number of processors: 2
21:29:23.0836 2928 Page size: 0x1000
21:29:23.0836 2928 Boot type: Normal boot
21:29:23.0836 2928 ============================================================
21:29:24.0860 2928 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:29:24.0870 2928 \Device\Harddisk0\DR0:
21:29:24.0871 2928 MBR used
21:29:24.0871 2928 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2AF98B8, BlocksNum 0xE8E1800
21:29:24.0889 2928 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x113DC000, BlocksNum 0x28FA9800
21:29:24.0962 2928 Initialize success
21:29:24.0962 2928 ============================================================
21:29:51.0585 6676 ============================================================
21:29:51.0585 6676 Scan started
21:29:51.0585 6676 Mode: Manual; SigCheck; TDLFS;
21:29:51.0585 6676 ============================================================
21:29:52.0006 6676 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:29:52.0207 6676 1394ohci - ok
21:29:52.0327 6676 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:29:52.0405 6676 ACPI - ok
21:29:52.0457 6676 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:29:52.0564 6676 AcpiPmi - ok
21:29:52.0682 6676 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:29:52.0749 6676 adp94xx - ok
21:29:52.0780 6676 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:29:52.0834 6676 adpahci - ok
21:29:52.0868 6676 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:29:52.0915 6676 adpu320 - ok
21:29:52.0978 6676 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
21:29:53.0083 6676 AFD - ok
21:29:53.0174 6676 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:29:53.0222 6676 agp440 - ok
21:29:53.0274 6676 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:29:53.0311 6676 aliide - ok
21:29:53.0352 6676 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:29:53.0388 6676 amdide - ok
21:29:53.0415 6676 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:29:53.0510 6676 AmdK8 - ok
21:29:53.0594 6676 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:29:53.0664 6676 AmdPPM - ok
21:29:53.0702 6676 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:29:53.0743 6676 amdsata - ok
21:29:53.0791 6676 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:29:53.0839 6676 amdsbs - ok
21:29:53.0881 6676 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:29:53.0919 6676 amdxata - ok
21:29:53.0992 6676 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
21:29:54.0067 6676 androidusb - ok
21:29:54.0100 6676 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:29:54.0218 6676 AppID - ok
21:29:54.0268 6676 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:29:54.0309 6676 arc - ok
21:29:54.0337 6676 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:29:54.0394 6676 arcsas - ok
21:29:54.0468 6676 ArcSec - ok
21:29:54.0510 6676 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
21:29:54.0548 6676 AsDsm - ok
21:29:54.0637 6676 ASMMAP64 (4c016fd76ed5c05e84ca8cab77993961) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
21:29:54.0670 6676 ASMMAP64 - ok
21:29:54.0798 6676 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:29:55.0007 6676 AsyncMac - ok
21:29:55.0119 6676 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:29:55.0159 6676 atapi - ok
21:29:55.0272 6676 athr (7d0398396727195cc73d703001d3cff4) C:\Windows\system32\DRIVERS\athrx.sys
21:29:55.0445 6676 athr - ok
21:29:55.0524 6676 avc3 - ok
21:29:55.0555 6676 avfwim - ok
21:29:55.0579 6676 avfwot - ok
21:29:55.0642 6676 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:29:55.0746 6676 b06bdrv - ok
21:29:55.0837 6676 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:29:55.0918 6676 b57nd60a - ok
21:29:55.0961 6676 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:29:56.0104 6676 Beep - ok
21:29:56.0230 6676 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:29:56.0298 6676 blbdrive - ok
21:29:56.0382 6676 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:29:56.0478 6676 bowser - ok
21:29:56.0579 6676 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:29:56.0684 6676 BrFiltLo - ok
21:29:56.0791 6676 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:29:56.0861 6676 BrFiltUp - ok
21:29:56.0917 6676 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:29:57.0082 6676 BridgeMP - ok
21:29:57.0192 6676 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:29:57.0287 6676 Brserid - ok
21:29:57.0361 6676 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:29:57.0428 6676 BrSerWdm - ok
21:29:57.0502 6676 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:29:57.0572 6676 BrUsbMdm - ok
21:29:57.0633 6676 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:29:57.0695 6676 BrUsbSer - ok
21:29:57.0771 6676 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:29:57.0852 6676 BTHMODEM - ok
21:29:57.0866 6676 catchme - ok
21:29:57.0959 6676 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:29:58.0089 6676 cdfs - ok
21:29:58.0135 6676 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:29:58.0206 6676 cdrom - ok
21:29:58.0302 6676 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:29:58.0378 6676 circlass - ok
21:29:58.0435 6676 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:29:58.0507 6676 CLFS - ok
21:29:58.0644 6676 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:29:58.0707 6676 CmBatt - ok
21:29:58.0776 6676 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:29:58.0814 6676 cmdide - ok
21:29:58.0869 6676 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
21:29:58.0951 6676 CNG - ok
21:29:59.0018 6676 CnxtHdAudService (7247a4d0875f5f28919e0787e11b7b57) C:\Windows\system32\drivers\CHDRT64.sys
21:29:59.0094 6676 CnxtHdAudService - ok
21:29:59.0164 6676 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:29:59.0201 6676 Compbatt - ok
21:29:59.0250 6676 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:29:59.0320 6676 CompositeBus - ok
21:29:59.0393 6676 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:29:59.0434 6676 crcdisk - ok
21:29:59.0516 6676 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:29:59.0639 6676 DfsC - ok
21:29:59.0719 6676 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:29:59.0831 6676 discache - ok
21:29:59.0884 6676 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:29:59.0925 6676 Disk - ok
21:29:59.0964 6676 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:30:00.0041 6676 drmkaud - ok
21:30:00.0160 6676 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:30:00.0250 6676 DXGKrnl - ok
21:30:00.0378 6676 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:30:00.0511 6676 ebdrv - ok
21:30:00.0570 6676 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:30:00.0634 6676 elxstor - ok
21:30:00.0696 6676 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:30:00.0761 6676 ErrDev - ok
21:30:00.0838 6676 ETD (fd0d922de7d2ad9e98562caa19a7cd2d) C:\Windows\system32\DRIVERS\ETD.sys
21:30:00.0910 6676 ETD - ok
21:30:00.0988 6676 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:30:01.0143 6676 exfat - ok
21:30:01.0270 6676 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:30:01.0420 6676 fastfat - ok
21:30:01.0518 6676 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:30:01.0574 6676 fdc - ok
21:30:01.0606 6676 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:30:01.0655 6676 FileInfo - ok
21:30:01.0689 6676 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:30:01.0821 6676 Filetrace - ok
21:30:01.0919 6676 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:30:01.0966 6676 flpydisk - ok
21:30:02.0015 6676 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:30:02.0078 6676 FltMgr - ok
21:30:02.0130 6676 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:30:02.0170 6676 FsDepends - ok
21:30:02.0195 6676 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:30:02.0234 6676 Fs_Rec - ok
21:30:02.0270 6676 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:30:02.0326 6676 fvevol - ok
21:30:02.0356 6676 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:30:02.0401 6676 gagp30kx - ok
21:30:02.0438 6676 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:30:02.0475 6676 GEARAspiWDM - ok
21:30:02.0564 6676 ghaio (7d66ebde8b7f9b4e00beefeee82670d4) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:30:02.0599 6676 ghaio - ok
21:30:02.0698 6676 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:30:02.0776 6676 hcw85cir - ok
21:30:02.0869 6676 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:30:02.0974 6676 HdAudAddService - ok
21:30:03.0119 6676 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:30:03.0178 6676 HDAudBus - ok
21:30:03.0229 6676 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:30:03.0265 6676 HECIx64 - ok
21:30:03.0306 6676 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:30:03.0384 6676 HidBatt - ok
21:30:03.0518 6676 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:30:03.0599 6676 HidBth - ok
21:30:03.0664 6676 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:30:03.0723 6676 HidIr - ok
21:30:03.0778 6676 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:30:03.0836 6676 HidUsb - ok
21:30:03.0914 6676 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:30:03.0970 6676 HpSAMD - ok
21:30:04.0058 6676 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys
21:30:04.0139 6676 HTCAND64 - ok
21:30:04.0225 6676 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
21:30:04.0260 6676 htcnprot - ok
21:30:04.0311 6676 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:30:04.0471 6676 HTTP - ok
21:30:04.0656 6676 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:30:04.0692 6676 hwpolicy - ok
21:30:04.0738 6676 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:30:04.0806 6676 i8042prt - ok
21:30:04.0870 6676 iaStor (8180a2392e732e8871589b54fab6991f) C:\Windows\system32\DRIVERS\iaStor.sys
21:30:04.0956 6676 iaStor - ok
21:30:05.0029 6676 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:30:05.0093 6676 iaStorV - ok
21:30:05.0421 6676 igfx (0089b53f1befd34b7d8ca4ab021335fa) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:30:05.0851 6676 igfx - ok
21:30:05.0951 6676 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:30:05.0988 6676 iirsp - ok
21:30:06.0041 6676 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
21:30:06.0125 6676 Impcd - ok
21:30:06.0224 6676 IntcDAud (ae594cc17c33ac146739494615e14851) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:30:06.0326 6676 IntcDAud - ok
21:30:06.0366 6676 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:30:06.0402 6676 intelide - ok
21:30:06.0437 6676 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:30:06.0509 6676 intelppm - ok
21:30:06.0637 6676 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:30:06.0769 6676 IpFilterDriver - ok
21:30:06.0827 6676 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:30:06.0897 6676 IPMIDRV - ok
21:30:06.0961 6676 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:30:07.0100 6676 IPNAT - ok
21:30:07.0179 6676 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:30:07.0294 6676 IRENUM - ok
21:30:07.0405 6676 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:30:07.0444 6676 isapnp - ok
21:30:07.0479 6676 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:30:07.0532 6676 iScsiPrt - ok
21:30:07.0572 6676 JMCR (faa8d5426bd7c04cfdb1286b19c4dfa4) C:\Windows\system32\DRIVERS\jmcr.sys
21:30:07.0616 6676 JMCR - ok
21:30:07.0660 6676 JME (2d011bafc08169555ab49920be54b144) C:\Windows\system32\DRIVERS\JME.sys
21:30:07.0702 6676 JME - ok
21:30:07.0744 6676 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:30:07.0789 6676 kbdclass - ok
21:30:07.0821 6676 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:30:07.0886 6676 kbdhid - ok
21:30:07.0982 6676 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
21:30:08.0039 6676 kbfiltr - ok
21:30:08.0216 6676 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
21:30:08.0272 6676 KLIM6 - ok
21:30:08.0365 6676 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
21:30:08.0410 6676 KSecDD - ok
21:30:08.0477 6676 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
21:30:08.0530 6676 KSecPkg - ok
21:30:08.0604 6676 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:30:08.0734 6676 ksthunk - ok
21:30:08.0826 6676 LHidFilt (241f2648adf090e2a10095bd6d6f5dcb) C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:30:08.0861 6676 LHidFilt - ok
21:30:08.0905 6676 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:30:09.0035 6676 lltdio - ok
21:30:09.0157 6676 LMouFilt (342ed5a4b3326014438f36d22d803737) C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:30:09.0197 6676 LMouFilt - ok
21:30:09.0259 6676 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:30:09.0301 6676 LSI_FC - ok
21:30:09.0329 6676 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:30:09.0372 6676 LSI_SAS - ok
21:30:09.0397 6676 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:30:09.0436 6676 LSI_SAS2 - ok
21:30:09.0466 6676 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:30:09.0506 6676 LSI_SCSI - ok
21:30:09.0542 6676 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:30:09.0671 6676 luafv - ok
21:30:09.0700 6676 lullaby (085435ae1a124361304044029b5cc644) C:\Windows\system32\DRIVERS\lullaby.sys
21:30:09.0734 6676 lullaby - ok
21:30:09.0770 6676 LUsbFilt (29c733e1de824670dc9315cfc9bdbcd3) C:\Windows\system32\Drivers\LUsbFilt.Sys
21:30:09.0806 6676 LUsbFilt - ok
21:30:09.0909 6676 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
21:30:09.0941 6676 MBAMProtector - ok
21:30:10.0007 6676 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:30:10.0046 6676 megasas - ok
21:30:10.0100 6676 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:30:10.0164 6676 MegaSR - ok
21:30:10.0226 6676 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:30:10.0371 6676 Modem - ok
21:30:10.0414 6676 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:30:10.0479 6676 monitor - ok
21:30:10.0584 6676 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:30:10.0625 6676 mouclass - ok
21:30:10.0671 6676 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:30:10.0732 6676 mouhid - ok
21:30:10.0836 6676 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:30:10.0882 6676 mountmgr - ok
21:30:11.0021 6676 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
21:30:11.0075 6676 MpFilter - ok
21:30:11.0119 6676 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:30:11.0162 6676 mpio - ok
21:30:11.0242 6676 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
21:30:11.0282 6676 MpNWMon - ok
21:30:11.0327 6676 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:30:11.0451 6676 mpsdrv - ok
21:30:11.0562 6676 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:30:11.0681 6676 MRxDAV - ok
21:30:11.0776 6676 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:30:11.0840 6676 mrxsmb - ok
21:30:11.0882 6676 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:30:11.0942 6676 mrxsmb10 - ok
21:30:11.0982 6676 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:30:12.0062 6676 mrxsmb20 - ok
21:30:12.0166 6676 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:30:12.0205 6676 msahci - ok
21:30:12.0254 6676 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:30:12.0299 6676 msdsm - ok
21:30:12.0361 6676 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:30:12.0480 6676 Msfs - ok
21:30:12.0602 6676 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:30:12.0720 6676 mshidkmdf - ok
21:30:12.0814 6676 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:30:12.0862 6676 msisadrv - ok
21:30:12.0927 6676 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:30:13.0046 6676 MSKSSRV - ok
21:30:13.0170 6676 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:30:13.0292 6676 MSPCLOCK - ok
21:30:13.0310 6676 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:30:13.0431 6676 MSPQM - ok
21:30:13.0544 6676 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:30:13.0609 6676 MsRPC - ok
21:30:13.0710 6676 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:30:13.0750 6676 mssmbios - ok
21:30:13.0791 6676 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:30:13.0912 6676 MSTEE - ok
21:30:14.0007 6676 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:30:14.0072 6676 MTConfig - ok
21:30:14.0110 6676 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
21:30:14.0140 6676 MTsensor - ok
21:30:14.0275 6676 MTsensor64 (0df53a9649073cebbc0988d6353fed6e) C:\Windows\system32\DRIVERS\PuAcpi64.sys
21:30:14.0307 6676 MTsensor64 - ok
21:30:14.0339 6676 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:30:14.0380 6676 Mup - ok
21:30:14.0505 6676 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:30:14.0592 6676 NativeWifiP - ok
21:30:14.0727 6676 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:30:14.0822 6676 NDIS - ok
21:30:14.0865 6676 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:30:14.0989 6676 NdisCap - ok
21:30:15.0155 6676 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:30:15.0272 6676 NdisTapi - ok
21:30:15.0374 6676 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:30:15.0497 6676 Ndisuio - ok
21:30:15.0537 6676 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:30:15.0672 6676 NdisWan - ok
21:30:15.0784 6676 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:30:15.0907 6676 NDProxy - ok
21:30:15.0949 6676 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:30:16.0080 6676 NetBIOS - ok
21:30:16.0207 6676 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:30:16.0362 6676 NetBT - ok
21:30:16.0536 6676 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:30:16.0575 6676 nfrd960 - ok
21:30:16.0646 6676 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:30:16.0686 6676 NisDrv - ok
21:30:16.0755 6676 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:30:16.0877 6676 Npfs - ok
21:30:16.0987 6676 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:30:17.0096 6676 nsiproxy - ok
21:30:17.0169 6676 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:30:17.0281 6676 Ntfs - ok
21:30:17.0360 6676 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:30:17.0392 6676 NTIDrvr - ok
21:30:17.0444 6676 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:30:17.0566 6676 Null - ok
21:30:18.0016 6676 nvlddmkm (cc1efea1f0ab17e59bd4b5baff3e5cb0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:30:19.0961 6676 nvlddmkm - ok
21:30:20.0064 6676 nvpciflt (2e5de4423bf6d1c44609febed7b1ff0f) C:\Windows\system32\DRIVERS\nvpciflt.sys
21:30:20.0091 6676 nvpciflt - ok
21:30:20.0129 6676 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:30:20.0164 6676 nvraid - ok
21:30:20.0260 6676 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:30:20.0314 6676 nvstor - ok
21:30:20.0437 6676 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:30:20.0486 6676 nv_agp - ok
21:30:20.0540 6676 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:30:20.0605 6676 ohci1394 - ok
21:30:20.0697 6676 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:30:20.0759 6676 Parport - ok
21:30:20.0816 6676 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:30:20.0860 6676 partmgr - ok
21:30:20.0946 6676 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:30:20.0999 6676 pci - ok
21:30:21.0037 6676 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:30:21.0074 6676 pciide - ok
21:30:21.0124 6676 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:30:21.0177 6676 pcmcia - ok
21:30:21.0244 6676 PCTCore (3a68080572b81577791a7b19bb880da9) C:\Windows\system32\drivers\PCTCore64.sys
21:30:21.0346 6676 PCTCore - ok
21:30:21.0450 6676 pctgntdi (d6ad12ef986484d692253caca6882d89) C:\Windows\system32\drivers\pctgntdi64.sys
21:30:21.0500 6676 pctgntdi - ok
21:30:21.0541 6676 pctplsg (ccc67d848660b513ad01356b324727b2) C:\Windows\System32\drivers\pctplsg64.sys
21:30:21.0577 6676 pctplsg - ok
21:30:21.0665 6676 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:30:21.0706 6676 pcw - ok
21:30:21.0754 6676 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:30:21.0891 6676 PEAUTH - ok
21:30:22.0062 6676 pnarp (fb83b6c62dff5abe36304351d2bed581) C:\Windows\system32\DRIVERS\pnarp.sys
21:30:22.0096 6676 pnarp - ok
21:30:22.0171 6676 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:30:22.0302 6676 PptpMiniport - ok
21:30:22.0395 6676 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:30:22.0459 6676 Processor - ok
21:30:22.0521 6676 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:30:22.0656 6676 Psched - ok
21:30:22.0734 6676 purendis (1b3434642ce3c26e6f24d3a76d749c2a) C:\Windows\system32\DRIVERS\purendis.sys
21:30:22.0766 6676 purendis - ok
21:30:22.0893 6676 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:30:22.0991 6676 ql2300 - ok
21:30:23.0093 6676 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:30:23.0133 6676 ql40xx - ok
21:30:23.0170 6676 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:30:23.0241 6676 QWAVEdrv - ok
21:30:23.0273 6676 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:30:23.0384 6676 RasAcd - ok
21:30:23.0416 6676 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:30:23.0528 6676 RasAgileVpn - ok
21:30:23.0580 6676 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:30:23.0713 6676 Rasl2tp - ok
21:30:23.0820 6676 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:30:23.0964 6676 RasPppoe - ok
21:30:24.0065 6676 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:30:24.0190 6676 RasSstp - ok
21:30:24.0244 6676 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:30:24.0375 6676 rdbss - ok
21:30:24.0418 6676 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:30:24.0481 6676 rdpbus - ok
21:30:24.0562 6676 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:30:24.0686 6676 RDPCDD - ok
21:30:24.0727 6676 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:30:24.0846 6676 RDPENCDD - ok
21:30:24.0931 6676 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:30:25.0045 6676 RDPREFMP - ok
21:30:25.0090 6676 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:30:25.0221 6676 RDPWD - ok
21:30:25.0324 6676 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:30:25.0374 6676 rdyboost - ok
21:30:25.0511 6676 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
21:30:25.0549 6676 Revoflt - ok
21:30:25.0654 6676 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:30:25.0769 6676 rspndr - ok
21:30:25.0817 6676 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:30:25.0861 6676 sbp2port - ok
21:30:25.0909 6676 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:30:26.0012 6676 scfilter - ok
21:30:26.0075 6676 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
21:30:26.0152 6676 sdbus - ok
21:30:26.0264 6676 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:30:26.0374 6676 secdrv - ok
21:30:26.0430 6676 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:30:26.0505 6676 Serenum - ok
21:30:26.0600 6676 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:30:26.0664 6676 Serial - ok
21:30:26.0701 6676 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:30:26.0764 6676 sermouse - ok
21:30:26.0904 6676 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:30:26.0990 6676 sffdisk - ok
21:30:27.0084 6676 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:30:27.0146 6676 sffp_mmc - ok
21:30:27.0181 6676 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:30:27.0251 6676 sffp_sd - ok
21:30:27.0312 6676 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:30:27.0361 6676 sfloppy - ok
21:30:27.0497 6676 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
21:30:27.0562 6676 SiSGbeLH - ok
21:30:27.0601 6676 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:30:27.0641 6676 SiSRaid2 - ok
21:30:27.0667 6676 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:30:27.0709 6676 SiSRaid4 - ok
21:30:27.0744 6676 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:30:27.0855 6676 Smb - ok
21:30:28.0005 6676 SNP2UVC (1d8474722cdffbb8fca5fa12c50a05a2) C:\Windows\system32\DRIVERS\snp2uvc.sys
21:30:28.0112 6676 SNP2UVC - ok
21:30:28.0239 6676 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:30:28.0277 6676 spldr - ok
21:30:28.0372 6676 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:30:28.0474 6676 srv - ok
21:30:28.0590 6676 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:30:28.0671 6676 srv2 - ok
21:30:28.0750 6676 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:30:28.0806 6676 srvnet - ok
21:30:28.0942 6676 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
21:30:28.0989 6676 ssadbus - ok
21:30:29.0055 6676 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
21:30:29.0087 6676 ssadmdfl - ok
21:30:29.0127 6676 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
21:30:29.0171 6676 ssadmdm - ok
21:30:29.0207 6676 ssadserd (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
21:30:29.0252 6676 ssadserd - ok
21:30:29.0316 6676 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:30:29.0352 6676 stexstor - ok
21:30:29.0419 6676 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:30:29.0459 6676 swenum - ok
21:30:29.0599 6676 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:30:29.0739 6676 Tcpip - ok
21:30:29.0961 6676 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:30:30.0097 6676 TCPIP6 - ok
21:30:30.0196 6676 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:30:30.0324 6676 tcpipreg - ok
21:30:30.0381 6676 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:30:30.0506 6676 TDPIPE - ok
21:30:30.0607 6676 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:30:30.0716 6676 TDTCP - ok
21:30:30.0816 6676 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:30:30.0961 6676 tdx - ok
21:30:31.0060 6676 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:30:31.0102 6676 TermDD - ok
21:30:31.0154 6676 TfFsMon (4b1c89130cf2e86921674de5ae7814e2) C:\Windows\system32\drivers\TfFsMon.sys
21:30:31.0190 6676 TfFsMon - ok
21:30:31.0234 6676 TfNetMon (a43b4746fb15e85ba816102c8ac5ef98) C:\Windows\system32\drivers\TfNetMon.sys
21:30:31.0267 6676 TfNetMon - ok
21:30:31.0307 6676 TfSysMon (761f2e2b759389a472bd3d94141742b9) C:\Windows\system32\drivers\TfSysMon.sys
21:30:31.0364 6676 TfSysMon - ok
21:30:31.0502 6676 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:30:31.0617 6676 tssecsrv - ok
21:30:31.0720 6676 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:30:31.0777 6676 TsUsbFlt - ok
21:30:31.0820 6676 TuneUpUtilitiesDrv - ok
21:30:31.0919 6676 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:30:32.0057 6676 tunnel - ok
21:30:32.0166 6676 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:30:32.0219 6676 uagp35 - ok
21:30:32.0261 6676 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:30:32.0292 6676 UBHelper - ok
21:30:32.0419 6676 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:30:32.0555 6676 udfs - ok
21:30:32.0684 6676 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:30:32.0725 6676 uliagpkx - ok
21:30:32.0759 6676 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:30:32.0816 6676 umbus - ok
21:30:32.0916 6676 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:30:32.0962 6676 UmPass - ok
21:30:33.0027 6676 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:30:33.0090 6676 usbccgp - ok
21:30:33.0175 6676 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:30:33.0252 6676 usbcir - ok
21:30:33.0297 6676 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:30:33.0357 6676 usbehci - ok
21:30:33.0479 6676 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:30:33.0559 6676 usbhub - ok
21:30:33.0656 6676 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:30:33.0714 6676 usbohci - ok
21:30:33.0757 6676 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:30:33.0821 6676 usbprint - ok
21:30:33.0901 6676 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:30:33.0984 6676 USBSTOR - ok
21:30:34.0092 6676 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:30:34.0152 6676 usbuhci - ok
21:30:34.0210 6676 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:30:34.0297 6676 usbvideo - ok
21:30:34.0342 6676 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
21:30:34.0416 6676 usb_rndisx - ok
21:30:34.0547 6676 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:30:34.0586 6676 vdrvroot - ok
21:30:34.0636 6676 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:30:34.0690 6676 vga - ok
21:30:34.0731 6676 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:30:34.0855 6676 VgaSave - ok
21:30:35.0006 6676 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:30:35.0070 6676 vhdmp - ok
21:30:35.0196 6676 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:30:35.0234 6676 viaide - ok
21:30:35.0285 6676 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:30:35.0327 6676 volmgr - ok
21:30:35.0387 6676 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:30:35.0447 6676 volmgrx - ok
21:30:35.0511 6676 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:30:35.0570 6676 volsnap - ok
21:30:35.0630 6676 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:30:35.0671 6676 vsmraid - ok
21:30:35.0724 6676 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:30:35.0794 6676 vwifibus - ok
21:30:35.0880 6676 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:30:35.0961 6676 vwififlt - ok
21:30:35.0992 6676 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:30:36.0071 6676 vwifimp - ok
21:30:36.0214 6676 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:30:36.0261 6676 WacomPen - ok
21:30:36.0308 6676 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:30:36.0443 6676 WANARP - ok
21:30:36.0473 6676 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:30:36.0600 6676 Wanarpv6 - ok
21:30:36.0872 6676 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:30:36.0907 6676 Wd - ok
21:30:37.0020 6676 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:30:37.0081 6676 Wdf01000 - ok
21:30:37.0172 6676 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:30:37.0272 6676 WfpLwf - ok
21:30:37.0323 6676 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
21:30:37.0372 6676 WimFltr - ok
21:30:37.0408 6676 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:30:37.0446 6676 WIMMount - ok
21:30:37.0542 6676 WinRing0_1_2_0 - ok
21:30:37.0719 6676 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:30:37.0775 6676 WmiAcpi - ok
21:30:37.0958 6676 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:30:38.0117 6676 ws2ifsl - ok
21:30:38.0222 6676 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:30:38.0337 6676 WudfPf - ok
21:30:38.0455 6676 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:30:38.0563 6676 WUDFRd - ok
21:30:38.0718 6676 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:30:38.0947 6676 \Device\Harddisk0\DR0 - ok
21:30:38.0953 6676 Boot (0x1200) (632a7468e1dd8b30f728b8a6dac69e47) \Device\Harddisk0\DR0\Partition0
21:30:38.0954 6676 \Device\Harddisk0\DR0\Partition0 - ok
21:30:38.0984 6676 Boot (0x1200) (9775d455c24282e5c6731c3c5528c6a4) \Device\Harddisk0\DR0\Partition1
21:30:38.0986 6676 \Device\Harddisk0\DR0\Partition1 - ok
21:30:38.0988 6676 ============================================================
21:30:38.0988 6676 Scan finished
21:30:38.0988 6676 ============================================================
21:30:39.0006 5512 Detected object count: 0
21:30:39.0006 5512 Actual detected object count: 0
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:01, on 1-2-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_160_ActiveX.exe
C:\Users\theo\Desktop\TDSSKiller.exe
C:\Users\theo\Desktop\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Woofi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: MailWasherPro.lnk = C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: Buienradar.nl - Weer - Actuele neerslag, weerbericht, weersverwachting, sneeuwradar en satellietbeelden
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files (x86)\Atheros\AWiCSrvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileServe Toolbar Helper - Unknown owner - C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe

--
End of file - 15961 bytes
21:29:23.0668 2928 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49
21:29:23.0835 2928 ============================================================
21:29:23.0836 2928 Current date / time: 2012/02/01 21:29:23.0835
21:29:23.0836 2928 SystemInfo:
21:29:23.0836 2928
21:29:23.0836 2928 OS Version: 6.1.7601 ServicePack: 1.0
21:29:23.0836 2928 Product type: Workstation
21:29:23.0836 2928 ComputerName: THEO-PC
21:29:23.0836 2928 UserName: theo
21:29:23.0836 2928 Windows directory: C:\Windows
21:29:23.0836 2928 System windows directory: C:\Windows
21:29:23.0836 2928 Running under WOW64
21:29:23.0836 2928 Processor architecture: Intel x64
21:29:23.0836 2928 Number of processors: 2
21:29:23.0836 2928 Page size: 0x1000
21:29:23.0836 2928 Boot type: Normal boot
21:29:23.0836 2928 ============================================================
21:29:24.0860 2928 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:29:24.0870 2928 \Device\Harddisk0\DR0:
21:29:24.0871 2928 MBR used
21:29:24.0871 2928 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2AF98B8, BlocksNum 0xE8E1800
21:29:24.0889 2928 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x113DC000, BlocksNum 0x28FA9800
21:29:24.0962 2928 Initialize success
21:29:24.0962 2928 ============================================================
21:29:51.0585 6676 ============================================================
21:29:51.0585 6676 Scan started
21:29:51.0585 6676 Mode: Manual; SigCheck; TDLFS;
21:29:51.0585 6676 ============================================================
21:29:52.0006 6676 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:29:52.0207 6676 1394ohci - ok
21:29:52.0327 6676 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:29:52.0405 6676 ACPI - ok
21:29:52.0457 6676 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:29:52.0564 6676 AcpiPmi - ok
21:29:52.0682 6676 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:29:52.0749 6676 adp94xx - ok
21:29:52.0780 6676 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:29:52.0834 6676 adpahci - ok
21:29:52.0868 6676 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:29:52.0915 6676 adpu320 - ok
21:29:52.0978 6676 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
21:29:53.0083 6676 AFD - ok
21:29:53.0174 6676 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:29:53.0222 6676 agp440 - ok
21:29:53.0274 6676 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:29:53.0311 6676 aliide - ok
21:29:53.0352 6676 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:29:53.0388 6676 amdide - ok
21:29:53.0415 6676 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:29:53.0510 6676 AmdK8 - ok
21:29:53.0594 6676 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:29:53.0664 6676 AmdPPM - ok
21:29:53.0702 6676 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:29:53.0743 6676 amdsata - ok
21:29:53.0791 6676 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:29:53.0839 6676 amdsbs - ok
21:29:53.0881 6676 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:29:53.0919 6676 amdxata - ok
21:29:53.0992 6676 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
21:29:54.0067 6676 androidusb - ok
21:29:54.0100 6676 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:29:54.0218 6676 AppID - ok
21:29:54.0268 6676 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:29:54.0309 6676 arc - ok
21:29:54.0337 6676 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:29:54.0394 6676 arcsas - ok
21:29:54.0468 6676 ArcSec - ok
21:29:54.0510 6676 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
21:29:54.0548 6676 AsDsm - ok
21:29:54.0637 6676 ASMMAP64 (4c016fd76ed5c05e84ca8cab77993961) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
21:29:54.0670 6676 ASMMAP64 - ok
21:29:54.0798 6676 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:29:55.0007 6676 AsyncMac - ok
21:29:55.0119 6676 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:29:55.0159 6676 atapi - ok
21:29:55.0272 6676 athr (7d0398396727195cc73d703001d3cff4) C:\Windows\system32\DRIVERS\athrx.sys
21:29:55.0445 6676 athr - ok
21:29:55.0524 6676 avc3 - ok
21:29:55.0555 6676 avfwim - ok
21:29:55.0579 6676 avfwot - ok
21:29:55.0642 6676 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:29:55.0746 6676 b06bdrv - ok
21:29:55.0837 6676 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:29:55.0918 6676 b57nd60a - ok
21:29:55.0961 6676 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:29:56.0104 6676 Beep - ok
21:29:56.0230 6676 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:29:56.0298 6676 blbdrive - ok
21:29:56.0382 6676 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:29:56.0478 6676 bowser - ok
21:29:56.0579 6676 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:29:56.0684 6676 BrFiltLo - ok
21:29:56.0791 6676 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:29:56.0861 6676 BrFiltUp - ok
21:29:56.0917 6676 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:29:57.0082 6676 BridgeMP - ok
21:29:57.0192 6676 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:29:57.0287 6676 Brserid - ok
21:29:57.0361 6676 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:29:57.0428 6676 BrSerWdm - ok
21:29:57.0502 6676 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:29:57.0572 6676 BrUsbMdm - ok
21:29:57.0633 6676 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:29:57.0695 6676 BrUsbSer - ok
21:29:57.0771 6676 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:29:57.0852 6676 BTHMODEM - ok
21:29:57.0866 6676 catchme - ok
21:29:57.0959 6676 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:29:58.0089 6676 cdfs - ok
21:29:58.0135 6676 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:29:58.0206 6676 cdrom - ok
21:29:58.0302 6676 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:29:58.0378 6676 circlass - ok
21:29:58.0435 6676 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:29:58.0507 6676 CLFS - ok
21:29:58.0644 6676 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:29:58.0707 6676 CmBatt - ok
21:29:58.0776 6676 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:29:58.0814 6676 cmdide - ok
21:29:58.0869 6676 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
21:29:58.0951 6676 CNG - ok
21:29:59.0018 6676 CnxtHdAudService (7247a4d0875f5f28919e0787e11b7b57) C:\Windows\system32\drivers\CHDRT64.sys
21:29:59.0094 6676 CnxtHdAudService - ok
21:29:59.0164 6676 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:29:59.0201 6676 Compbatt - ok
21:29:59.0250 6676 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:29:59.0320 6676 CompositeBus - ok
21:29:59.0393 6676 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:29:59.0434 6676 crcdisk - ok
21:29:59.0516 6676 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:29:59.0639 6676 DfsC - ok
21:29:59.0719 6676 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:29:59.0831 6676 discache - ok
21:29:59.0884 6676 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:29:59.0925 6676 Disk - ok
21:29:59.0964 6676 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:30:00.0041 6676 drmkaud - ok
21:30:00.0160 6676 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:30:00.0250 6676 DXGKrnl - ok
21:30:00.0378 6676 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:30:00.0511 6676 ebdrv - ok
21:30:00.0570 6676 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:30:00.0634 6676 elxstor - ok
21:30:00.0696 6676 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:30:00.0761 6676 ErrDev - ok
21:30:00.0838 6676 ETD (fd0d922de7d2ad9e98562caa19a7cd2d) C:\Windows\system32\DRIVERS\ETD.sys
21:30:00.0910 6676 ETD - ok
21:30:00.0988 6676 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:30:01.0143 6676 exfat - ok
21:30:01.0270 6676 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:30:01.0420 6676 fastfat - ok
21:30:01.0518 6676 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:30:01.0574 6676 fdc - ok
21:30:01.0606 6676 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:30:01.0655 6676 FileInfo - ok
21:30:01.0689 6676 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:30:01.0821 6676 Filetrace - ok
21:30:01.0919 6676 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:30:01.0966 6676 flpydisk - ok
21:30:02.0015 6676 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:30:02.0078 6676 FltMgr - ok
21:30:02.0130 6676 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:30:02.0170 6676 FsDepends - ok
21:30:02.0195 6676 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:30:02.0234 6676 Fs_Rec - ok
21:30:02.0270 6676 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:30:02.0326 6676 fvevol - ok
21:30:02.0356 6676 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:30:02.0401 6676 gagp30kx - ok
21:30:02.0438 6676 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:30:02.0475 6676 GEARAspiWDM - ok
21:30:02.0564 6676 ghaio (7d66ebde8b7f9b4e00beefeee82670d4) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:30:02.0599 6676 ghaio - ok
21:30:02.0698 6676 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:30:02.0776 6676 hcw85cir - ok
21:30:02.0869 6676 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:30:02.0974 6676 HdAudAddService - ok
21:30:03.0119 6676 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:30:03.0178 6676 HDAudBus - ok
21:30:03.0229 6676 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:30:03.0265 6676 HECIx64 - ok
21:30:03.0306 6676 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:30:03.0384 6676 HidBatt - ok
21:30:03.0518 6676 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:30:03.0599 6676 HidBth - ok
21:30:03.0664 6676 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:30:03.0723 6676 HidIr - ok
21:30:03.0778 6676 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:30:03.0836 6676 HidUsb - ok
21:30:03.0914 6676 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:30:03.0970 6676 HpSAMD - ok
21:30:04.0058 6676 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys
21:30:04.0139 6676 HTCAND64 - ok
21:30:04.0225 6676 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
21:30:04.0260 6676 htcnprot - ok
21:30:04.0311 6676 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:30:04.0471 6676 HTTP - ok
21:30:04.0656 6676 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:30:04.0692 6676 hwpolicy - ok
21:30:04.0738 6676 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:30:04.0806 6676 i8042prt - ok
21:30:04.0870 6676 iaStor (8180a2392e732e8871589b54fab6991f) C:\Windows\system32\DRIVERS\iaStor.sys
21:30:04.0956 6676 iaStor - ok
21:30:05.0029 6676 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:30:05.0093 6676 iaStorV - ok
21:30:05.0421 6676 igfx (0089b53f1befd34b7d8ca4ab021335fa) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:30:05.0851 6676 igfx - ok
21:30:05.0951 6676 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:30:05.0988 6676 iirsp - ok
21:30:06.0041 6676 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
21:30:06.0125 6676 Impcd - ok
21:30:06.0224 6676 IntcDAud (ae594cc17c33ac146739494615e14851) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:30:06.0326 6676 IntcDAud - ok
21:30:06.0366 6676 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:30:06.0402 6676 intelide - ok
21:30:06.0437 6676 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:30:06.0509 6676 intelppm - ok
21:30:06.0637 6676 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:30:06.0769 6676 IpFilterDriver - ok
21:30:06.0827 6676 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:30:06.0897 6676 IPMIDRV - ok
21:30:06.0961 6676 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:30:07.0100 6676 IPNAT - ok
21:30:07.0179 6676 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:30:07.0294 6676 IRENUM - ok
21:30:07.0405 6676 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:30:07.0444 6676 isapnp - ok
21:30:07.0479 6676 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:30:07.0532 6676 iScsiPrt - ok
21:30:07.0572 6676 JMCR (faa8d5426bd7c04cfdb1286b19c4dfa4) C:\Windows\system32\DRIVERS\jmcr.sys
21:30:07.0616 6676 JMCR - ok
21:30:07.0660 6676 JME (2d011bafc08169555ab49920be54b144) C:\Windows\system32\DRIVERS\JME.sys
21:30:07.0702 6676 JME - ok
21:30:07.0744 6676 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:30:07.0789 6676 kbdclass - ok
21:30:07.0821 6676 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:30:07.0886 6676 kbdhid - ok
21:30:07.0982 6676 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
21:30:08.0039 6676 kbfiltr - ok
21:30:08.0216 6676 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
21:30:08.0272 6676 KLIM6 - ok
21:30:08.0365 6676 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
21:30:08.0410 6676 KSecDD - ok
21:30:08.0477 6676 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
21:30:08.0530 6676 KSecPkg - ok
21:30:08.0604 6676 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:30:08.0734 6676 ksthunk - ok
21:30:08.0826 6676 LHidFilt (241f2648adf090e2a10095bd6d6f5dcb) C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:30:08.0861 6676 LHidFilt - ok
21:30:08.0905 6676 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:30:09.0035 6676 lltdio - ok
21:30:09.0157 6676 LMouFilt (342ed5a4b3326014438f36d22d803737) C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:30:09.0197 6676 LMouFilt - ok
21:30:09.0259 6676 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:30:09.0301 6676 LSI_FC - ok
21:30:09.0329 6676 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:30:09.0372 6676 LSI_SAS - ok
21:30:09.0397 6676 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:30:09.0436 6676 LSI_SAS2 - ok
21:30:09.0466 6676 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:30:09.0506 6676 LSI_SCSI - ok
21:30:09.0542 6676 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:30:09.0671 6676 luafv - ok
21:30:09.0700 6676 lullaby (085435ae1a124361304044029b5cc644) C:\Windows\system32\DRIVERS\lullaby.sys
21:30:09.0734 6676 lullaby - ok
21:30:09.0770 6676 LUsbFilt (29c733e1de824670dc9315cfc9bdbcd3) C:\Windows\system32\Drivers\LUsbFilt.Sys
21:30:09.0806 6676 LUsbFilt - ok
21:30:09.0909 6676 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
21:30:09.0941 6676 MBAMProtector - ok
21:30:10.0007 6676 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:30:10.0046 6676 megasas - ok
21:30:10.0100 6676 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:30:10.0164 6676 MegaSR - ok
21:30:10.0226 6676 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:30:10.0371 6676 Modem - ok
21:30:10.0414 6676 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:30:10.0479 6676 monitor - ok
21:30:10.0584 6676 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:30:10.0625 6676 mouclass - ok
21:30:10.0671 6676 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:30:10.0732 6676 mouhid - ok
21:30:10.0836 6676 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:30:10.0882 6676 mountmgr - ok
21:30:11.0021 6676 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
21:30:11.0075 6676 MpFilter - ok
21:30:11.0119 6676 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:30:11.0162 6676 mpio - ok
21:30:11.0242 6676 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
21:30:11.0282 6676 MpNWMon - ok
21:30:11.0327 6676 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:30:11.0451 6676 mpsdrv - ok
21:30:11.0562 6676 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:30:11.0681 6676 MRxDAV - ok
21:30:11.0776 6676 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:30:11.0840 6676 mrxsmb - ok
21:30:11.0882 6676 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:30:11.0942 6676 mrxsmb10 - ok
21:30:11.0982 6676 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:30:12.0062 6676 mrxsmb20 - ok
21:30:12.0166 6676 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:30:12.0205 6676 msahci - ok
21:30:12.0254 6676 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:30:12.0299 6676 msdsm - ok
21:30:12.0361 6676 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:30:12.0480 6676 Msfs - ok
21:30:12.0602 6676 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:30:12.0720 6676 mshidkmdf - ok
21:30:12.0814 6676 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:30:12.0862 6676 msisadrv - ok
21:30:12.0927 6676 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:30:13.0046 6676 MSKSSRV - ok
21:30:13.0170 6676 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:30:13.0292 6676 MSPCLOCK - ok
21:30:13.0310 6676 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:30:13.0431 6676 MSPQM - ok
21:30:13.0544 6676 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:30:13.0609 6676 MsRPC - ok
21:30:13.0710 6676 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:30:13.0750 6676 mssmbios - ok
21:30:13.0791 6676 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:30:13.0912 6676 MSTEE - ok
21:30:14.0007 6676 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:30:14.0072 6676 MTConfig - ok
21:30:14.0110 6676 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
21:30:14.0140 6676 MTsensor - ok
21:30:14.0275 6676 MTsensor64 (0df53a9649073cebbc0988d6353fed6e) C:\Windows\system32\DRIVERS\PuAcpi64.sys
21:30:14.0307 6676 MTsensor64 - ok
21:30:14.0339 6676 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:30:14.0380 6676 Mup - ok
21:30:14.0505 6676 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:30:14.0592 6676 NativeWifiP - ok
21:30:14.0727 6676 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:30:14.0822 6676 NDIS - ok
21:30:14.0865 6676 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:30:14.0989 6676 NdisCap - ok
21:30:15.0155 6676 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:30:15.0272 6676 NdisTapi - ok
21:30:15.0374 6676 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:30:15.0497 6676 Ndisuio - ok
21:30:15.0537 6676 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:30:15.0672 6676 NdisWan - ok
21:30:15.0784 6676 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:30:15.0907 6676 NDProxy - ok
21:30:15.0949 6676 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:30:16.0080 6676 NetBIOS - ok
21:30:16.0207 6676 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:30:16.0362 6676 NetBT - ok
21:30:16.0536 6676 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:30:16.0575 6676 nfrd960 - ok
21:30:16.0646 6676 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:30:16.0686 6676 NisDrv - ok
21:30:16.0755 6676 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:30:16.0877 6676 Npfs - ok
21:30:16.0987 6676 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:30:17.0096 6676 nsiproxy - ok
21:30:17.0169 6676 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:30:17.0281 6676 Ntfs - ok
21:30:17.0360 6676 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:30:17.0392 6676 NTIDrvr - ok
21:30:17.0444 6676 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:30:17.0566 6676 Null - ok
21:30:18.0016 6676 nvlddmkm (cc1efea1f0ab17e59bd4b5baff3e5cb0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:30:19.0961 6676 nvlddmkm - ok
21:30:20.0064 6676 nvpciflt (2e5de4423bf6d1c44609febed7b1ff0f) C:\Windows\system32\DRIVERS\nvpciflt.sys
21:30:20.0091 6676 nvpciflt - ok
21:30:20.0129 6676 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:30:20.0164 6676 nvraid - ok
21:30:20.0260 6676 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:30:20.0314 6676 nvstor - ok
21:30:20.0437 6676 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:30:20.0486 6676 nv_agp - ok
21:30:20.0540 6676 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:30:20.0605 6676 ohci1394 - ok
21:30:20.0697 6676 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:30:20.0759 6676 Parport - ok
21:30:20.0816 6676 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:30:20.0860 6676 partmgr - ok
21:30:20.0946 6676 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:30:20.0999 6676 pci - ok
21:30:21.0037 6676 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:30:21.0074 6676 pciide - ok
21:30:21.0124 6676 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:30:21.0177 6676 pcmcia - ok
21:30:21.0244 6676 PCTCore (3a68080572b81577791a7b19bb880da9) C:\Windows\system32\drivers\PCTCore64.sys
21:30:21.0346 6676 PCTCore - ok
21:30:21.0450 6676 pctgntdi (d6ad12ef986484d692253caca6882d89) C:\Windows\system32\drivers\pctgntdi64.sys
21:30:21.0500 6676 pctgntdi - ok
21:30:21.0541 6676 pctplsg (ccc67d848660b513ad01356b324727b2) C:\Windows\System32\drivers\pctplsg64.sys
21:30:21.0577 6676 pctplsg - ok
21:30:21.0665 6676 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:30:21.0706 6676 pcw - ok
21:30:21.0754 6676 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:30:21.0891 6676 PEAUTH - ok
21:30:22.0062 6676 pnarp (fb83b6c62dff5abe36304351d2bed581) C:\Windows\system32\DRIVERS\pnarp.sys
21:30:22.0096 6676 pnarp - ok
21:30:22.0171 6676 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:30:22.0302 6676 PptpMiniport - ok
21:30:22.0395 6676 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:30:22.0459 6676 Processor - ok
21:30:22.0521 6676 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:30:22.0656 6676 Psched - ok
21:30:22.0734 6676 purendis (1b3434642ce3c26e6f24d3a76d749c2a) C:\Windows\system32\DRIVERS\purendis.sys
21:30:22.0766 6676 purendis - ok
21:30:22.0893 6676 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:30:22.0991 6676 ql2300 - ok
21:30:23.0093 6676 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:30:23.0133 6676 ql40xx - ok
21:30:23.0170 6676 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:30:23.0241 6676 QWAVEdrv - ok
21:30:23.0273 6676 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:30:23.0384 6676 RasAcd - ok
21:30:23.0416 6676 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:30:23.0528 6676 RasAgileVpn - ok
21:30:23.0580 6676 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:30:23.0713 6676 Rasl2tp - ok
21:30:23.0820 6676 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:30:23.0964 6676 RasPppoe - ok
21:30:24.0065 6676 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:30:24.0190 6676 RasSstp - ok
21:30:24.0244 6676 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:30:24.0375 6676 rdbss - ok
21:30:24.0418 6676 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:30:24.0481 6676 rdpbus - ok
21:30:24.0562 6676 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:30:24.0686 6676 RDPCDD - ok
21:30:24.0727 6676 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:30:24.0846 6676 RDPENCDD - ok
21:30:24.0931 6676 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:30:25.0045 6676 RDPREFMP - ok
21:30:25.0090 6676 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:30:25.0221 6676 RDPWD - ok
21:30:25.0324 6676 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:30:25.0374 6676 rdyboost - ok
21:30:25.0511 6676 Revoflt (9c3ac71a9934b884fac567a8807e9c4d) C:\Windows\system32\DRIVERS\revoflt.sys
21:30:25.0549 6676 Revoflt - ok
21:30:25.0654 6676 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:30:25.0769 6676 rspndr - ok
21:30:25.0817 6676 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:30:25.0861 6676 sbp2port - ok
21:30:25.0909 6676 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:30:26.0012 6676 scfilter - ok
21:30:26.0075 6676 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
21:30:26.0152 6676 sdbus - ok
21:30:26.0264 6676 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:30:26.0374 6676 secdrv - ok
21:30:26.0430 6676 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:30:26.0505 6676 Serenum - ok
21:30:26.0600 6676 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:30:26.0664 6676 Serial - ok
21:30:26.0701 6676 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:30:26.0764 6676 sermouse - ok
21:30:26.0904 6676 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:30:26.0990 6676 sffdisk - ok
21:30:27.0084 6676 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:30:27.0146 6676 sffp_mmc - ok
21:30:27.0181 6676 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:30:27.0251 6676 sffp_sd - ok
21:30:27.0312 6676 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:30:27.0361 6676 sfloppy - ok
21:30:27.0497 6676 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
21:30:27.0562 6676 SiSGbeLH - ok
21:30:27.0601 6676 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:30:27.0641 6676 SiSRaid2 - ok
21:30:27.0667 6676 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:30:27.0709 6676 SiSRaid4 - ok
21:30:27.0744 6676 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:30:27.0855 6676 Smb - ok
21:30:28.0005 6676 SNP2UVC (1d8474722cdffbb8fca5fa12c50a05a2) C:\Windows\system32\DRIVERS\snp2uvc.sys
21:30:28.0112 6676 SNP2UVC - ok
21:30:28.0239 6676 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:30:28.0277 6676 spldr - ok
21:30:28.0372 6676 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:30:28.0474 6676 srv - ok
21:30:28.0590 6676 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:30:28.0671 6676 srv2 - ok
21:30:28.0750 6676 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:30:28.0806 6676 srvnet - ok
21:30:28.0942 6676 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
21:30:28.0989 6676 ssadbus - ok
21:30:29.0055 6676 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
21:30:29.0087 6676 ssadmdfl - ok
21:30:29.0127 6676 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
21:30:29.0171 6676 ssadmdm - ok
21:30:29.0207 6676 ssadserd (d33d1bd3ec0e766211a234f56a12726d) C:\Windows\system32\DRIVERS\ssadserd.sys
21:30:29.0252 6676 ssadserd - ok
21:30:29.0316 6676 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:30:29.0352 6676 stexstor - ok
21:30:29.0419 6676 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:30:29.0459 6676 swenum - ok
21:30:29.0599 6676 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:30:29.0739 6676 Tcpip - ok
21:30:29.0961 6676 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:30:30.0097 6676 TCPIP6 - ok
21:30:30.0196 6676 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:30:30.0324 6676 tcpipreg - ok
21:30:30.0381 6676 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:30:30.0506 6676 TDPIPE - ok
21:30:30.0607 6676 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:30:30.0716 6676 TDTCP - ok
21:30:30.0816 6676 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:30:30.0961 6676 tdx - ok
21:30:31.0060 6676 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:30:31.0102 6676 TermDD - ok
21:30:31.0154 6676 TfFsMon (4b1c89130cf2e86921674de5ae7814e2) C:\Windows\system32\drivers\TfFsMon.sys
21:30:31.0190 6676 TfFsMon - ok
21:30:31.0234 6676 TfNetMon (a43b4746fb15e85ba816102c8ac5ef98) C:\Windows\system32\drivers\TfNetMon.sys
21:30:31.0267 6676 TfNetMon - ok
21:30:31.0307 6676 TfSysMon (761f2e2b759389a472bd3d94141742b9) C:\Windows\system32\drivers\TfSysMon.sys
21:30:31.0364 6676 TfSysMon - ok
21:30:31.0502 6676 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:30:31.0617 6676 tssecsrv - ok
21:30:31.0720 6676 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:30:31.0777 6676 TsUsbFlt - ok
21:30:31.0820 6676 TuneUpUtilitiesDrv - ok
21:30:31.0919 6676 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:30:32.0057 6676 tunnel - ok
21:30:32.0166 6676 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:30:32.0219 6676 uagp35 - ok
21:30:32.0261 6676 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:30:32.0292 6676 UBHelper - ok
21:30:32.0419 6676 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:30:32.0555 6676 udfs - ok
21:30:32.0684 6676 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:30:32.0725 6676 uliagpkx - ok
21:30:32.0759 6676 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:30:32.0816 6676 umbus - ok
21:30:32.0916 6676 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:30:32.0962 6676 UmPass - ok
21:30:33.0027 6676 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:30:33.0090 6676 usbccgp - ok
21:30:33.0175 6676 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:30:33.0252 6676 usbcir - ok
21:30:33.0297 6676 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:30:33.0357 6676 usbehci - ok
21:30:33.0479 6676 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:30:33.0559 6676 usbhub - ok
21:30:33.0656 6676 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:30:33.0714 6676 usbohci - ok
21:30:33.0757 6676 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:30:33.0821 6676 usbprint - ok
21:30:33.0901 6676 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:30:33.0984 6676 USBSTOR - ok
21:30:34.0092 6676 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:30:34.0152 6676 usbuhci - ok
21:30:34.0210 6676 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:30:34.0297 6676 usbvideo - ok
21:30:34.0342 6676 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
21:30:34.0416 6676 usb_rndisx - ok
21:30:34.0547 6676 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:30:34.0586 6676 vdrvroot - ok
21:30:34.0636 6676 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:30:34.0690 6676 vga - ok
21:30:34.0731 6676 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:30:34.0855 6676 VgaSave - ok
21:30:35.0006 6676 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:30:35.0070 6676 vhdmp - ok
21:30:35.0196 6676 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:30:35.0234 6676 viaide - ok
21:30:35.0285 6676 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:30:35.0327 6676 volmgr - ok
21:30:35.0387 6676 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:30:35.0447 6676 volmgrx - ok
21:30:35.0511 6676 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:30:35.0570 6676 volsnap - ok
21:30:35.0630 6676 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:30:35.0671 6676 vsmraid - ok
21:30:35.0724 6676 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:30:35.0794 6676 vwifibus - ok
21:30:35.0880 6676 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:30:35.0961 6676 vwififlt - ok
21:30:35.0992 6676 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:30:36.0071 6676 vwifimp - ok
21:30:36.0214 6676 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:30:36.0261 6676 WacomPen - ok
21:30:36.0308 6676 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:30:36.0443 6676 WANARP - ok
21:30:36.0473 6676 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:30:36.0600 6676 Wanarpv6 - ok
21:30:36.0872 6676 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:30:36.0907 6676 Wd - ok
21:30:37.0020 6676 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:30:37.0081 6676 Wdf01000 - ok
21:30:37.0172 6676 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:30:37.0272 6676 WfpLwf - ok
21:30:37.0323 6676 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
21:30:37.0372 6676 WimFltr - ok
21:30:37.0408 6676 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:30:37.0446 6676 WIMMount - ok
21:30:37.0542 6676 WinRing0_1_2_0 - ok
21:30:37.0719 6676 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:30:37.0775 6676 WmiAcpi - ok
21:30:37.0958 6676 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:30:38.0117 6676 ws2ifsl - ok
21:30:38.0222 6676 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:30:38.0337 6676 WudfPf - ok
21:30:38.0455 6676 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:30:38.0563 6676 WUDFRd - ok
21:30:38.0718 6676 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:30:38.0947 6676 \Device\Harddisk0\DR0 - ok
21:30:38.0953 6676 Boot (0x1200) (632a7468e1dd8b30f728b8a6dac69e47) \Device\Harddisk0\DR0\Partition0
21:30:38.0954 6676 \Device\Harddisk0\DR0\Partition0 - ok
21:30:38.0984 6676 Boot (0x1200) (9775d455c24282e5c6731c3c5528c6a4) \Device\Harddisk0\DR0\Partition1
21:30:38.0986 6676 \Device\Harddisk0\DR0\Partition1 - ok
21:30:38.0988 6676 ============================================================
21:30:38.0988 6676 Scan finished
21:30:38.0988 6676 ============================================================
21:30:39.0006 5512 Detected object count: 0
21:30:39.0006 5512 Actual detected object count: 0
 
Theeke je hebt alles niet uitgevoerd.


Ga naar start - alle programma's - bureauaccesoires.
Rechtsklik bij Opdrachtprompt en voer uit als administrator

Type het volgende
sc stop "Partner Service" > Druk op de enter toets

sc delete "Partner Service" > Druk op de enter toets

exit > Druk enter toets

Computer herstarten en graag nieuw HijackThis logje.
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:23:38, on 1-2-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe
C:\Program Files (x86)\FileServe Toolbar\FileServeVideoToMp3.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\theo\Desktop\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Woofi
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files (x86)\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [Sony Ericsson PC Companion] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1721353367-264211606-25166001-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: MailWasherPro.lnk = C:\Program Files (x86)\Firetrust\MailWasher\MailWasherPro.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: Buienradar.nl - Weer - Actuele neerslag, weerbericht, weersverwachting, sneeuwradar en satellietbeelden
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - Unknown owner - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Unknown owner - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AWiCSrvc - Atheros Communications - C:\Program Files (x86)\Atheros\AWiCSrvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileServe Toolbar Helper - Unknown owner - C:\Program Files (x86)\FileServe Toolbar\FileServeSvc.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe (file missing)
O23 - Service: PC Tools Security Service (sdCoreService) - Unknown owner - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe

--
End of file - 15740 bytes
 
Dag theeke , hij zit er nog.

Eens proberen of we er hem zo uitkrijgen. Als het hiermee niet lukt , gaan we er ComboFix moeten bijhalen.
Wat ik vetgedrukt heb is zeer belangrijk.

Ga naar start > Programma's > Bureauaccesoires
Rechtsklik bij Opdrachtprompt en voer uit als administrator

Type het volgende.
sc stop "Partner Service - Google Inc." : Opgelet : Spatie niet vergeten tussen sc en stop en tussen stop en "Partner Service - Google Inc." . Net hetzelfde als bij sc delete
Druk op de enter toets
Type het volgende
sc delete "Partner Service - Google Inc."
Druk op de enter toets
Type het volgende
exit
Druk op de enter toets
Herstart de computer.
Maak nog eens een nieuw HijackThis logje en voeg dit in je volgend antwoord.
Voer ook nog eens een snelle scan uit met Mbam MalwareBytes. Plaats hiervan ook het resultaat in een nieuw antwoord.
Niet vergeten Mbam te Updaten voor het scannen.
 
Status
Niet open voor verdere reacties.
Terug
Bovenaan Onderaan