Archief - Ontzettend trage pc

Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
s

s@té

Legacy Member
Mijn pc is ongelooflijk traag. Surfen op internet, meerdere tabbladen openen, alle handelingen gaan onwaarschijnlijk traag, het is gewoonweg frustrerend. Ik hoop dat er mij iemand via deze weg kan helpen. Voor internet pagina's te openen moet ik ook vaak een CTRL + F5 doen om effectief de pagina te laden. Mijn anti-virus is BitDefender, heb de indruk dat die ook meer fout dan goed doet.

Heb spybot laten lopen, die vond 2 zaken, die zijn verwijderd nu.

Hieronder het malware logje:

Malwarebytes' Anti-Malware 1.51.2.1300
Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Databaseversie: 8090

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

5/11/2011 15:14:05
mbam-log-2011-11-05 (15-14-05).txt

Scantype: Volledige scan (C:\|)
Objecten gescand: 298169
Verstreken tijd: 20 minuut/minuten, 55 seconde(n)

Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 0
Registerwaarden geïnfecteerd: 0
Registerdata geïnfecteerd: 0
Mappen geïnfecteerd: 0
Bestanden geïnfecteerd: 0

Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registersleutels geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Registerdata geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Mappen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

Bestanden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)

DDS logje:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Gilles at 15:23:19 on 2011-11-05
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.12287.9557 [GMT 1:00]
.
AV: Bitdefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Disabled/Outdated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Bitdefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
FW: Bitdefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskeng.exe
C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bitdefender\Bitdefender 2012\pchooklaunch64.exe
C:\Program Files\Bitdefender\Bitdefender 2012\Antispam32\pchooklaunch32.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: &Verzenden naar OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Download alle links met IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download FLV video inhoud met IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
IE: Download met IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
TCP: DhcpNameServer = 195.130.130.2 195.130.131.2
TCP: Interfaces\{0D38D995-B645-418F-97E8-F72E8E6E4251} : DhcpNameServer = 195.130.130.2 195.130.131.2
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{0055C089-8582-441B-A0BF-17B458C2A3A8}
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
{53707962-6F74-2D53-2644-206D7942484F}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce-x64: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\bf1xr2m4.default\
FF - prefs.js: browser.startup.homepage - Zita - het Web van Z tot A - Nieuws | Entertainment | Lifestyle | Fun
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
FF - plugin: C:\Users\Gilles\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys --> C:\Windows\system32\DRIVERS\avc3.sys [?]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [2011-3-1 89680]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-3-1 102992]
R1 BDVEDISK;BDVEDISK;C:\Windows\system32\DRIVERS\bdvedisk.sys --> C:\Windows\system32\DRIVERS\bdvedisk.sys [?]
R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-11-3 328536]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-9-8 361984]
R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]
R2 IDMWFP;IDMWFP;C:\Windows\system32\DRIVERS\idmwfp.sys --> C:\Windows\system32\DRIVERS\idmwfp.sys [?]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-11-3 820568]
R2 LVPrcS64;Process Monitor;C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe [2009-10-7 191000]
R2 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe [2011-11-4 74336]
R2 UPDATESRV;BitDefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe [2011-7-22 62512]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 avchv;avchv Function Driver;C:\Windows\system32\DRIVERS\avchv.sys --> C:\Windows\system32\DRIVERS\avchv.sys [?]
R3 avckf;avckf;C:\Windows\system32\DRIVERS\avckf.sys --> C:\Windows\system32\DRIVERS\avckf.sys [?]
R3 LVPr2M64;Logitech LVPr2M64 Driver;C:\Windows\system32\DRIVERS\LVPr2M64.sys --> C:\Windows\system32\DRIVERS\LVPr2M64.sys [?]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]
R3 LVUVC64;Logitech QuickCam E3500(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys --> C:\Windows\system32\DRIVERS\lvuvc64.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys --> C:\Windows\system32\DRIVERS\usbfilter.sys [?]
S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-11-5 366152]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 51456888]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-11-3 33184]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 Update Server;BitDefender Update Server v2;C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-7-22 466736]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-11-3 21872]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-11-3 20336]
SUnknown bdsandbox;bdsandbox; [x]
.
=============== Created Last 30 ================
.
2011-11-05 13:35:25 -------- d-----w- C:\Users\Gilles\AppData\Roaming\Malwarebytes
2011-11-05 13:35:20 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2011-11-05 13:35:20 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2011-11-05 13:35:16 -------- d-----w- C:\ProgramData\Malwarebytes
2011-11-05 13:35:13 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-11-05 13:35:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-11-05 13:16:48 -------- d-----w- C:\f70654e67c62e87c705f8d7afb7ecb35
2011-11-04 16:44:43 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2011-11-04 16:44:41 -------- d-----w- C:\Windows\System32\wbem\en-US
2011-11-04 16:44:19 -------- d-----w- C:\Windows\pss
2011-11-04 16:12:59 -------- d-----w- C:\Program Files (x86)\Smart File Advisor
2011-11-04 16:12:58 -------- d-----w- C:\Program Files (x86)\IsoBuster
2011-11-04 15:28:19 -------- d-----w- C:\Program Files (x86)\DVD Shrink
2011-11-04 15:15:05 -------- d-----w- C:\Users\Gilles\AppData\Local\LogiShrd
2011-11-04 15:05:11 -------- d-----w- C:\Windows\System32\SPReview
2011-11-04 15:03:45 -------- d-----w- C:\Windows\System32\EventProviders
2011-11-04 15:01:03 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2011-11-04 15:01:02 902656 ----a-w- C:\Windows\System32\d2d1.dll
2011-11-04 15:01:02 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2011-11-04 15:01:02 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2011-11-04 15:01:02 1076736 ----a-w- C:\Windows\SysWow64\DWrite.dll
2011-11-04 14:24:09 -------- d-----w- C:\Users\Gilles\AppData\Local\gilles.ophalvens
2011-11-04 14:24:08 -------- d-----w- C:\Users\Gilles\AppData\Local\SafeBox
2011-11-04 14:07:46 79952 ----a-w- C:\Windows\System32\drivers\bdsandbox.sys
2011-11-04 14:07:46 553280 ----a-w- C:\Windows\System32\drivers\avckf.sys
2011-11-04 14:07:39 674904 ----a-w- C:\Windows\System32\drivers\avc3.sys
2011-11-04 14:06:52 165772 ----a-w- C:\ProgramData\1320415434.bdinstall.bin
2011-11-04 14:05:24 -------- d-----w- C:\Users\Gilles\AppData\Roaming\Bitdefender
2011-11-04 14:05:18 -------- d-----w- C:\ProgramData\Bitdefender
2011-11-04 14:04:16 -------- d-----w- C:\Program Files\Bitdefender
2011-11-04 14:04:14 -------- d-----w- C:\Users\Gilles\AppData\Roaming\QuickScan
2011-11-04 14:04:07 431176 ----a-w- C:\Windows\System32\drivers\bdfsfltr.sys
2011-11-04 14:04:07 288600 ----a-w- C:\Windows\System32\drivers\trufos.sys
2011-11-04 14:03:46 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2011-11-04 14:03:45 -------- d-----w- C:\Program Files (x86)\Common Files\Bitdefender
2011-11-04 12:47:01 48976 ----a-w- C:\Windows\System32\netfxperf.dll
2011-11-04 12:47:01 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2011-11-04 12:45:59 551936 ----a-w- C:\Windows\System32\localsec.dll
2011-11-04 12:44:57 399872 ----a-w- C:\Windows\System32\dpx.dll
2011-11-04 12:44:57 189952 ----a-w- C:\Windows\SysWow64\wdscore.dll
2011-11-04 12:44:54 189952 ----a-w- C:\Windows\SysWow64\sqmapi.dll
2011-11-04 12:44:53 606208 ----a-w- C:\Windows\SysWow64\wbem\fastprox.dll
2011-11-04 12:44:53 363008 ----a-w- C:\Windows\SysWow64\wbemcomn.dll
2011-11-04 12:44:53 189952 ----a-w- C:\Program Files (x86)\Windows Portable Devices\sqmapi.dll
2011-11-04 12:44:36 529408 ----a-w- C:\Windows\System32\wbemcomn.dll
2011-11-04 12:44:36 244736 ----a-w- C:\Program Files\Windows Portable Devices\sqmapi.dll
2011-11-04 12:44:35 244736 ----a-w- C:\Windows\System32\sqmapi.dll
2011-11-04 12:25:30 8570192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-11-04 12:25:25 8570192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{63CF2705-DC87-49EC-B28D-F23BADFB78AC}\mpengine.dll
2011-11-03 19:28:36 -------- d-----r- C:\Program Files (x86)\Skype
2011-11-03 19:20:23 -------- d-----w- C:\Windows\SysWow64\Wat
2011-11-03 19:20:23 -------- d-----w- C:\Windows\System32\Wat
2011-11-03 19:12:46 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2011-11-03 18:25:52 -------- d-----w- C:\ProgramData\IObit
2011-11-03 18:25:25 31744 ----a-w- C:\Windows\System32\drivers\RimSerial_AMD64.sys
2011-11-03 18:24:33 -------- d-----w- C:\ProgramData\Research In Motion
2011-11-03 18:24:20 -------- d-----w- C:\Program Files (x86)\Research In Motion
2011-11-03 18:24:20 -------- d-----w- C:\Program Files (x86)\Common Files\Research In Motion
2011-11-03 18:18:05 -------- d-----w- C:\Program Files (x86)\VideoLAN
2011-11-03 18:06:19 -------- d-----w- C:\Program Files\Microsoft Synchronization Services
2011-11-03 18:05:58 -------- d-----w- C:\Windows\PCHEALTH
2011-11-03 18:05:58 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition
2011-11-03 18:05:18 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-03 18:03:59 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2011-11-03 18:02:34 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2011-11-03 18:02:34 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2011-11-03 18:01:20 -------- d-----w- C:\Users\Gilles\AppData\Local\Microsoft Help
2011-11-03 17:56:01 -------- d-----w- C:\Users\Gilles\AppData\Roaming\IDM
2011-11-03 17:56:00 -------- d-----w- C:\Users\Gilles\AppData\Roaming\DMCache
2011-11-03 17:55:57 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2011-11-03 17:54:36 -------- d-----w- C:\Users\Gilles\AppData\Roaming\IObit
2011-11-03 17:54:35 -------- d-----w- C:\Program Files (x86)\IObit
2011-11-03 17:07:14 -------- d-----w- C:\Users\Gilles\AppData\Local\AMD
2011-11-03 17:07:04 -------- d-----w- C:\Users\Gilles\AppData\Local\ATI
2011-11-03 17:06:46 0 ----a-w- C:\Windows\ativpsrm.bin
2011-11-03 17:05:20 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-11-03 17:05:20 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-11-03 17:05:20 -------- d-----w- C:\Users\Gilles\AppData\Local\Mozilla
2011-11-03 17:05:12 -------- d-----w- C:\Program Files (x86)\AMD APP
2011-11-03 17:03:58 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2011-11-03 17:03:41 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2011-11-03 17:03:41 207872 ----a-w- C:\Windows\System32\cfgmgr32.dll
2011-11-03 17:03:40 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2011-11-03 17:03:40 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2011-11-03 17:03:40 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2011-11-03 17:03:40 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2011-11-03 17:03:36 142336 ----a-w- C:\Windows\System32\poqexec.exe
2011-11-03 17:03:36 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2011-11-03 17:03:13 -------- d-----w- C:\ATI
2011-11-03 17:02:21 2871808 ----a-w- C:\Windows\explorer.exe
2011-11-03 17:02:21 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
2011-11-03 17:02:20 961024 ----a-w- C:\Windows\System32\CPFilters.dll
2011-11-03 17:02:20 723968 ----a-w- C:\Windows\System32\EncDec.dll
2011-11-03 17:02:20 642048 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2011-11-03 17:02:20 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2011-11-03 17:02:20 1118720 ----a-w- C:\Windows\System32\sbe.dll
2011-11-03 17:02:19 850944 ----a-w- C:\Windows\SysWow64\sbe.dll
2011-11-03 17:02:19 259072 ----a-w- C:\Windows\System32\mpg2splt.ax
2011-11-03 17:02:19 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2011-11-03 16:43:39 3138048 ----a-w- C:\Windows\System32\win32k.sys
2011-11-03 16:43:21 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2011-11-03 16:43:21 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2011-11-03 16:42:57 870912 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2011-11-03 16:42:57 1465344 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-11-03 16:42:54 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2011-11-03 16:42:54 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2011-11-03 16:42:54 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2011-11-03 16:42:53 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2011-11-03 16:41:05 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2011-11-03 16:41:05 46080 ----a-w- C:\Windows\System32\atmlib.dll
2011-11-03 16:41:05 367616 ----a-w- C:\Windows\System32\atmfd.dll
2011-11-03 16:41:05 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2011-11-03 16:41:05 294912 ----a-w- C:\Windows\SysWow64\atmfd.dll
2011-11-03 16:41:05 100864 ----a-w- C:\Windows\System32\fontsub.dll
2011-11-03 16:40:35 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2011-11-03 16:39:53 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2011-11-03 16:39:53 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2011-11-03 16:39:53 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2011-11-03 16:31:52 421888 ----a-w- C:\Windows\System32\KernelBase.dll
2011-11-03 16:30:47 5561216 ----a-w- C:\Windows\System32\ntoskrnl.exe
2011-11-03 16:30:46 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2011-11-03 16:30:46 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2011-11-03 16:29:29 -------- d-----w- C:\Users\Gilles\AppData\Local\Google
2011-11-03 16:27:15 -------- d-----w- C:\Users\Gilles\AppData\Local\Apps
2011-11-03 16:27:11 -------- d-----w- C:\Users\Gilles\AppData\Local\Deployment
2011-11-03 16:26:30 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-11-03 16:13:58 -------- d-----w- C:\Program Files (x86)\NEC Electronics
2011-11-03 16:11:00 38456 ----a-w- C:\Windows\System32\drivers\usbfilter.sys
2011-11-03 16:11:00 -------- d-----w- C:\Program Files (x86)\AMD
2011-11-03 16:10:47 16440 ----a-w- C:\Windows\System32\drivers\AtiPcie.sys
2011-11-03 16:10:33 116736 ----a-w- C:\Windows\System32\drivers\AtiHdmi.sys
2011-11-03 16:07:45 -------- d-----w- C:\Users\Gilles\AppData\Local\Downloaded Installations
2011-11-03 16:07:28 -------- d-----w- C:\Program Files\ATI Technologies
2011-11-03 16:07:25 -------- d-----w- C:\Program Files\ATI
2011-11-03 16:05:01 74272 ----a-w- C:\Windows\System32\RtNicProp64.dll
2011-11-03 16:05:01 346144 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2011-11-03 16:05:01 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
2011-11-03 16:04:38 -------- d-----w- C:\Program Files (x86)\Realtek
2011-11-02 19:57:18 -------- d-----w- C:\Users\Gilles\AppData\Local\Adobe
2011-11-02 19:55:30 -------- d-sh--w- C:\Windows\Installer
2011-11-02 19:55:04 -------- d-----w- C:\Users\Gilles\AppData\Local\Diagnostics
2011-11-02 19:49:58 -------- d-sh--we C:\ProgramData\Sjablonen
2011-11-02 19:49:58 -------- d-sh--we C:\ProgramData\Menu Start
2011-11-02 19:49:58 -------- d-sh--we C:\ProgramData\Favorieten
2011-11-02 19:49:58 -------- d-sh--we C:\ProgramData\Documenten
2011-11-02 19:49:58 -------- d-sh--we C:\ProgramData\Bureaublad
2011-11-02 19:49:58 -------- d-sh--w- C:\Recovery
2011-11-02 18:40:32 -------- d-----w- C:\Windows\Panther
2011-11-02 18:40:18 -------- d-sh--w- C:\Boot
.
==================== Find3M ====================
.
2011-11-04 16:54:56 175616 ----a-w- C:\Windows\System32\msclmd.dll
2011-11-04 16:54:56 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2011-09-14 10:47:42 60416 ----a-w- C:\Windows\System32\OVDecode64.dll
2011-09-14 10:47:40 53760 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2011-09-14 10:47:22 51200 ----a-w- C:\Windows\System32\OpenCL.dll
2011-09-14 10:47:18 43520 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2011-09-14 10:47:10 16652288 ----a-w- C:\Windows\System32\amdocl64.dll
2011-09-14 10:46:58 13625856 ----a-w- C:\Windows\SysWow64\amdocl.dll
2011-09-14 10:38:30 44032 ----a-w- C:\Windows\System32\amdoclcl64.dll
2011-09-14 10:38:28 37376 ----a-w- C:\Windows\SysWow64\amdoclcl.dll
2011-09-08 18:27:22 10203648 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2011-09-08 17:59:44 24229376 ----a-w- C:\Windows\System32\atio6axx.dll
2011-09-08 17:39:44 18534912 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2011-09-08 17:34:20 151552 ----a-w- C:\Windows\System32\atiapfxx.exe
2011-09-08 17:34:10 732672 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2011-09-08 17:32:58 862720 ----a-w- C:\Windows\System32\aticfx64.dll
2011-09-08 17:30:38 466944 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2011-09-08 17:30:26 486912 ----a-w- C:\Windows\System32\atieclxx.exe
2011-09-08 17:29:56 204288 ----a-w- C:\Windows\System32\atiesrxx.exe
2011-09-08 17:28:54 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2011-09-08 17:28:38 423424 ----a-w- C:\Windows\System32\atipdl64.dll
2011-09-08 17:28:32 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll
2011-09-08 17:28:22 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll
2011-09-08 17:28:18 21504 ----a-w- C:\Windows\System32\atimuixx.dll
2011-09-08 17:28:14 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2011-09-08 17:28:10 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2011-09-08 17:24:38 4204032 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2011-09-08 17:18:56 1113088 ----a-w- C:\Windows\System32\atiumd6v.dll
2011-09-08 17:18:22 1828864 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2011-09-08 17:18:08 3888640 ----a-w- C:\Windows\System32\atiumd6a.dll
2011-09-08 17:16:00 4944896 ----a-w- C:\Windows\System32\atidxx64.dll
2011-09-08 17:09:42 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2011-09-08 17:09:40 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2011-09-08 17:09:30 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2011-09-08 17:09:28 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2011-09-08 17:09:18 8723456 ----a-w- C:\Windows\System32\aticaldd64.dll
2011-09-08 17:08:24 4064768 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2011-09-08 17:05:52 7331840 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2011-09-08 17:05:44 4289024 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2011-09-08 17:00:02 5428736 ----a-w- C:\Windows\System32\atiumd64.dll
2011-09-08 16:59:48 58880 ----a-w- C:\Windows\System32\coinst.dll
2011-09-08 16:53:20 381952 ----a-w- C:\Windows\System32\atiadlxx.dll
2011-09-08 16:53:12 270336 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2011-09-08 16:52:58 15360 ----a-w- C:\Windows\System32\atig6pxx.dll
2011-09-08 16:52:56 13312 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2011-09-08 16:52:56 13312 ----a-w- C:\Windows\System32\atiglpxx.dll
2011-09-08 16:52:54 39936 ----a-w- C:\Windows\System32\atig6txx.dll
2011-09-08 16:52:46 32768 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2011-09-08 16:52:40 310784 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2011-09-08 16:52:00 40960 ----a-w- C:\Windows\System32\atiuxp64.dll
2011-09-08 16:51:54 31744 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2011-09-08 16:51:50 38912 ----a-w- C:\Windows\System32\atiu9p64.dll
2011-09-08 16:51:44 29184 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2011-09-08 16:51:12 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2011-09-08 16:51:02 54784 ----a-w- C:\Windows\System32\atimpc64.dll
2011-09-08 16:51:02 54784 ----a-w- C:\Windows\System32\amdpcom64.dll
2011-09-08 16:50:54 53760 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2011-09-08 16:50:54 53760 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
2011-08-27 05:37:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2011-08-27 05:37:48 331776 ----a-w- C:\Windows\System32\oleacc.dll
2011-08-27 04:26:27 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2011-08-27 04:26:27 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2011-08-17 05:26:46 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2011-08-17 05:25:08 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2011-08-17 04:24:12 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2011-08-17 04:19:27 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
.
============= FINISH: 15:23:58,95 ===============
s

s@té

Legacy Member
Hijack this logje:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:27:17, on 5/11/2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
C:\Program Files\Bitdefender\Bitdefender 2012\Antispam32\pchooklaunch32.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Download alle links met IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video inhoud met IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download met IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: SafeBox - BitDefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8636 bytes
J

Juisterr

Legacy Member
Download ComboFix van één van deze locaties:

Link 1
Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.
>>Hier<< kunt u lezen hoe u Combofix dient te gebruiken.
4de6eab6867f3-Combofix.JPG


1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.

* (hier of hier staat een handleiding over hoe je deze kan uitschakelen:)

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
3. Dubbelklik op "Combofix.exe" om de tool te starten.
4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion." herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.
Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
Terug
Bovenaan