partner37 headache

[Sandsz]

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31

Run by Jay at 20:03:27 on 2012-09-08

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3071.844 [GMT 2:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\SysWow64\WinFLService.exe

C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

C:\Windows\SysWOW64\cryptainersrv.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\PixArt\Pac207\Monitor.exe

C:\Windows\SysWOW64\WinFLTray.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

C:\Users\Jay\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\uTorrent\uTorrent.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe

C:\Users\Jay\AppData\Local\Apps\2.0\M6VOM1A9.QJP\0B51BYZ6.RAW\curs..tion_9e9e83ddf3ed3ead_0005.0001_32b1384f20fde9ac\CurseClient.exe

C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

C:\Program Files (x86)\LexmarkX84-X85\ACMonitor_X84-X85.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\system32\DllHost.exe

C:\Program Files (x86)\LexmarkX84-X85\AcBtnMgr_X84-X85.exe

C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE

C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe

C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Jay\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://search.babylon.com/?affID=110819&tt=050412_30b&babsrc=HP_ss&mntrId=0eb8167f000000000000d027880d08b2

uDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

uSearch Page = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

uSearch Bar = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

mDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

uSearchAssistant = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

uURLSearchHooks: H - No File

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll

BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

{ae07101b-46d4-4a98-af68-0333ea26e113}

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

TB: {87775FDB-6972-41F9-AE51-8326E38CB206} - No File

uRun: [Driver Updater] "C:\Program Files (x86)\Carambis\Driver Updater\dupdater.exe" /minimized

uRun: [WinFLTray] C:\Windows\SysWow64\WinFLTray.exe

uRun: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

uRun: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun

uRun: [spotify Web Helper] "C:\Users\Jay\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

uRunOnce: [blekkotb] reg.exe delete "HKCU\Software\AppDataLow\Software\blekkotb" /f

uRunOnce: [blekkotb_XP] reg.exe delete "HKCU\Software\blekkotb" /f

mRun: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun: [Lexmark X84-X85 Button Monitor] C:\PROGRA~2\LEXMAR~1\ACMonitor_X84-X85.exe

mRun: [Lexmark X84-X85 Button Manager] C:\PROGRA~2\LEXMAR~1\AcBtnMgr_X84-X85.exe

mRun: [stillImageMonitor] C:\W

mRun: [scanRegistry] C:\W

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/nl.special-uninstallation-feedback-appf?lic=NFVMV0gtR0JZUzQtOU5USEQtUUE3WEQtQzJRSEgtTkZGS0o"&"inst=NzctNzIwMjM1MTE3LUxTRCsyLUZMMTArMS1ERFQrNDQyNTEtREQxMEYrMS1TVDEwRkFQUCsxLVMxMEZEREYrMS1GMTBNMTJFTisxLVRCTisxLVUxMCsxLUwxME1KKzEtRjEwTTEySlQrMQ"&"prod=90"&"ver=10.0.1411

StartupFolder: C:\Users\Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: &D&ownload &met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm

IE: &D&ownload alles met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm

IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html

IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

TCP: DhcpNameServer = 192.168.1.2

TCP: Interfaces\{8A855D80-5016-488F-88EC-B29F50312DB9} : DhcpNameServer = 192.168.1.2

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{9FDDE16B-836F-4806-AB1F-1455CBEFF289}

{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{ae07101b-46d4-4a98-af68-0333ea26e113}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

TB-X64: {87775FDB-6972-41F9-AE51-8326E38CB206} - No File

mRun-x64: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun-x64: [Lexmark X84-X85 Button Monitor] C:\PROGRA~2\LEXMAR~1\ACMonitor_X84-X85.exe

mRun-x64: [Lexmark X84-X85 Button Manager] C:\PROGRA~2\LEXMAR~1\AcBtnMgr_X84-X85.exe

mRun-x64: [stillImageMonitor] C:\W

mRun-x64: [scanRegistry] C:\W

mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun-x64: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml

mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRunOnce-x64: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/nl.special-uninstallation-feedback-appf?lic=NFVMV0gtR0JZUzQtOU5USEQtUUE3WEQtQzJRSEgtTkZGS0o"&"inst=NzctNzIwMjM1MTE3LUxTRCsyLUZMMTArMS1ERFQrNDQyNTEtREQxMEYrMS1TVDEwRkFQUCsxLVMxMEZEREYrMS1GMTBNMTJFTisxLVRCTisxLVUxMCsxLUwxME1KKzEtRjEwTTEySlQrMQ"&"prod=90"&"ver=10.0.1411

IE-X64: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206

.

============= SERVICES / DRIVERS ===============

.

R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]

R1 aswKbd;aswKbd;C:\Windows\system32\drivers\aswKbd.sys --> C:\Windows\system32\drivers\aswKbd.sys [?]

R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

R1 ssoftnt4;ssoftnt4;\??\C:\Windows\system32\Drivers\ssoftnt4.sys --> C:\Windows\system32\Drivers\ssoftnt4.sys [?]

R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-14 44808]

R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]

R2 FLService;FLService;C:\Windows\SysWOW64\WinFLService.exe [2011-9-22 91736]

R2 Greg_Service;GRegService;C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-8-28 1150496]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-6 655944]

R2 NEWDRIVER;NEWDRIVER;C:\Windows\SysWOW64\WinVDEdrv6.sys [2011-9-22 197648]

R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]

R2 Updater Service;Updater Service;C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-5-7 243232]

R2 WinVDEDrv;WinVDEDrv;C:\Windows\SysWOW64\WinVDEdrv.sys [2011-9-22 225680]

R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]

R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]

R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]

R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]

R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]

R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]

R4 PCTSD;PC Tools Spyware Doctor Driver;C:\Windows\system32\Drivers\PCTSD64.sys --> C:\Windows\system32\Drivers\PCTSD64.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Updateservice (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 135664]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-9-1 250056]

S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service --> C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service [?]

S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2012-8-16 2438696]

S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]

S3 gupdatem;Google Update-service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 135664]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]

S3 PAC207;SoC PC-Camera;C:\Windows\system32\DRIVERS\PFC027.SYS --> C:\Windows\system32\DRIVERS\PFC027.SYS [?]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== Created Last 30 ================

.

2074-05-07 17:38:48 203576 ------w- C:\Program Files (x86)\Microsoft Games\Age of Empires III\autopatcher2.exe

2012-09-08 17:59:27 -------- d-----w- C:\Users\Jay\AppData\Local\blekkotb

2012-09-08 17:47:59 -------- d-----w- C:\Program Files (x86)\PC Tools

2012-09-08 17:44:01 251560 ----a-w- C:\Windows\System32\drivers\PCTSD64.sys

2012-09-08 17:44:01 -------- d-----w- C:\Program Files (x86)\Common Files\PC Tools

2012-09-08 17:43:40 -------- d-----w- C:\Users\Jay\AppData\Roaming\TestApp

2012-09-08 17:43:40 -------- d-----w- C:\ProgramData\PC Tools

2012-09-08 17:10:00 -------- d-----w- C:\ProgramData\{54B6D04D-4477-4BDA-9A8C-DEB315E0282D}

2012-09-08 17:07:09 -------- d-----w- C:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}

2012-09-08 17:04:33 -------- d-----w- C:\ProgramData\{CB26E0D6-79FF-4CEE-87EA-43680C82478D}

2012-09-08 12:31:04 -------- d-----w- C:\Users\Jay\AppData\Local\{F297F503-B141-4987-9A95-24BBB3041E01}

2012-09-07 18:38:30 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B985F584-DA3E-4F05-A0AB-BC3EED1D248C}\mpengine.dll

2012-09-07 17:17:20 -------- d-----w- C:\Program Files\iPod

2012-09-07 17:17:19 -------- d-----w- C:\Program Files\iTunes

2012-09-07 17:17:19 -------- d-----w- C:\Program Files (x86)\iTunes

2012-09-07 12:30:00 -------- d-----w- C:\Users\Jay\AppData\Local\{ABDC7217-7CAD-4895-B2CF-1E86EC81164D}

2012-09-06 21:41:57 -------- d-----w- C:\Users\Jay\AppData\Local\{17D57672-DAC9-459F-875F-13DB7A6B4BBF}

2012-09-06 21:12:05 -------- d-----w- C:\Users\Jay\AppData\Roaming\Malwarebytes

2012-09-06 21:11:53 -------- d-----w- C:\ProgramData\Malwarebytes

2012-09-06 21:11:52 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-09-06 21:11:52 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-09-05 21:40:59 -------- d-----w- C:\Users\Jay\AppData\Local\{8C3565F3-FDAB-41E7-82E1-6327C2F4978F}

2012-09-05 09:40:23 -------- d-----w- C:\Users\Jay\AppData\Local\{E40E303F-075B-4E61-8F96-6258E6A4F99E}

2012-09-04 08:19:50 -------- d-----w- C:\Users\Jay\AppData\Local\{B1C47712-E41B-4495-96BD-E83C909A96BF}

2012-09-03 19:52:48 -------- d-----w- C:\Users\Jay\AppData\Local\{F710E95A-C724-419A-B8EB-7B0737B04AF2}

2012-09-03 07:52:09 -------- d-----w- C:\Users\Jay\AppData\Local\{25381B93-A3B0-424B-9FD6-7CF92C7C3644}

2012-09-01 14:11:17 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-09-01 14:07:40 -------- d-----w- C:\Users\Jay\AppData\Local\{9B50EBC2-E1D7-4EFF-BCD1-2A8706C292BF}

2012-08-31 17:04:12 -------- d-----w- C:\ProgramData\REVOLT

2012-08-31 16:52:31 -------- d-----w- C:\Program Files (x86)\Games

2012-08-29 11:29:17 -------- d-----w- C:\Users\Jay\AppData\Local\{2E024307-8629-4D5B-8C9E-8C0910BD6F73}

2012-08-28 22:36:10 -------- d-----w- C:\Users\Jay\AppData\Local\{42813EBE-BDEA-4A1C-AE51-3D7EBFB98934}

2012-08-28 22:01:26 -------- d-----w- C:\Program Files (x86)\AMD APP

2012-08-23 16:18:06 -------- d-----w- C:\Users\Jay\AppData\Local\{BFA4376D-DE41-493B-8107-740BA410EBEC}

2012-08-22 13:28:12 -------- d-----w- C:\Users\Jay\AppData\Local\{47901E1F-6BF2-4A27-9247-AB708F03A89B}

2012-08-20 14:22:09 -------- d-----w- C:\Users\Jay\AppData\Local\{911F96F6-9F2A-4011-952A-9400D7872767}

2012-08-19 13:36:57 -------- d-----w- C:\Users\Jay\AppData\Local\{066FE56B-8B28-4809-9A08-BA98F96365FF}

2012-08-18 13:16:22 -------- d-----w- C:\Users\Jay\AppData\Local\{AB6FD0EA-B4CF-4923-9BD7-6EC0D69F771A}

2012-08-18 13:16:00 -------- d-----w- C:\Users\Jay\AppData\Local\{25E2697B-8D7F-452E-A460-F3D099C130C2}

2012-08-17 13:19:22 -------- d-----w- C:\Users\Jay\AppData\Local\{90FB15EA-5842-4FD8-ACA1-5A0C5C090092}

2012-08-17 13:19:07 -------- d-----w- C:\Users\Jay\AppData\Local\{11282E05-0F6A-4DBA-B0F4-79C08027D29D}

2012-08-16 15:56:51 31232 ----a-w- C:\Windows\System32\drivers\tap0901.sys

2012-08-16 15:56:48 -------- d-----w- C:\Program Files\CyberGhost VPN

2012-08-16 15:47:32 -------- d-----w- C:\Users\Jay\AppData\Roaming\SurfAnonymousFree

2012-08-16 15:47:32 -------- d-----w- C:\ProgramData\SurfAnonymousFree

2012-08-16 12:31:05 -------- d-----w- C:\Users\Jay\AppData\Local\{96F9B015-2071-4D16-ADCE-3160B8E3B7CD}

2012-08-16 12:30:54 -------- d-----w- C:\Users\Jay\AppData\Local\{CDEFD4FC-A61D-471F-B5FF-A0C4A462F180}

2012-08-16 01:09:59 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll

2012-08-16 01:09:56 887296 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll

2012-08-15 16:10:29 -------- d-----w- C:\Users\Jay\AppData\Local\{F77FCF7F-0DD7-4FD9-8FD3-7C728BFF447C}

2012-08-15 16:10:19 -------- d-----w- C:\Users\Jay\AppData\Local\{28D8E3F6-7A60-454E-B27F-DE1BEEF73864}

2012-08-14 22:57:20 -------- d-----w- C:\Users\Jay\AppData\Local\{A7C1BBFC-866D-4A79-9845-13AF7ED2CAD3}

2012-08-14 22:57:04 -------- d-----w- C:\Users\Jay\AppData\Local\{EEFA0CD9-30D7-49F0-90B3-EEAC0FC85E49}

2012-08-14 10:37:30 -------- d-----w- C:\Users\Jay\AppData\Local\{51D014B8-9FFB-46BC-A648-B2F40F3D950F}

2012-08-14 10:37:20 -------- d-----w- C:\Users\Jay\AppData\Local\{A114FB5B-95C8-4FFC-A32A-561F2B35D850}

2012-08-14 10:37:10 -------- d-----w- C:\Users\Jay\AppData\Local\{E68B47E6-FF2B-4B28-9E7C-C7C580044800}

2012-08-14 10:36:50 -------- d-----w- C:\Users\Jay\AppData\Local\{B157D0D9-4791-4E8F-944C-2366D1197405}

2012-08-13 22:36:21 -------- d-----w- C:\Users\Jay\AppData\Local\{09D3C1BB-F9CE-4671-8F77-AFC2F3FA88F0}

2012-08-13 22:35:58 -------- d-----w- C:\Users\Jay\AppData\Local\{E276EFF4-2F0F-4189-8642-C19D63F3FCE1}

2012-08-11 03:04:37 0 ----a-w- C:\Windows\SysWow64\shoB578.tmp

.

==================== Find3M ====================

.

2012-09-01 14:50:12 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-08-20 23:05:05 36240 ----a-w- C:\Windows\SysWow64\WinFLAdrv.sys

2012-08-20 23:04:51 91736 ----a-w- C:\Windows\SysWow64\WinFLService.exe

2012-08-20 23:04:50 14936 ----a-w- C:\Windows\SysWow64\WinFLMsgService.exe

2012-08-20 23:04:49 40960 ----a-w- C:\Windows\SysWow64\nwsftUninstall.exe

2012-08-20 23:04:48 293976 ----a-w- C:\Windows\SysWow64\WinFLTray.exe

2012-08-20 23:04:47 293976 ----a-w- C:\Windows\SysWow64\WinFLTrayShred.exe

2012-08-20 23:04:46 594520 ----a-w- C:\Windows\SysWow64\WinFLCtxMenu.dll

2012-07-28 04:09:20 5538984 ----a-w- C:\Windows\SysWow64\atiumdag.dll

2012-07-28 04:07:44 10278912 ----a-w- C:\Windows\System32\drivers\atikmdag.sys

2012-07-28 03:43:12 70144 ----a-w- C:\Windows\System32\coinst_8.982.dll

2012-07-28 03:19:34 24935424 ----a-w- C:\Windows\System32\atio6axx.dll

2012-07-28 02:50:10 20546560 ----a-w- C:\Windows\SysWow64\atioglxx.dll

2012-07-28 02:15:50 163840 ----a-w- C:\Windows\System32\atiapfxx.exe

2012-07-28 02:15:42 931328 ----a-w- C:\Windows\SysWow64\aticfx32.dll

2012-07-28 02:13:56 1100288 ----a-w- C:\Windows\System32\aticfx64.dll

2012-07-28 02:10:40 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll

2012-07-28 02:10:34 534528 ----a-w- C:\Windows\System32\atieclxx.exe

2012-07-28 02:09:44 239616 ----a-w- C:\Windows\System32\atiesrxx.exe

2012-07-28 02:08:20 120320 ----a-w- C:\Windows\System32\atitmm64.dll

2012-07-28 02:08:04 21504 ----a-w- C:\Windows\System32\atimuixx.dll

2012-07-28 02:07:58 59392 ----a-w- C:\Windows\System32\atiedu64.dll

2012-07-28 02:07:52 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll

2012-07-28 02:07:10 6430208 ----a-w- C:\Windows\SysWow64\atidxx32.dll

2012-07-28 01:51:12 7052288 ----a-w- C:\Windows\System32\atidxx64.dll

2012-07-28 01:41:32 4266496 ----a-w- C:\Windows\System32\atiumd6a.dll

2012-07-28 01:35:10 51200 ----a-w- C:\Windows\System32\aticalrt64.dll

2012-07-28 01:35:08 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll

2012-07-28 01:35:02 44544 ----a-w- C:\Windows\System32\aticalcl64.dll

2012-07-28 01:35:00 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll

2012-07-28 01:34:48 16034304 ----a-w- C:\Windows\System32\aticaldd64.dll

2012-07-28 01:32:32 4751872 ----a-w- C:\Windows\SysWow64\atiumdva.dll

2012-07-28 01:30:10 13605888 ----a-w- C:\Windows\SysWow64\aticaldd.dll

2012-07-28 01:25:52 6676480 ----a-w- C:\Windows\System32\atiumd64.dll

2012-07-28 01:15:32 540160 ----a-w- C:\Windows\System32\atiadlxx.dll

2012-07-28 01:15:22 368640 ----a-w- C:\Windows\SysWow64\atiadlxy.dll

2012-07-28 01:15:12 17920 ----a-w- C:\Windows\System32\atig6pxx.dll

2012-07-28 01:15:08 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll

2012-07-28 01:15:08 14848 ----a-w- C:\Windows\System32\atiglpxx.dll

2012-07-28 01:15:04 41984 ----a-w- C:\Windows\System32\atig6txx.dll

2012-07-28 01:14:56 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll

2012-07-28 01:14:46 368640 ----a-w- C:\Windows\System32\drivers\atikmpag.sys

2012-07-28 01:13:54 129536 ----a-w- C:\Windows\System32\atiuxp64.dll

2012-07-28 01:13:48 109568 ----a-w- C:\Windows\SysWow64\atiuxpag.dll

2012-07-28 01:13:40 103936 ----a-w- C:\Windows\System32\atiu9p64.dll

2012-07-28 01:13:32 83456 ----a-w- C:\Windows\SysWow64\atiu9pag.dll

2012-07-28 01:12:54 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll

2012-07-28 01:08:42 56320 ----a-w- C:\Windows\System32\atimpc64.dll

2012-07-28 01:08:42 56320 ----a-w- C:\Windows\System32\amdpcom64.dll

2012-07-28 01:08:36 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll

2012-07-28 01:08:36 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll

2012-07-27 20:47:40 187392 ----a-w- C:\Windows\System32\clinfo.exe

2012-07-27 20:47:24 75776 ----a-w- C:\Windows\System32\OpenVideo64.dll

2012-07-27 20:47:16 65024 ----a-w- C:\Windows\SysWow64\OpenVideo.dll

2012-07-27 20:47:10 63488 ----a-w- C:\Windows\System32\OVDecode64.dll

2012-07-27 20:47:06 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll

2012-07-27 20:46:56 16464896 ----a-w- C:\Windows\System32\amdocl64.dll

2012-07-27 20:46:06 13013504 ----a-w- C:\Windows\SysWow64\amdocl.dll

2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys

2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll

2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll

2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll

2012-07-03 16:21:52 958400 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2012-07-03 16:21:52 71064 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2012-07-03 16:21:52 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2012-07-03 16:21:32 41224 ----a-w- C:\Windows\avastSS.scr

2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll

2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

.

============= FINISH: 20:04:46,24 ===============

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 12-3-2011 18:24:31

System Uptime: 8-9-2012 12:56:29 (8 hours ago)

.

Motherboard: Packard Bell | | Veriton M275

Processor: Pentium® Dual-Core CPU E5700 @ 3.00GHz | CPU 1 | 3003/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 224 GiB total, 20,413 GiB free.

D: is FIXED (NTFS) - 225 GiB total, 174,43 GiB free.

E: is CDROM (UDF)

F: is Removable

G: is Removable

H: is Removable

I: is Removable

J: is CDROM ()

K: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {4d36e96f-e325-11ce-bfc1-08002be10318}

Description: Microsoft PS/2-muis

Device ID: ACPI\PNP0F03\4&3948EC92&0

Manufacturer: Microsoft

Name: Microsoft PS/2-muis

PNP Device ID: ACPI\PNP0F03\4&3948EC92&0

Service: i8042prt

.

Class GUID: {4d36e96b-e325-11ce-bfc1-08002be10318}

Description: Standaard-PS/2-toetsenbord

Device ID: ACPI\PNP0303\4&3948EC92&0

Manufacturer: (standaardtoetsenbord)

Name: Standaard-PS/2-toetsenbord

PNP Device ID: ACPI\PNP0303\4&3948EC92&0

Service: i8042prt

.

==== System Restore Points ===================

.

No restore point in system.

.

==== Installed Programs ======================

.

7-Zip 9.22beta

Acrobat.com

Adobe AIR

Adobe Community Help

Adobe Digital Editions

Adobe Download Assistant

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Photoshop CS5.1

Adobe Photoshop Elements 8.0

Adobe Reader X (10.1.1) - Nederlands

Advertising Center

Age of Empires III

Any Video Converter 3.2.1

Apple Application Support

Apple Software Update

µTorrent

Auslogics BoostSpeed

Auslogics Disk Defrag

avast! Free Antivirus

Bejeweled 2 Deluxe

BitComet 1.29

Blasterball 3

Bob the Builder Can-Do-Zoo

Build-a-lot 2

Carambis Driver Updater

Catalyst Control Center

Catalyst Control Center - Branding

Catalyst Control Center Graphics Previews Common

Catalyst Control Center InstallProxy

Catalyst Control Center Localization All

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Chicken Invaders 3 - Revenge of the Yolk

Cryptainer LE

Curse Client

D3DX10

DAEMON Tools Pro

Endless.Space

Escape Rosecliff Island

Faerie Solitaire

FATE - The Traitor Soul

Folder Lock

GameRanger

Google Chrome

Google Update Helper

Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)

Hotkey Utility

Huur- en zorgtoeslag 2011

Identity Card

ijji - Gunz

ImagXpress

Insaniquarium Deluxe

Java Auto Updater

Java™ 6 Update 31

Jewel Quest

Jewel Quest Solitaire 3

Junk Mail filter update

L&H TTS3000 Nederlands

Leesversneller versie 2.0

Mahjongg Artifacts

Malwarebytes Anti-Malware versie 1.62.0.1300

Mesh Runtime

Messenger Companion

Microsoft Office 2010

Microsoft Office Klik-en-Klaar 2010

Microsoft Office Starter 2010 - Nederlands

Microsoft PowerPoint Viewer

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Microsoft_VC90_MFCLOC_x86

MSVCRT

MSVCRT_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero 9 Essentials

Nero ControlCenter

Nero DiscSpeed

Nero DiscSpeed Help

Nero DriveSpeed

Nero DriveSpeed Help

Nero Express Help

Nero InfoTool

Nero InfoTool Help

Nero Installer

Nero Online Upgrade

Nero StartSmart

Nero StartSmart Help

Nero StartSmart OEM

NeroExpress

neroxml

Norton Online Backup

Packard Bell Game Console

Packard Bell Games

Packard Bell InfoCentre

Packard Bell Recovery Management

Packard Bell Registration

Packard Bell ScreenSaver

Packard Bell Software Suite SE

Packard Bell Updater

PDF Settings CS5

Penguins!

Polar Bowler

Polar Golfer

Polar Pool

REACTOR

Realtek High Definition Audio Driver

RIFT

Safari

Samsung Kies

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Skype Click to Call

Skype™ 5.8

Solid MP3 Converter 3.8

Spotify

spotimote

Steam

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Virtual Families

Virtual Villagers - A New Home

Welcome Center

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Mail

Windows Live Mesh

Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen

Windows Live Messenger

Windows Live Messenger Companion Core

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

World of Warcraft

World of Warcraft Beta

World of Warcraft Public Test

Yahtzee

Zuma Deluxe

.

==== End Of File ===========================

DDS.txtAttach.txt

[Sandsz]

Since i cant edit the topic for some reason, i'd like to add that ive been having this problem for a while but it hasnt occurred to me until recently that it might be more than just and occasional annoyance. Thanks in advance

[Maniac]

Hello Sandsz and ! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

• If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  
• I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  
• Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  
• Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  
• Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.
  

Step 1

Please uninstall the following applications:

µTorrent

BitComet 1.29

Step 2

Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older versions of Java components and upgrade the application.

Upgrading Java :

Please download JavaRa to your desktop and unzip it to its own folder

• Run JavaRa.exe, then click Remove Older Versions.
  
• Run the built-in uninstallers for all copies of java listed
  
• Click the Next button
  
• Click the Next button again
  
• Click the Java Manual Download link
  
• A browser window will open with the Java download page
  
• Click the Windows Offline (32-bit) or Windows Offline (64-bit) link to download Java (based on your system's version)
  
• Run the installer
  
• Close JavaRa

Step 3

Download TFC to your desktop

• Open the file and close any other windows.
  
• It will close all programs itself when run, make sure to let it run uninterrupted.
  
• Click the Start button to begin the process. The program should not take long to finish its job
  
• Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean

Step 4

• Launch Malwarebytes' Anti-Malware
  
• Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  
• Go to Scanner tab and select Perform Quick Scan, then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• Copy&Paste the entire report in your next reply.
  

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

Step 5

Download aswMBR.exe to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan

On completion of the scan click save log, save it to your desktop and post in your next reply

In your next reply, post the following log files:

• JavaRa log
  
• Malwarebytes' Anti-Malware log
  
• aswMBR log
  
• a new fresh DDS log

[Sandsz]

Malwarebytes Anti-Malware (-evaluatieversie-) 1.62.0.1300

www.malwarebytes.org

Databaseversie: v2012.09.09.01

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Jay :: JAY-PC [administrator]

Realtime bescherming: Ingeschakeld

9-9-2012 5:26:12

mbam-log-2012-09-09 (05-26-12).txt

Scantype: Snelle scan

Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scanopties: P2P

Objecten gescand: 265217

Verstreken tijd: 6 minuut/minuten, 35 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

(einde)

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software

Run date: 2012-09-09 05:36:55

-----------------------------

05:36:55.516 OS Version: Windows x64 6.1.7601 Service Pack 1

05:36:55.516 Number of processors: 2 586 0x170A

05:36:55.517 ComputerName: JAY-PC UserName: Jay

05:36:57.216 Initialize success

05:36:58.862 AVAST engine defs: 12090801

05:37:58.631 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2

05:37:58.632 Disk 0 Vendor: Hitachi_HDS721050CLA362 JP2OA3EA Size: 476940MB BusType: 3

05:37:58.661 Disk 0 MBR read successfully

05:37:58.663 Disk 0 MBR scan

05:37:58.666 Disk 0 Windows 7 default MBR code

05:37:58.676 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 17408 MB offset 2048

05:37:58.687 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 35653632

05:37:58.697 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 229326 MB offset 35858432

05:37:58.720 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 230104 MB offset 505518080

05:37:58.745 Disk 0 scanning C:\Windows\system32\drivers

05:38:10.616 Service scanning

05:38:38.109 Modules scanning

05:38:38.109 Disk 0 trace - called modules:

05:38:38.120 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys

05:38:38.120 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80033de060]

05:38:38.120 3 CLASSPNP.SYS[fffff880019bc43f] -> nt!IofCallDriver -> [0xfffffa8002f83520]

05:38:38.121 5 ACPI.sys[fffff88000fa67a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8002f39680]

05:38:41.298 AVAST engine scan C:\Windows

05:38:46.720 AVAST engine scan C:\Windows\system32

05:42:20.927 AVAST engine scan C:\Windows\system32\drivers

05:42:30.958 AVAST engine scan C:\Users\Jay

05:55:46.951 AVAST engine scan C:\ProgramData

06:02:32.211 Scan finished successfully

12:19:51.491 Disk 0 MBR has been saved successfully to "C:\Users\Jay\Desktop\MBR.dat"

12:19:51.506 The log file has been saved successfully to "C:\Users\Jay\Desktop\aswMBR.txt"

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.7.2

Run by Jay at 12:20:03 on 2012-09-09

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3071.1430 [GMT 2:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\atieclxx.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\SysWow64\WinFLService.exe

C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

C:\Windows\SysWOW64\cryptainersrv.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\PixArt\Pac207\Monitor.exe

C:\Windows\SysWOW64\WinFLTray.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe

C:\Users\Jay\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

C:\Program Files (x86)\LexmarkX84-X85\ACMonitor_X84-X85.exe

C:\Program Files (x86)\LexmarkX84-X85\AcBtnMgr_X84-X85.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Users\Jay\AppData\Local\Apps\2.0\M6VOM1A9.QJP\0B51BYZ6.RAW\curs..tion_9e9e83ddf3ed3ead_0005.0001_32b1384f20fde9ac\CurseClient.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\DllHost.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Users\Jay\Desktop\aswMBR (1).exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://search.babylon.com/?affID=110819&tt=050412_30b&babsrc=HP_ss&mntrId=0eb8167f000000000000d027880d08b2

uDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

uSearch Page = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

uSearch Bar = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

mDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=imedia_s1800&r=173603115406pe475v125y6744270r

uSearchAssistant = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com

uURLSearchHooks: H - No File

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

{ae07101b-46d4-4a98-af68-0333ea26e113}

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

TB: {87775FDB-6972-41F9-AE51-8326E38CB206} - No File

uRun: [Driver Updater] "C:\Program Files (x86)\Carambis\Driver Updater\dupdater.exe" /minimized

uRun: [WinFLTray] C:\Windows\SysWow64\WinFLTray.exe

uRun: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe

uRun: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun

uRun: [spotify Web Helper] "C:\Users\Jay\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

mRun: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun: [Lexmark X84-X85 Button Monitor] C:\PROGRA~2\LEXMAR~1\ACMonitor_X84-X85.exe

mRun: [Lexmark X84-X85 Button Manager] C:\PROGRA~2\LEXMAR~1\AcBtnMgr_X84-X85.exe

mRun: [stillImageMonitor] C:\W

mRun: [scanRegistry] C:\W

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/nl.special-uninstallation-feedback-appf?lic=NFVMV0gtR0JZUzQtOU5USEQtUUE3WEQtQzJRSEgtTkZGS0o"&"inst=NzctNzIwMjM1MTE3LUxTRCsyLUZMMTArMS1ERFQrNDQyNTEtREQxMEYrMS1TVDEwRkFQUCsxLVMxMEZEREYrMS1GMTBNMTJFTisxLVRCTisxLVUxMCsxLUwxME1KKzEtRjEwTTEySlQrMQ"&"prod=90"&"ver=10.0.1411

StartupFolder: C:\Users\Jay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: &D&ownload &met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm

IE: &D&ownload alles met BitComet - C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm

IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html

IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

TCP: DhcpNameServer = 192.87.106.106 195.169.124.124 192.87.36.36

TCP: Interfaces\{8A855D80-5016-488F-88EC-B29F50312DB9} : DhcpNameServer = 192.87.106.106 195.169.124.124 192.87.36.36

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{9FDDE16B-836F-4806-AB1F-1455CBEFF289}

{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{ae07101b-46d4-4a98-af68-0333ea26e113}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

TB-X64: {87775FDB-6972-41F9-AE51-8326E38CB206} - No File

mRun-x64: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe

mRun-x64: [Lexmark X84-X85 Button Monitor] C:\PROGRA~2\LEXMAR~1\ACMonitor_X84-X85.exe

mRun-x64: [Lexmark X84-X85 Button Manager] C:\PROGRA~2\LEXMAR~1\AcBtnMgr_X84-X85.exe

mRun-x64: [stillImageMonitor] C:\W

mRun-x64: [scanRegistry] C:\W

mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun-x64: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin

mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml

mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRunOnce-x64: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/nl.special-uninstallation-feedback-appf?lic=NFVMV0gtR0JZUzQtOU5USEQtUUE3WEQtQzJRSEgtTkZGS0o"&"inst=NzctNzIwMjM1MTE3LUxTRCsyLUZMMTArMS1ERFQrNDQyNTEtREQxMEYrMS1TVDEwRkFQUCsxLVMxMEZEREYrMS1GMTBNMTJFTisxLVRCTisxLVUxMCsxLUwxME1KKzEtRjEwTTEySlQrMQ"&"prod=90"&"ver=10.0.1411

IE-X64: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206

.

============= SERVICES / DRIVERS ===============

.

R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]

R1 aswKbd;aswKbd;C:\Windows\system32\drivers\aswKbd.sys --> C:\Windows\system32\drivers\aswKbd.sys [?]

R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

R1 ssoftnt4;ssoftnt4;\??\C:\Windows\system32\Drivers\ssoftnt4.sys --> C:\Windows\system32\Drivers\ssoftnt4.sys [?]

R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-14 44808]

R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]

R2 FLService;FLService;C:\Windows\SysWOW64\WinFLService.exe [2011-9-22 91736]

R2 Greg_Service;GRegService;C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-8-28 1150496]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-6 655944]

R2 NEWDRIVER;NEWDRIVER;C:\Windows\SysWOW64\WinVDEdrv6.sys [2011-9-22 197648]

R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]

R2 Updater Service;Updater Service;C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-5-7 243232]

R2 WinVDEDrv;WinVDEDrv;C:\Windows\SysWOW64\WinVDEdrv.sys [2011-9-22 225680]

R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]

R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]

R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]

R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]

R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]

R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Updateservice (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 135664]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-2-29 158856]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-9-1 250056]

S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service --> C:\Program Files (x86)\BitComet\tools\BitCometService.exe -service [?]

S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2012-8-16 2438696]

S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]

S3 gupdatem;Google Update-service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-3-12 135664]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 PAC207;SoC PC-Camera;C:\Windows\system32\DRIVERS\PFC027.SYS --> C:\Windows\system32\DRIVERS\PFC027.SYS [?]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== Created Last 30 ================

.

2074-05-07 17:38:48 203576 ------w- C:\Program Files (x86)\Microsoft Games\Age of Empires III\autopatcher2.exe

2012-09-09 03:25:01 -------- d-----w- C:\Users\Jay\AppData\Local\{A0E2595A-78F2-43AE-A3C6-2C301DD6566A}

2012-09-09 03:15:29 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll

2012-09-09 03:15:15 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2012-09-09 03:14:22 916456 ----a-w- C:\Windows\System32\deployJava1.dll

2012-09-09 03:14:22 1034216 ----a-w- C:\Windows\System32\npDeployJava1.dll

2012-09-09 03:14:11 108008 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll

2012-09-09 01:07:37 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B985F584-DA3E-4F05-A0AB-BC3EED1D248C}\offreg.dll

2012-09-08 17:59:27 -------- d-----w- C:\Users\Jay\AppData\Local\blekkotb

2012-09-08 17:47:59 -------- d-----w- C:\Program Files (x86)\PC Tools

2012-09-08 17:44:01 251560 ----a-w- C:\Windows\System32\drivers\PCTSD64.sys

2012-09-08 17:44:01 -------- d-----w- C:\Program Files (x86)\Common Files\PC Tools

2012-09-08 17:43:40 -------- d-----w- C:\Users\Jay\AppData\Roaming\TestApp

2012-09-08 17:43:40 -------- d-----w- C:\ProgramData\PC Tools

2012-09-08 17:10:00 -------- d-----w- C:\ProgramData\{54B6D04D-4477-4BDA-9A8C-DEB315E0282D}

2012-09-08 17:07:09 -------- d-----w- C:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}

2012-09-08 17:04:33 -------- d-----w- C:\ProgramData\{CB26E0D6-79FF-4CEE-87EA-43680C82478D}

2012-09-08 12:31:04 -------- d-----w- C:\Users\Jay\AppData\Local\{F297F503-B141-4987-9A95-24BBB3041E01}

2012-09-07 18:38:30 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B985F584-DA3E-4F05-A0AB-BC3EED1D248C}\mpengine.dll

2012-09-07 17:17:20 -------- d-----w- C:\Program Files\iPod

2012-09-07 17:17:19 -------- d-----w- C:\Program Files\iTunes

2012-09-07 17:17:19 -------- d-----w- C:\Program Files (x86)\iTunes

2012-09-07 12:30:00 -------- d-----w- C:\Users\Jay\AppData\Local\{ABDC7217-7CAD-4895-B2CF-1E86EC81164D}

2012-09-06 21:41:57 -------- d-----w- C:\Users\Jay\AppData\Local\{17D57672-DAC9-459F-875F-13DB7A6B4BBF}

2012-09-06 21:12:05 -------- d-----w- C:\Users\Jay\AppData\Roaming\Malwarebytes

2012-09-06 21:11:53 -------- d-----w- C:\ProgramData\Malwarebytes

2012-09-06 21:11:52 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-09-06 21:11:52 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-09-05 21:40:59 -------- d-----w- C:\Users\Jay\AppData\Local\{8C3565F3-FDAB-41E7-82E1-6327C2F4978F}

2012-09-05 09:40:23 -------- d-----w- C:\Users\Jay\AppData\Local\{E40E303F-075B-4E61-8F96-6258E6A4F99E}

2012-09-04 08:19:50 -------- d-----w- C:\Users\Jay\AppData\Local\{B1C47712-E41B-4495-96BD-E83C909A96BF}

2012-09-03 19:52:48 -------- d-----w- C:\Users\Jay\AppData\Local\{F710E95A-C724-419A-B8EB-7B0737B04AF2}

2012-09-03 07:52:09 -------- d-----w- C:\Users\Jay\AppData\Local\{25381B93-A3B0-424B-9FD6-7CF92C7C3644}

2012-09-01 14:11:17 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-09-01 14:07:40 -------- d-----w- C:\Users\Jay\AppData\Local\{9B50EBC2-E1D7-4EFF-BCD1-2A8706C292BF}

2012-08-31 17:04:12 -------- d-----w- C:\ProgramData\REVOLT

2012-08-31 16:52:31 -------- d-----w- C:\Program Files (x86)\Games

2012-08-29 11:29:17 -------- d-----w- C:\Users\Jay\AppData\Local\{2E024307-8629-4D5B-8C9E-8C0910BD6F73}

2012-08-28 22:36:10 -------- d-----w- C:\Users\Jay\AppData\Local\{42813EBE-BDEA-4A1C-AE51-3D7EBFB98934}

2012-08-28 22:01:26 -------- d-----w- C:\Program Files (x86)\AMD APP

2012-08-23 16:18:06 -------- d-----w- C:\Users\Jay\AppData\Local\{BFA4376D-DE41-493B-8107-740BA410EBEC}

2012-08-22 13:28:12 -------- d-----w- C:\Users\Jay\AppData\Local\{47901E1F-6BF2-4A27-9247-AB708F03A89B}

2012-08-20 14:22:09 -------- d-----w- C:\Users\Jay\AppData\Local\{911F96F6-9F2A-4011-952A-9400D7872767}

2012-08-19 13:36:57 -------- d-----w- C:\Users\Jay\AppData\Local\{066FE56B-8B28-4809-9A08-BA98F96365FF}

2012-08-18 13:16:22 -------- d-----w- C:\Users\Jay\AppData\Local\{AB6FD0EA-B4CF-4923-9BD7-6EC0D69F771A}

2012-08-18 13:16:00 -------- d-----w- C:\Users\Jay\AppData\Local\{25E2697B-8D7F-452E-A460-F3D099C130C2}

2012-08-17 13:19:22 -------- d-----w- C:\Users\Jay\AppData\Local\{90FB15EA-5842-4FD8-ACA1-5A0C5C090092}

2012-08-17 13:19:07 -------- d-----w- C:\Users\Jay\AppData\Local\{11282E05-0F6A-4DBA-B0F4-79C08027D29D}

2012-08-16 15:56:51 31232 ----a-w- C:\Windows\System32\drivers\tap0901.sys

2012-08-16 15:56:48 -------- d-----w- C:\Program Files\CyberGhost VPN

2012-08-16 15:47:32 -------- d-----w- C:\Users\Jay\AppData\Roaming\SurfAnonymousFree

2012-08-16 15:47:32 -------- d-----w- C:\ProgramData\SurfAnonymousFree

2012-08-16 12:31:05 -------- d-----w- C:\Users\Jay\AppData\Local\{96F9B015-2071-4D16-ADCE-3160B8E3B7CD}

2012-08-16 12:30:54 -------- d-----w- C:\Users\Jay\AppData\Local\{CDEFD4FC-A61D-471F-B5FF-A0C4A462F180}

2012-08-16 01:09:59 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll

2012-08-16 01:09:56 887296 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll

2012-08-15 16:10:29 -------- d-----w- C:\Users\Jay\AppData\Local\{F77FCF7F-0DD7-4FD9-8FD3-7C728BFF447C}

2012-08-15 16:10:19 -------- d-----w- C:\Users\Jay\AppData\Local\{28D8E3F6-7A60-454E-B27F-DE1BEEF73864}

2012-08-14 22:57:20 -------- d-----w- C:\Users\Jay\AppData\Local\{A7C1BBFC-866D-4A79-9845-13AF7ED2CAD3}

2012-08-14 22:57:04 -------- d-----w- C:\Users\Jay\AppData\Local\{EEFA0CD9-30D7-49F0-90B3-EEAC0FC85E49}

2012-08-14 10:37:30 -------- d-----w- C:\Users\Jay\AppData\Local\{51D014B8-9FFB-46BC-A648-B2F40F3D950F}

2012-08-14 10:37:20 -------- d-----w- C:\Users\Jay\AppData\Local\{A114FB5B-95C8-4FFC-A32A-561F2B35D850}

2012-08-14 10:37:10 -------- d-----w- C:\Users\Jay\AppData\Local\{E68B47E6-FF2B-4B28-9E7C-C7C580044800}

2012-08-14 10:36:50 -------- d-----w- C:\Users\Jay\AppData\Local\{B157D0D9-4791-4E8F-944C-2366D1197405}

2012-08-13 22:36:21 -------- d-----w- C:\Users\Jay\AppData\Local\{09D3C1BB-F9CE-4671-8F77-AFC2F3FA88F0}

2012-08-13 22:35:58 -------- d-----w- C:\Users\Jay\AppData\Local\{E276EFF4-2F0F-4189-8642-C19D63F3FCE1}

2012-08-11 03:04:37 0 ----a-w- C:\Windows\SysWow64\shoB578.tmp

.

==================== Find3M ====================

.

2012-09-09 03:15:04 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-09-01 14:50:12 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-08-20 23:05:05 36240 ----a-w- C:\Windows\SysWow64\WinFLAdrv.sys

2012-08-20 23:04:51 91736 ----a-w- C:\Windows\SysWow64\WinFLService.exe

2012-08-20 23:04:50 14936 ----a-w- C:\Windows\SysWow64\WinFLMsgService.exe

2012-08-20 23:04:49 40960 ----a-w- C:\Windows\SysWow64\nwsftUninstall.exe

2012-08-20 23:04:48 293976 ----a-w- C:\Windows\SysWow64\WinFLTray.exe

2012-08-20 23:04:47 293976 ----a-w- C:\Windows\SysWow64\WinFLTrayShred.exe

2012-08-20 23:04:46 594520 ----a-w- C:\Windows\SysWow64\WinFLCtxMenu.dll

2012-07-28 04:09:20 5538984 ----a-w- C:\Windows\SysWow64\atiumdag.dll

2012-07-28 04:07:44 10278912 ----a-w- C:\Windows\System32\drivers\atikmdag.sys

2012-07-28 03:43:12 70144 ----a-w- C:\Windows\System32\coinst_8.982.dll

2012-07-28 03:19:34 24935424 ----a-w- C:\Windows\System32\atio6axx.dll

2012-07-28 02:50:10 20546560 ----a-w- C:\Windows\SysWow64\atioglxx.dll

2012-07-28 02:15:50 163840 ----a-w- C:\Windows\System32\atiapfxx.exe

2012-07-28 02:15:42 931328 ----a-w- C:\Windows\SysWow64\aticfx32.dll

2012-07-28 02:13:56 1100288 ----a-w- C:\Windows\System32\aticfx64.dll

2012-07-28 02:10:40 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll

2012-07-28 02:10:34 534528 ----a-w- C:\Windows\System32\atieclxx.exe

2012-07-28 02:09:44 239616 ----a-w- C:\Windows\System32\atiesrxx.exe

2012-07-28 02:08:20 120320 ----a-w- C:\Windows\System32\atitmm64.dll

2012-07-28 02:08:04 21504 ----a-w- C:\Windows\System32\atimuixx.dll

2012-07-28 02:07:58 59392 ----a-w- C:\Windows\System32\atiedu64.dll

2012-07-28 02:07:52 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll

2012-07-28 02:07:10 6430208 ----a-w- C:\Windows\SysWow64\atidxx32.dll

2012-07-28 01:51:12 7052288 ----a-w- C:\Windows\System32\atidxx64.dll

2012-07-28 01:41:32 4266496 ----a-w- C:\Windows\System32\atiumd6a.dll

2012-07-28 01:35:10 51200 ----a-w- C:\Windows\System32\aticalrt64.dll

2012-07-28 01:35:08 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll

2012-07-28 01:35:02 44544 ----a-w- C:\Windows\System32\aticalcl64.dll

2012-07-28 01:35:00 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll

2012-07-28 01:34:48 16034304 ----a-w- C:\Windows\System32\aticaldd64.dll

2012-07-28 01:32:32 4751872 ----a-w- C:\Windows\SysWow64\atiumdva.dll

2012-07-28 01:30:10 13605888 ----a-w- C:\Windows\SysWow64\aticaldd.dll

2012-07-28 01:25:52 6676480 ----a-w- C:\Windows\System32\atiumd64.dll

2012-07-28 01:15:32 540160 ----a-w- C:\Windows\System32\atiadlxx.dll

2012-07-28 01:15:22 368640 ----a-w- C:\Windows\SysWow64\atiadlxy.dll

2012-07-28 01:15:12 17920 ----a-w- C:\Windows\System32\atig6pxx.dll

2012-07-28 01:15:08 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll

2012-07-28 01:15:08 14848 ----a-w- C:\Windows\System32\atiglpxx.dll

2012-07-28 01:15:04 41984 ----a-w- C:\Windows\System32\atig6txx.dll

2012-07-28 01:14:56 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll

2012-07-28 01:14:46 368640 ----a-w- C:\Windows\System32\drivers\atikmpag.sys

2012-07-28 01:13:54 129536 ----a-w- C:\Windows\System32\atiuxp64.dll

2012-07-28 01:13:48 109568 ----a-w- C:\Windows\SysWow64\atiuxpag.dll

2012-07-28 01:13:40 103936 ----a-w- C:\Windows\System32\atiu9p64.dll

2012-07-28 01:13:32 83456 ----a-w- C:\Windows\SysWow64\atiu9pag.dll

2012-07-28 01:12:54 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll

2012-07-28 01:08:42 56320 ----a-w- C:\Windows\System32\atimpc64.dll

2012-07-28 01:08:42 56320 ----a-w- C:\Windows\System32\amdpcom64.dll

2012-07-28 01:08:36 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll

2012-07-28 01:08:36 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll

2012-07-27 20:47:40 187392 ----a-w- C:\Windows\System32\clinfo.exe

2012-07-27 20:47:24 75776 ----a-w- C:\Windows\System32\OpenVideo64.dll

2012-07-27 20:47:16 65024 ----a-w- C:\Windows\SysWow64\OpenVideo.dll

2012-07-27 20:47:10 63488 ----a-w- C:\Windows\System32\OVDecode64.dll

2012-07-27 20:47:06 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll

2012-07-27 20:46:56 16464896 ----a-w- C:\Windows\System32\amdocl64.dll

2012-07-27 20:46:06 13013504 ----a-w- C:\Windows\SysWow64\amdocl.dll

2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys

2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll

2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll

2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll

2012-07-03 16:21:52 958400 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2012-07-03 16:21:52 71064 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2012-07-03 16:21:52 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys

2012-07-03 16:21:32 41224 ----a-w- C:\Windows\avastSS.scr

2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll

2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

.

============= FINISH: 12:20:51,99 ===============

The save log option wasnt enabled until i went through all the steps and realised at the end that one from JavaRa was also needed, so unfortunately the only thing in the log in this:

JavaRa 2.0 loaded without incident. Checking system...

[Maniac]

Thanks!

Any progress?

[Sandsz]

I havent had any problems with it anymore but i have noticed that google chrome is very slow compared to my other browser, which is weird because it used to be my fastest one. hoping a quick reinstall will do the trick. Thanks for the help!

[Maniac]

Please re-install it and let me know.

[Sandsz]

I re-installed and now it's running faster than ever.

[Maniac]

Thanks for your information!

Please manually delete DDS, aswMBR, TFC and JavaRa.

Some malware prevention tips:

www.users.telenet.be/bluepatchy/miekiemoes/prevention.html

Safe surfing!

[Maurice Naggar]

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!