heey abraham bij deze de log van dds
dds log geconveert
[hjt]
.
dds (ver_2011-08-26.01) - ntfsx86
internet explorer: 8.0.7601.17514
run by user at 20:50:49 on 2011-10-02
microsoft windows 7 starter 6.1.7601.1.1252.31.1033.18.1012.595 [gmt -4:00]
.
av: avast! antivirus *disabled/updated* {2b2d1395-420b-d5c9-657e-930fe358fc3c}
sp: avast! antivirus *disabled/updated* {904cf271-6431-da47-5fce-a87d98dfb681}
sp: windows defender *disabled/updated* {d68ddc3a-831f-4fae-9e44-da132c1acf46}
.
============== running processes ===============
.
c:\windows\system32\wininit.exe
c:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k networkservice
c:\windows\system32\wlanext.exe
c:\windows\system32\conhost.exe
c:\windows\explorer.exe
c:\windows\system32\spoolsv.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\program files\synaptics\syntp\syntpenh.exe
c:\program files\avast software\avast\avastui.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe
c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
c:\program files\tuneup utilities 2011\tuneuputilitiesapp32.exe
c:\program files\common files\microsoft shared\windows live\wlidsvcm.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
c:\program files\synaptics\syntp\syntphelper.exe
c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
c:\program files\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe
c:\windows\system32\wuauclt.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\dllhost.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\wbem\wmiprvse.exe
.
============== pseudo hjt report ===============
.
uwindow title =
mstart page = hxxp://www.msn.com
mrun: [syntpenh] c:\program files\synaptics\syntp\syntpenh.exe
mrun: [avast] c:\program files\avast software\avast\avastui.exe /nogui
upolicies-explorer: maxrecentdocs = 15 (0xf)
mpolicies-system: consentpromptbehavioradmin = 5 (0x5)
mpolicies-system: consentpromptbehavioruser = 3 (0x3)
mpolicies-system: enableuiadesktoptoggle = 0 (0x0)
mpolicies-system: promptonsecuredesktop = 0 (0x0)
trusted zone: microsoft.com\*.windowsupdate
trusted zone: microsoft.com\update
trusted zone: windowsupdate.com
tcp: dhcpnameserver = 10.0.0.254
tcp: interfaces\{33245d4b-691e-4a05-a2d7-0b773038211a} : dhcpnameserver = 10.0.0.254
masetup: {2c7339cf-2b09-4501-b3f3-f3508c9228ed} - c:\windows\system32\regsvr32.exe /s /n /i:/userinstall c:\windows\system32\themeui.dll
.
============= services / drivers ===============
.
r1 aswsnx;aswsnx;c:\windows\system32\drivers\aswsnx.sys [2011-9-28 371544]
r1 aswsp;aswsp;c:\windows\system32\drivers\aswsp.sys [2011-9-28 301528]
r1 vwififlt;virtual wifi filter driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
r2 aswfsblk;aswfsblk;c:\windows\system32\drivers\aswfsblk.sys [2011-9-28 19544]
r2 aswmonflt;aswmonflt;c:\windows\system32\drivers\aswmonflt.sys [2011-9-28 53592]
r2 clr_optimization_v4.0.30319_32;microsoft .net framework ngen v4.0.30319_x86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
r2 iastordatamgrsvc;intel(r) rapid storage technology;c:\program files\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe [2011-9-7 13336]
r2 tuneup.utilitiessvc;tuneup utilities service;c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe [2011-1-19 1517376]
r3 rspciestor;realtek pcie cardreader driver;c:\windows\system32\drivers\rtspstor.sys [2011-7-25 230944]
r3 rtl8167;realtek 8167 nt driver;c:\windows\system32\drivers\rt86win7.sys [2011-7-25 267880]
r3 tuneuputilitiesdrv;tuneuputilitiesdrv;c:\program files\tuneup utilities 2011\tuneuputilitiesdriver32.sys [2010-11-29 10064]
s2 avast! antivirus;avast! antivirus;c:\program files\avast software\avast\avastsvc.exe [2011-9-28 42184]
s2 hp support assistant service;hp support assistant service;c:\program files\hewlett-packard\hp support framework\hpsa_service.exe --> c:\program files\hewlett-packard\hp support framework\hpsa_service.exe [?]
s2 hpdrvmntsvc.exe;hp quick synchronization service;c:\program files\hewlett-packard\shared\hpdrvmntsvc.exe --> c:\program files\hewlett-packard\shared\hpdrvmntsvc.exe [?]
s3 b57nd60x;broadcom netxtreme gigabit ethernet - ndis 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
s3 eboostrsvc;eboostr service;c:\program files\eboostr\ebstrsvc.exe --> c:\program files\eboostr\ebstrsvc.exe [?]
s3 revoflt;revoflt;c:\windows\system32\drivers\revoflt.sys [2011-9-8 27192]
s3 tsusbflt;tsusbflt;c:\windows\system32\drivers\tsusbflt.sys [2011-9-7 52224]
s4 aestfilters;andrea st filters service;c:\program files\idt\wdm\aestsrv.exe [2011-7-25 81920]
s4 gupdate;google update service (gupdate);c:\program files\google\update\googleupdate.exe /svc --> c:\program files\google\update\googleupdate.exe [?]
s4 gupdatem;google update service (gupdatem);c:\program files\google\update\googleupdate.exe /medsvc --> c:\program files\google\update\googleupdate.exe [?]
.
=============== file associations ===============
.
jsefile=notepad.exe %1
vbefile=notepad.exe %1
.
=============== created last 30 ================
.
2011-10-03 00:39:34 -------- d-----w- c:\users\user\appdata\local\{5189a4c4-25bd-4800-820b-30407ee67c04}
2011-10-03 00:38:36 -------- d-----w- c:\users\user\appdata\local\{f854ab7f-d35c-4501-af98-a616cdd9db49}
2011-10-02 08:26:49 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{817bf018-1fa9-40ca-9f19-cb6fe8c05e74}\offreg.dll
2011-10-02 06:40:25 205072 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2011-10-02 06:12:36 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-02 06:12:34 -------- d-----w- c:\program files\malwarebytes' anti-malware
2011-10-02 05:30:23 388096 ----a-r- c:\users\user\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\hijackthis.exe
2011-10-02 05:30:22 -------- d-----w- c:\program files\trend micro
2011-10-01 22:37:52 -------- d-sh--w- c:\programdata\{24036256-bfdb-4cd3-be8a-a3d6160f2e16}
2011-09-30 20:00:52 -------- d-----w- c:\users\user\appdata\local\apps
2011-09-30 18:55:19 -------- d-----w- c:\program files\common files\magix shared
2011-09-30 16:10:27 -------- d-----w- c:\users\user\appdata\roaming\magix
2011-09-30 16:04:40 663552 ----a-w- c:\windows\system32\mgxoschk.dll
2011-09-30 16:03:11 14208 ----a-w- c:\windows\system32\drivers\disksec.sys
2011-09-30 15:58:51 -------- d-----w- c:\programdata\magix
2011-09-30 14:55:51 -------- d-----w- c:\users\user\appdata\local\packageaware
2011-09-30 13:36:13 -------- d-----w- c:\users\user\appdata\local\hewlett-packard
2011-09-30 12:34:39 -------- d-----w- c:\programdata\{d3b41b92-9bc2-43eb-916a-4fa9e8191837}
2011-09-30 11:56:21 -------- d-----w- c:\program files\msecache
2011-09-30 11:55:11 -------- d-----w- c:\program files\conduit
2011-09-30 11:54:52 -------- d-----w- c:\users\user\appdata\local\conduit
2011-09-30 09:03:56 7269712 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{817bf018-1fa9-40ca-9f19-cb6fe8c05e74}\mpengine.dll
2011-09-30 06:19:57 -------- d-----w- c:\programdata\martau
2011-09-28 11:49:02 371544 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2011-09-28 11:48:54 53592 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2011-09-28 11:47:23 40648 ----a-w- c:\windows\avastss.scr
2011-09-28 11:47:06 -------- d-----w- c:\programdata\avast software
2011-09-28 11:47:05 -------- d-----w- c:\program files\avast software
2011-09-28 11:38:05 41 ----a-w- c:\users\user\appdata\roaming\smss.exe.tmp
2011-09-28 11:28:59 57503 ----a-w- c:\users\user\appdata\roaming\user3sqlite3.dll
2011-09-28 11:11:30 -------- d-----w- c:\users\user\appdata\roaming\install
2011-09-28 10:01:44 -------- d-----w- c:\windows\xsxs
2011-09-28 09:59:56 -------- d-----w- c:\users\user\appdata\roaming\sammsoft
2011-09-28 08:30:25 -------- d-----w- c:\users\user\appdata\local\{b1a1048b-528c-45b7-ad20-1c7c049fab50}
2011-09-28 08:29:36 -------- d-----w- c:\users\user\appdata\local\{40a282e7-5ccc-4a35-af5d-c18963f5bef2}
2011-09-27 10:35:59 -------- d-----w- c:\users\user\appdata\roaming\malwarebytes
2011-09-27 10:35:46 -------- d-----w- c:\programdata\malwarebytes
2011-09-27 10:30:48 -------- d-----w- c:\users\user\appdata\local\{5706c816-c237-435e-aa2c-bbf3f8c42100}
2011-09-27 10:30:23 -------- d-----w- c:\users\user\appdata\local\{3e1b07a1-5488-4864-8530-fcd357f8c988}
2011-09-27 05:21:43 -------- d-----w- c:\programdata\iobit
2011-09-27 05:06:59 -------- d-----w- c:\users\user\appdata\roaming\iobit
2011-09-25 10:50:55 -------- dc----w- c:\users\user\appdata\local\migwiz
2011-09-25 08:48:31 20392 ----a-w- c:\windows\system32\drivers\elrawdsk.sys
2011-09-25 03:53:52 -------- d-----w- c:\users\user\appdata\local\spotlite
2011-09-25 03:17:01 -------- d-----w- c:\users\user\appdata\roaming\grabit
2011-09-25 03:07:16 -------- d-----w- c:\program files\spotlite
2011-09-25 03:03:06 -------- d-----w- c:\program files\grabit
2011-09-24 10:36:29 -------- d-----w- c:\windows\windowsmobile
2011-09-24 10:36:29 -------- d-----w- c:\windows\system32\drivers\umdf\nl-nl
2011-09-24 10:36:20 3584 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\nl-nl\lmprtprc.dll.mui
2011-09-24 10:36:15 -------- d-----w- c:\windows\system32\nl
2011-09-24 10:36:14 -------- d-----w- c:\windows\system32\xpsviewer
2011-09-24 10:35:53 -------- d-----w- c:\program files\windows journal
2011-09-24 10:35:40 -------- d-----w- c:\program files\microsoft games
2011-09-24 10:35:32 -------- d-----w- c:\program files\windows collaboration
2011-09-24 10:35:17 -------- d-----w- c:\windows\system32\0413
2011-09-24 10:34:47 -------- d-----w- c:\windows\ehome
2011-09-24 10:34:44 -------- d-----w- c:\windows\system32\wbem\nl-nl
2011-09-24 10:34:41 -------- d-----w- c:\windows\nl-nl
2011-09-24 10:34:41 -------- d-----w- c:\windows\msagent
2011-09-24 10:34:33 -------- d-----w- c:\windows\system32\drivers\nl-nl
2011-09-24 10:34:24 40960 ----a-w- c:\program files\common files\microsoft shared\ink\nl\microsoft.ink.resources.dll
2011-09-24 10:32:24 -------- d-----w- c:\windows\system32\vistalizator
2011-09-24 08:56:29 47984 ----a-w- c:\windows\system32\advuninstcpl.cpl
2011-09-24 08:44:14 -------- d-----w- c:\users\user\appdata\local\elevateddiagnostics
2011-09-24 08:42:43 12164 ----a-w- c:\windows\system32\domainbackup.reg
2011-09-24 08:41:48 -------- d-----w- c:\aulogs
2011-09-24 07:00:31 -------- d-----w- c:\program files\microsoft sql server
2011-09-24 06:49:02 88 ----a-w- c:\users\user\appdata\roaming\netstat.bat
2011-09-24 02:23:01 74703 ----a-w- c:\windows\system32\mfc45.dll
2011-09-22 12:55:47 -------- d-----w- c:\users\user\appdata\local\utorrent
2011-09-22 11:29:59 -------- d-----w- c:\users\user\appdata\local\innovative solutions
2011-09-22 11:29:53 -------- d-----w- c:\program files\common files\innovative solutions
2011-09-22 11:29:48 -------- d-----w- c:\programdata\innovative solutions
2011-09-22 09:22:30 -------- d-----w- c:\users\user\appdata\roaming\sunbelt
2011-09-22 09:22:26 -------- d-----w- c:\programdata\sunbelt
2011-09-22 07:37:09 -------- d-----w- c:\08e88613159f8a5318
2011-09-20 08:02:27 767952 ----a-w- c:\windows\bdtsupport.dll
2011-09-20 08:02:26 149456 ----a-w- c:\windows\sgdetectiontool.dll
2011-09-20 08:02:25 2078672 ----a-w- c:\windows\pctbdcore.dll
2011-09-20 08:02:25 1533904 ----a-w- c:\windows\pctbdres.dll
2011-09-20 06:50:10 -------- d-sh--w- c:\$recycle.bin
2011-09-20 06:01:00 -------- d-----w- c:\windows\system32\catroot2
2011-09-20 05:25:12 -------- d-----w- c:\a994effe1ccf55e91bb3
2011-09-19 13:02:38 527872 ----a-w- c:\windows\system32\stapi32.dll
2011-09-19 05:39:22 -------- d-----w- c:\windows\system32\msmq
2011-09-19 05:38:53 -------- d-sh--w- c:\incinerate
2011-09-19 04:43:38 -------- d-----w- c:\system.sav
2011-09-18 19:27:57 -------- d-----w- c:\users\user\appdata\local\pokerstars
2011-09-18 08:36:58 2036 ----a-w- c:\windows\system32\asoroset.bin
2011-09-18 08:29:38 15592 ----a-w- c:\windows\system32\roboot.exe
2011-09-18 07:34:56 -------- d-----w- c:\users\user\appdata\local\diagnostics
2011-09-18 06:55:34 43520 ----a-w- c:\windows\system32\libusb0.dll
2011-09-18 06:55:34 32256 ----a-w- c:\windows\system32\drivers\libusb0.sys
2011-09-18 06:19:37 -------- d-----w- c:\program files\pokerstars
2011-09-16 05:50:15 -------- d--h--w- c:\windows\pif
2011-09-15 09:22:33 -------- d-----w- c:\users\user\appdata\local\microsoft_corporation
2011-09-14 05:05:02 87688 ----a-w- c:\windows\system32\inccontxmenu.dll
2011-09-14 05:05:02 2233016 ----a-w- c:\windows\system32\incinerator.dll
2011-09-14 05:05:01 9341 ----a-w- c:\windows\system32\drivers\filedisk.sys
2011-09-14 05:04:55 29696 ----a-w- c:\windows\system32\iolobtdfg.exe
2011-09-14 05:04:55 11776 ----a-w- c:\windows\system32\smrgdf.exe
2011-09-14 04:07:38 511328 ----a-w- c:\program files\common files\microsoft shared\capicom\capicom.dll
2011-09-14 03:19:51 -------- d-----w- c:\windows\system32\wat
2011-09-14 02:04:01 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x32.sys
2011-09-13 21:37:16 -------- d-----w- c:\program files\ccleaner
2011-09-13 05:08:50 1081616 ----a-w- c:\windows\system32\mscomctl.ocx
2011-09-13 02:19:04 29992 ----a-w- c:\windows\system32\drivers\grd.sys
2011-09-12 22:33:08 47560 ----a-w- c:\windows\system32\drivers\pkticpt.sys
2011-09-12 22:30:31 61512 ----a-w- c:\windows\system32\drivers\miniicpt.sys
2011-09-12 22:30:25 33480 ----a-w- c:\windows\system32\drivers\gdbehave.sys
2011-09-12 22:30:10 40904 ----a-w- c:\windows\system32\drivers\gdwfpcd32.sys
2011-09-12 22:18:28 -------- d-----w- c:\users\user\appdata\local\downloaded installations
2011-09-12 09:28:03 2081832 ----a-w- c:\users\user\appdata\local\setup.exe
2011-09-12 07:15:39 20552 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2011-09-12 04:50:12 -------- d-----w- c:\windows\system32\catroot2_201192015019
2011-09-11 08:18:46 -------- d-----w- c:\users\user\appdata\roaming\glarysoft
2011-09-11 02:47:38 -------- d-----w- c:\programdata\skype extras
2011-09-10 22:42:08 -------- d-----w- c:\users\user\appdata\local\microsoft corporation
2011-09-10 19:23:30 -------- d-----w- c:\programdata\synaptics
2011-09-10 19:23:02 -------- d-----w- c:\users\user\appdata\roaming\synaptics
2011-09-10 10:20:16 -------- d-----w- c:\windows\system32\vs08
2011-09-10 10:17:46 -------- d-----w- c:\temp.intel
2011-09-10 05:06:19 -------- d-----w- c:\pfiles
2011-09-10 01:32:34 -------- d-----w- c:\windows\pss
2011-09-10 00:39:02 -------- d-----w- c:\windows\system32\bestpractices
2011-09-10 00:38:58 -------- d-----w- c:\inetpub
2011-09-10 00:14:12 9472 ----a-w- c:\windows\system32\drivers\pnetmdm.sys
2011-09-09 14:39:09 -------- d-----w- c:\mft 477
2011-09-09 14:38:50 -------- d-----w- c:\mft 327
2011-09-09 14:38:49 -------- d-----w- c:\mft 324
2011-09-09 07:50:29 -------- d-----w- c:\users\user\appdata\local\virtualstore
2011-09-09 03:14:55 13488 ----a-w- c:\windows\cscmondump.bin
2011-09-09 01:33:32 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-09-09 01:33:31 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-09-08 20:48:22 -------- d-----w- c:\users\user\appdata\roaming\windows live writer
2011-09-08 20:48:22 -------- d-----w- c:\users\user\appdata\local\windows live writer
2011-09-08 07:27:18 -------- d-----w- c:\users\user\appdata\local\windows live
2011-09-08 07:27:16 -------- d-----w- c:\program files\common files\windows live
2011-09-08 05:30:04 -------- d-----w- c:\users\user\appdata\local\netdragon
2011-09-08 04:45:43 -------- d-----w- c:\users\user\appdata\local\vs revo group
2011-09-08 04:45:07 27192 ----a-w- c:\windows\system32\drivers\revoflt.sys
2011-09-08 04:44:58 -------- d-----w- c:\program files\vs revo group
2011-09-08 04:27:48 -------- d-----w- c:\program files\videolan
2011-09-08 04:16:57 152848 ----a-w- c:\windows\system32\comdlg32.ocx
2011-09-08 04:16:56 124688 ----a-w- c:\windows\system32\mswinsck.ocx
2011-09-08 03:47:48 31552 ----a-w- c:\windows\system32\turegopt.exe
2011-09-08 03:47:45 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-09-08 03:47:45 21312 ----a-w- c:\windows\system32\authuitu.dll
2011-09-08 03:46:49 -------- d-----w- c:\users\user\appdata\roaming\tuneup software
2011-09-08 03:46:13 -------- d-----w- c:\program files\tuneup utilities 2011
2011-09-08 03:45:00 -------- d-----w- c:\programdata\tuneup software
2011-09-08 03:21:12 -------- d-----w- c:\windows\checksur
2011-09-08 02:24:01 -------- d-----w- c:\users\user\appdata\roaming\utorrent
2011-09-08 01:43:04 354840 ----a-w- c:\windows\system32\drivers\iastor.sys
2011-09-08 00:39:22 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-08 00:37:09 -------- d-----w- c:\windows\system32\spreview
2011-09-08 00:36:31 -------- d-----w- c:\windows\system32\eventproviders
2011-09-08 00:11:14 1130824 ----a-w- c:\windows\system32\dfshim.dll
2011-09-08 00:11:02 52224 ----a-w- c:\windows\system32\drivers\tsusbflt.sys
2011-09-08 00:11:01 11776 ----a-w- c:\windows\system32\tsusbredirectiongrouppolicyextension.dll
2011-09-08 00:11:00 3215872 ----a-w- c:\windows\system32\mstscax.dll
2011-09-08 00:09:59 1288488 ----a-w- c:\windows\system32\ntdll.dll
2011-09-08 00:08:59 974336 ----a-w- c:\windows\system32\sppobjs.dll
2011-09-08 00:07:59 2311168 ----a-w- c:\windows\system32\wpdshext.dll
2011-09-08 00:06:59 173440 ----a-w- c:\windows\system32\drivers\rdyboost.sys
2011-09-08 00:05:59 7680 ----a-w- c:\program files\internet explorer\iecompat.dll
2011-09-08 00:04:59 242176 ----a-w- c:\windows\system32\eapp3hst.dll
2011-09-08 00:03:59 47104 ----a-w- c:\windows\system32\wkscli.dll
2011-09-08 00:02:59 45568 ----a-w- c:\windows\system32\g711codc.ax
2011-09-08 00:01:59 7168 ----a-w- c:\windows\system32\kbdsg.dll
2011-09-07 23:59:38 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-09-07 23:59:37 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-09-07 23:55:48 7269712 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2011-09-07 23:55:00 222080 ----a-w- c:\windows\system32\mpsigstub.exe
2011-09-07 23:38:21 2048 ----a-w- c:\windows\system32\tzres.dll
2011-09-07 23:38:11 -------- d-----w- c:\users\user\appdata\roaming\hpqlog
2011-09-07 23:35:23 981504 ----a-w- c:\windows\system32\wininet.dll
2011-09-07 23:35:13 163328 ----a-w- c:\program files\internet explorer\ieproxy.dll
2011-09-07 23:35:11 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2011-09-07 23:34:58 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-09-07 23:34:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-09-07 23:34:57 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-09-07 23:34:56 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-09-07 23:34:55 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-09-07 23:34:55 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-09-07 23:34:55 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-09-07 23:34:49 1076736 ----a-w- c:\windows\system32\dwrite.dll
2011-09-07 23:34:47 805376 ----a-w- c:\windows\system32\fntcache.dll
2011-09-07 23:34:46 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-09-07 23:34:39 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-09-07 23:04:12 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2011-09-07 23:04:11 94208 ----a-w- c:\program files\common files\system\ole db\msdaosp.dll
2011-09-07 23:04:11 86016 ----a-w- c:\windows\system32\odbccu32.dll
2011-09-07 23:04:11 81920 ----a-w- c:\windows\system32\odbccr32.dll
2011-09-07 23:04:11 163840 ----a-w- c:\windows\system32\odbctrac.dll
2011-09-07 23:04:11 122880 ----a-w- c:\windows\system32\odbccp32.dll
2011-09-07 22:39:19 -------- d-----w- c:\windows\system32\x64
2011-09-07 22:21:03 -------- d-----w- c:\program files\synaptics
2011-09-07 22:18:21 31232 ----a-w- c:\windows\system32\prevhost.exe
2011-09-07 22:16:23 428032 ----a-w- c:\windows\system32\vbscript.dll
2011-09-07 22:15:59 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-09-07 22:15:58 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-09-07 22:15:58 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-09-07 22:15:40 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2011-09-07 22:15:40 293376 ----a-w- c:\windows\system32\umpnpmgr(2181).dll
2011-09-07 22:15:40 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2011-09-07 22:15:33 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-09-07 22:15:12 70656 ----a-w- c:\windows\system32\fontsub.dll
2011-09-07 22:15:12 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-09-07 22:15:12 294912 ----a-w- c:\windows\system32\atmfd.dll
2011-09-07 22:14:48 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-07 22:14:48 187776 ----a-w- c:\windows\system32\drivers\fwpkclnt.sys
2011-09-07 22:14:39 542208 ----a-w- c:\windows\system32\kerberos.dll
2011-09-07 22:14:35 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-09-07 22:14:34 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
.
==================== find3m ====================
.
2011-09-24 10:35:52 3072 ----a-w- c:\windows\system32\drivers\nl-nl\srv.sys.mui
2011-09-24 10:35:51 12288 ----a-w- c:\windows\system32\drivers\nl-nl\fvevol.sys.mui
2011-09-24 10:35:38 3584 ----a-w- c:\windows\system32\drivers\nl-nl\rndismp.sys.mui
2011-09-24 10:35:38 3584 ----a-w- c:\windows\system32\drivers\nl-nl\pacer.sys.mui
2011-09-24 10:35:38 3072 ----a-w- c:\windows\system32\drivers\nl-nl\qwavedrv.sys.mui
2011-09-24 10:35:31 73728 ----a-w- c:\windows\system32\drivers\nl-nl\ntfs.sys.mui
2011-09-24 10:35:26 3584 ----a-w- c:\windows\system32\drivers\nl-nl\nfsrdr.sys.mui
2011-09-24 10:35:22 4096 ----a-w- c:\windows\system32\drivers\nl-nl\dxgkrnl.sys.mui
2011-09-24 10:35:21 7168 ----a-w- c:\windows\system32\drivers\nl-nl\luafv.sys.mui
2011-09-24 10:35:21 4096 ----a-w- c:\windows\system32\drivers\nl-nl\ipnat.sys.mui
2011-09-24 10:35:16 31744 ----a-w- c:\windows\system32\drivers\nl-nl\http.sys.mui
2011-09-08 01:06:22 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-08-04 13:20:38 33656 ----a-w- c:\windows\system32\drivers\epfwlwf.sys
2011-07-25 23:42:49 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2011-07-16 04:27:30 290816 ----a-w- c:\windows\system32\kernelbase.dll
2011-07-16 02:17:19 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17:19 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17:19 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17:19 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-09 02:30:00 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-07-05 22:37:00 94208 ----a-w- c:\windows\system32\quicktimevr.qtx
2011-07-05 22:37:00 69632 ----a-w- c:\windows\system32\quicktime.qts
.
============= finish: 20:52:32.62 ===============
[/hjt]
de dds attacht log
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Starter
Boot Device: \Device\HarddiskVolume1
Install Date: 7/25/2011 4:48:07
System Uptime: 10/2/2011 7:36:12 (1 hours ago)
.
Motherboard: Hewlett-Packard | | 148A
Processor: Intel(R) Atom(TM) CPU N455 @ 1.66GHz | CPU | 999/667mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 149 GiB total, 54.963 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
avast! Pro Antivirus
Broadcom 802.11 Wireless LAN Adapter
CCleaner
Google Chrome
GrabIt 1.7.2 Beta 5 (build 1007)
HiJackThis
Intel(R) Graphics Media Accelerator Driver
Intel(R) Rapid Storage Technology
Malwarebytes' Anti-Malware versie 1.51.2.1300
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Realtek Ethernet Controller Driver For Windows 7
Realtek PCIE Card Reader
Revo Uninstaller Pro 2.5.5
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Skype 5.3
SpotLite
Synaptics Pointing Device Driver
TuneUp Utilities 2011
TuneUp Utilities Language Pack (nl-NL)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
VLC media player 1.1.11
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR archiver
.
==== Event Viewer Messages From Past Week ========
.
9/30/2011 8:26:17, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom SBRE
9/30/2011 5:58:43, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avast! Antivirus service.
9/30/2011 5:56:31, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IKEEXT service.
9/30/2011 5:56:01, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RasMan service.
9/30/2011 4:58:07, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Message Queuing service to connect.
9/30/2011 4:58:07, Error: Service Control Manager [7001] - The Message Queuing Triggers service depends on the Message Queuing service which failed to start because of the following error: The service did not respond to the start or control request in a timely fashion.
9/30/2011 4:58:07, Error: Service Control Manager [7000] - The Message Queuing service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/30/2011 4:48:52, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
9/30/2011 11:19:59, Error: Service Control Manager [7000] - The Compaq Dfw service failed to start due to the following error: The system cannot find the file specified.
9/30/2011 11:07:37, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.
9/30/2011 11:07:37, Error: Service Control Manager [7000] - The HP Support Assistant Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The WLAN AutoConfig service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Wired AutoConfig service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Windows Audio Endpoint Builder service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Superfetch service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Program Compatibility Assistant Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Network Connections service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The HomeGroup Listener service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
9/29/2011 2:01:11, Error: Service Control Manager [7031] - The Desktop Window Manager Session Manager service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
9/28/2011 6:53:22, Error: Service Control Manager [7022] - The CounterSpy Antispyware service hung on starting.
9/28/2011 6:47:42, Error: Service Control Manager [7023] - The Message Queuing service terminated with the following error: %%-2147024877
9/28/2011 5:20:26, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MMCSS service.
9/28/2011 1:31:37, Error: Service Control Manager [7031] - The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
9/26/2011 12:31:25, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the EFS service.
9/25/2011 9:20:21, Error: Service Control Manager [7023] - The Windows Modules Installer service terminated with the following error: The process cannot access the file because it is being used by another process.
9/25/2011 9:13:22, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WPDBusEnum service.
9/25/2011 8:10:57, Error: Schannel [36888] - The following fatal alert was generated: 42. The internal error state is 250.
9/25/2011 7:05:10, Error: Service Control Manager [7001] - The HomeGroup Listener service depends on the Server service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
9/25/2011 4:50:04, Error: Service Control Manager [7022] - The iolo System Service service hung on starting.
9/25/2011 4:26:33, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
9/25/2011 10:22:22, Error: Service Control Manager [7023] -
9/25/2011 10:22:00, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.
9/25/2011 1:29:39, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom is3srv szkg5 szkgfs
10/2/2011 8:49:42, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80070422'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
10/2/2011 8:49:25, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
10/2/2011 8:49:25, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.
10/2/2011 7:39:14, Error: Service Control Manager [7000] - The HP Support Assistant Service service failed to start due to the following error: The system cannot find the file specified.
10/2/2011 7:37:11, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: cdrom
10/2/2011 7:37:00, Error: Service Control Manager [7000] - The HP Quick Synchronization Service service failed to start due to the following error: The system cannot find the file specified.
10/2/2011 6:03:14, Error: volsnap [14] - The shadow copies of volume C: were aborted because of an IO failure on volume C:.
10/2/2011 5:43:06, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2468871).
10/2/2011 5:13:26, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x000000c4 (0x000000f6, 0x00000108, 0x87bafd40, 0xb4a0e12c). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 100211-86486-01.
10/2/2011 5:03:33, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
10/2/2011 5:03:09, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.
10/2/2011 5:00:25, Error: Service Control Manager [7001] - The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error: The system cannot find the path specified.
10/2/2011 5:00:21, Error: Service Control Manager [7023] - The Windows Management Instrumentation Driver Extensions service terminated with the following error: The specified procedure could not be found.
10/2/2011 5:00:16, Error: Service Control Manager [7023] - The Windows Process Activation Service service terminated with the following error: The system cannot find the path specified.
10/2/2011 5:00:16, Error: Service Control Manager [7023] - The Diagnostic System Host service terminated with the following error: The requested control is not valid for this service.
10/2/2011 5:00:15, Error: Microsoft-Windows-WAS [5188] - The directory specified for the temporary application pool config files is either missing or is not accessible by the Windows Process Activation Service. Please specify an existing directory and/or ensure that it has proper access flags. The data field contains the error number.
10/2/2011 5:00:15, Error: Microsoft-Windows-WAS [5005] - Windows Process Activation Service (WAS) is stopping because it encountered an error. The data field contains the error number.
10/2/2011 4:59:48, Error: NETLOGON [3095] - This computer is configured as a member of a workgroup, not as a member of a domain. The Netlogon service does not need to run in this configuration.
10/2/2011 4:59:23, Error: Service Control Manager [7023] - The WWAN AutoConfig service terminated with the following error: Access is denied.
10/2/2011 4:59:03, Error: Microsoft-Windows-Eventlog [22] - The event logging service encountered an error while initializing publishing resources for channel Microsoft-Windows-RPC/Debug. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
10/2/2011 4:26:14, Error: Service Control Manager [7024] - The HomeGroup Listener service terminated with service-specific error %%-2147023828.
10/2/2011 4:26:04, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service HomeGroupProvider with arguments "" in order to run the server: {6F7C8E8F-DC69-4E3F-BC05-439962A05FD5}
10/2/2011 3:47:30, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the TuneUp Utilities Service service to connect.
10/2/2011 3:47:30, Error: Service Control Manager [7000] - The TuneUp Utilities Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
10/2/2011 3:46:18, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service TuneUp.UtilitiesSvc with arguments "" in order to run the server: {5EF1CF5D-87A9-434B-8786-2A08E1C30F6C}
10/2/2011 1:25:35, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x8ccb0fa8, 0x00000002, 0x00000000, 0x81b1ac72). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 100211-32479-01.
10/1/2011 9:31:16, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Intel(R) Rapid Storage Technology service to connect.
10/1/2011 9:31:16, Error: Service Control Manager [7000] - The Intel(R) Rapid Storage Technology service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
10/1/2011 9:30:45, Error: Service Control Manager [7000] - The Diagnostic Policy Service service failed to start due to the following error: The account specified for this service is different from the account specified for other services running in the same process.
10/1/2011 9:23:35, Error: Service Control Manager [7001] - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
10/1/2011 9:06:36, Error: Service Control Manager [7030] - The Diagnostic Policy Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
10/1/2011 9:06:17, Error: Service Control Manager [7030] - The Diagnostic Service Host service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
10/1/2011 9:05:59, Error: Service Control Manager [7030] - The Diagnostic System Host service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
10/1/2011 8:20:12, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service upnphost with arguments "" in order to run the server: {204810B9-73B2-11D4-BF42-00B0D0118B56}
10/1/2011 8:20:11, Error: Service Control Manager [7001] - The UPnP Device Host service depends on the SSDP Discovery service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
10/1/2011 8:19:25, Error: Service Control Manager [7000] - The Diagnostic Service Host service failed to start due to the following error: The account specified for this service is different from the account specified for other services running in the same process.
10/1/2011 7:24:48, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Message Queuing Triggers service to connect.
10/1/2011 7:24:48, Error: Service Control Manager [7000] - The Message Queuing Triggers service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
10/1/2011 6:46:32, Error: Service Control Manager [7034] - The HP Quick Synchronization Service service terminated unexpectedly. It has done this 1 time(s).
10/1/2011 6:46:22, Error: Service Control Manager [7034] - The HP Software Framework Service service terminated unexpectedly. It has done this 1 time(s).
10/1/2011 6:45:59, Error: Service Control Manager [7031] - The HP Support Assistant Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
10/1/2011 2:08:23, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
.
==== End Of File ===========================