Hierbij het resultaat van Malwarebytes:
Malwarebytes' Anti-Malware 1.51.2.1300
http://www.malwarebytes.org
Databaseversie: 7622
Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421
8-11-2011 21:12:29
mbam-log-2011-11-08 (21-11-52).txt
Scantype: Snelle scan
Objecten gescand: 172430
Verstreken tijd: 28 minuut/minuten, 48 seconde(n)
Geheugenprocessen geïnfecteerd: 0
Geheugenmodulen geïnfecteerd: 0
Registersleutels geïnfecteerd: 0
Registerwaarden geïnfecteerd: 0
Registerdata geïnfecteerd: 0
Mappen geïnfecteerd: 0
Bestanden geïnfecteerd: 1
Geheugenprocessen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Registerdata geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Mappen geïnfecteerd:
(Geen kwaadaardige objecten gedetecteerd)
Bestanden geïnfecteerd:
c:\END (Trojan.FakeAlert) -> No action taken.
Hierbij het resultaat van GMER 1.0.15.15641:
Allereerst de foutmelding bij de start van de scan:
"CreateFile "C:\Users\DERREC~1\AppData\Local\Temp\uwddapob.sys" Het proces heeft geen toegang tot het bestand omdat het door een ander proces wordt gebruikt.
GMER 1.0.15.15641 -
http://www.gmer.net
Rootkit quick scan 2011-11-08 21:19:45
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST9250315AS rev.0001SDM1
Running: gmer.exe; Driver: C:\Users\DERREC~1\AppData\Local\Temp\uwddapob.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Bestandssysteemfilterbeheer/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp tcpipBM.sys
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework-runtime/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework-runtime/Microsoft Corporation)
---- EOF - GMER 1.0.15 ----
Hierbij het resultaat van D.D.S.:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Derreck Weterings at 21:20:59 on 2011-11-08
Microsoft Windows 7 Starter 6.1.7601.1.1252.31.1043.18.1014.326 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\ProgramData\DatacardService\DCService.exe
C:\windows\system32\svchost.exe -k hpdevmgmt
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\windows\system32\rundll32.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Phoenix Technologies Ltd\FailSafe\FailSafeNotifier.exe
C:\windows\System32\svchost.exe -k HPZ12
C:\windows\System32\svchost.exe -k HPZ12
C:\windows\SYSTEM32\Rezip.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\svchost.exe -k HPService
C:\windows\system32\SearchIndexer.exe
C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\Derreck Weterings\AppData\Roaming\T-Mobile Internet Manager\ouc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Nokia\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\Nokia\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\WUDFHost.exe
C:\windows\system32\conhost.exe
C:\windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://downloads.phpnuke.org/nl/index.php?rvs=hompag
uStart Page = hxxp://
www.google.nl/
uSearch Bar = Preserve
mStart Page = hxxp://downloads.phpnuke.org/nl/index.php?rvs=hompag
mSearch Page = hxxp://downloads.phpnuke.org/nl/index.php?rvs=hompag
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\progra~1\bearsh~1\mediabar\toolbar\BearshareMediabarDx.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll
BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - c:\program files\bitcomet\tools\BitCometBHO_1.4.12.6.dll
BHO: UrlHelper Class: {74322bf9-df26-493f-b0da-6d2fc5e6429e} - c:\progra~1\bearsh~1\mediabar\datamngr\IEBHO.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\mcafee\virusscan\scriptsn.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Easy Photo Print: {9421dd08-935f-4701-a9ca-22df90ac4ea6} - c:\program files\epson software\easy photo print\EPTBL.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Windows 7 Starter Helper: {d381ff29-7cfb-4d4e-b92a-c4eddc696614} - c:\program files\oceanis\systemsetting\StarterHelper.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Easy Photo Print: {9421dd08-935f-4701-a9ca-22df90ac4ea6} - c:\program files\epson software\easy photo print\EPTBL.dll
TB: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\progra~1\bearsh~1\mediabar\toolbar\BearshareMediabarDx.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [EPSON SX210 Series] c:\windows\system32\spool\drivers\w32x86\3\e_fatifde.exe /fu "c:\windows\temp\E_SB129.tmp" /EF "HKCU"
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [MultiScreen] c:\program files\multiscreen\MultiScreen.exe
uRun: [HW_OPENEYE_OUC_T-Mobile Internet Manager] "c:\program files\t-mobile\internetmanager_h\updatedog\ouc.exe"
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [mcagent_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [fsn] c:\program files\phoenix technologies ltd\failsafe\FailSafeNotifier.exe
mRun: [NokiaMServer] c:\program files\common files\nokia\mplatform\NokiaMServer /watchfiles
mRun: [Nokia FastStart] "c:\program files\nokia\nokia music\NokiaMusic.exe" /command:faststart
mRun: [EEventManager] c:\progra~1\epsons~1\eventm~1\EEventManager.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [DATAMNGR] c:\progra~1\bearsh~1\mediabar\datamngr\DATAMN~1.EXE
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [DataCardMonitor] c:\program files\t-mobile\internetmanager_h\DataCardMonitor.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\users\derrec~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.0.181\SSScheduler.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://c:\program files\bitcomet\tools\BitCometBHO_1.4.12.6.dll/206
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {5067A26B-1337-4436-8AFE-EE169C2DA79F} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - hxxp://verkopen.marktplaats.nl/js/widgets/imageUploader/aurigma/5_7_24_0/ImageUploader5.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 10.0.0.1
TCP: Interfaces\{18C6D561-37F8-49F4-9D26-52DC0079C7A7} : DhcpNameServer = 10.0.0.1
TCP: Interfaces\{18C6D561-37F8-49F4-9D26-52DC0079C7A7}\2656C6B696E6534376 : DhcpNameServer = 192.168.2.1
TCP: Interfaces\{18C6D561-37F8-49F4-9D26-52DC0079C7A7}\350756564645F6573686544383139314 : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{18C6D561-37F8-49F4-9D26-52DC0079C7A7}\4586F6D637F6E6246403336353 : DhcpNameServer = 192.168.2.254
TCP: Interfaces\{18C6D561-37F8-49F4-9D26-52DC0079C7A7}\4586F6D637F6E6530354631324 : DhcpNameServer = 192.168.2.254
TCP: Interfaces\{4253C9B5-228A-485E-B4FD-66527328A125} : DhcpNameServer = 10.0.0.1
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\progra~1\bearsh~1\mediabar\datamngr\datamngr.dll c:\progra~1\bearsh~1\mediabar\datamngr\IEBHO.dll
.
============= SERVICES / DRIVERS ===============
.
R0 BMLoad;Bytemobile Boot Time Load Driver;c:\windows\system32\drivers\BMLoad.sys [2011-10-24 13184]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2009-9-25 214664]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 165648]
R1 MpKsl456bb6cd;MpKsl456bb6cd;c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\MpKsl456bb6cd.sys [2011-11-8 28752]
R1 MpKsl4a5ed788;MpKsl4a5ed788;c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\MpKsl4a5ed788.sys [2011-11-8 28752]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\drivers\SABI.sys [2009-9-25 10752]
R1 SASDIFSV;SASDIFSV;c:\users\derrec~1\appdata\local\temp\sas_selfextract\SASDIFSV.SYS [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\users\derrec~1\appdata\local\temp\sas_selfextract\SASKUTIL.SYS [2011-7-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 DCService.exe;DCService.exe;c:\programdata\datacardservice\DCService.exe [2010-8-19 227012]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2009-9-25 196224]
R2 Rezip;Rezip;c:\windows\system32\Rezip.exe [2009-9-25 307384]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2010-1-18 29472]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2011-10-24 63616]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-11-8 22216]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2011-4-27 65024]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\antimalware\NisSrv.exe [2011-4-27 208944]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-9-25 187392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 124180]
S2 gupdate1ca995772919498;Google Updateservice (gupdate1ca995772919498);c:\program files\google\update\GoogleUpdate.exe [2010-1-19 127032]
S2 McProxy;McAfee Proxy Service;c:\progra~1\common~1\mcafee\mcproxy\mcproxy.exe [2010-1-19 353008]
S2 McShield;McAfee Real-time Scanner;c:\progra~1\mcafee\viruss~1\mcshield.exe [2010-1-19 144704]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\bitcomet\tools\bitcometservice.exe -service --> c:\program files\bitcomet\tools\BitCometService.exe -service [?]
S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\drivers\aabed2.sys [2008-3-20 23040]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2011-10-24 101504]
S3 gupdatem;Google Update-service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-1-19 127032]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2011-10-24 69504]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 McSysmon;McAfee SystemGuards;c:\progra~1\mcafee\viruss~1\mcsysmon.exe [2010-1-19 599712]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2009-9-25 79816]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2009-9-25 35272]
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2009-9-25 34248]
S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2009-9-25 40552]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2011-4-18 43392]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-10-23 52224]
.
=============== Created Last 30 ================
.
2011-11-08 19:40:00 -------- d-----w- c:\users\derreck weterings\appdata\roaming\Malwarebytes
2011-11-08 19:39:21 -------- d-----w- c:\programdata\Malwarebytes
2011-11-08 19:39:13 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-08 19:39:11 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-11-08 19:16:25 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\MpKsl4a5ed788.sys
2011-11-08 18:40:20 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\MpKsl456bb6cd.sys
2011-11-08 18:40:09 56200 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\offreg.dll
2011-11-08 09:25:27 6668624 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{c57e0ce8-5208-4346-9a35-511c417e0a45}\mpengine.dll
2011-11-07 20:00:16 703824 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{257286eb-9833-4af7-9a80-3e37a8462a44}\gapaengine.dll
2011-11-07 19:53:32 -------- d-----w- c:\program files\Microsoft Security Client
2011-11-04 08:43:43 6668624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2011-11-04 08:43:31 6668624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{1aec3a78-2fdf-41b8-a2f7-8504ca546712}\mpengine.dll
2011-11-03 23:05:11 -------- d-----w- c:\users\derreck weterings\appdata\roaming\SUPERAntiSpyware.com
2011-11-03 23:05:10 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-11-03 22:19:42 -------- d-----w- c:\users\derreck weterings\appdata\roaming\GetRightToGo
2011-11-03 22:00:07 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-11-03 21:20:46 -------- d-----w- c:\program files\Avira
2011-10-28 15:17:02 -------- d-----w- c:\users\derreck weterings\appdata\local\{C4934BEA-633D-4672-B66C-BB2D1D7FEA82}
2011-10-28 15:16:56 -------- d-----w- c:\users\derreck weterings\appdata\local\{8B9F9099-0448-47CA-8639-3EA452FC621F}
2011-10-28 14:43:56 -------- d-----w- c:\users\derreck weterings\appdata\local\{52D51838-28A4-42DF-BAAA-4AEEF49C14FA}
2011-10-28 14:07:35 -------- d-----w- c:\users\derreck weterings\appdata\local\{6D1AA7DD-5627-41C4-ACCC-5A417558BD12}
2011-10-28 12:19:15 -------- d-----w- c:\program files\ABN AMRO e.dentifier2
2011-10-27 15:03:17 -------- d-----w- c:\users\derreck weterings\appdata\local\ElevatedDiagnostics
2011-10-26 17:19:08 -------- d-----w- c:\users\derreck weterings\appdata\roaming\DVDVideoSoft
2011-10-26 16:55:10 -------- d-----w- c:\users\derreck weterings\appdata\roaming\DVDVideoSoftIEHelpers
2011-10-26 16:54:12 -------- d-----w- c:\program files\DVDVideoSoft
2011-10-26 16:54:12 -------- d-----w- c:\program files\common files\DVDVideoSoft
2011-10-25 17:21:42 -------- d-----w- c:\users\derreck weterings\appdata\local\{BFAE9520-125E-430B-BB04-29AC076C51BE}
2011-10-24 16:04:45 -------- d-sh--w- c:\users\derreck weterings\appdata\local\df6fc415
2011-10-24 15:18:46 -------- d-----w- c:\users\derreck weterings\appdata\roaming\T-Mobile Internet Manager
2011-10-24 15:16:02 -------- d-----w- c:\users\derreck weterings\appdata\roaming\T-Mobile
2011-10-24 15:14:50 861696 ----a-w- c:\windows\system32\drivers\mod7700.sys
2011-10-24 15:14:50 204800 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2011-10-24 15:14:50 11136 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2011-10-24 15:14:49 27136 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2011-10-24 15:14:49 105984 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2011-10-24 15:14:12 101504 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2011-10-24 15:11:26 -------- d-----w- c:\program files\T-Mobile
2011-10-24 15:09:34 -------- d-----w- c:\programdata\DatacardService
2011-10-24 13:00:07 -------- d-----w- c:\windows\system32\SPReview
2011-10-24 12:58:24 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-24 12:55:54 -------- d-----w- c:\windows\system32\EventProviders
2011-10-23 17:15:56 -------- d-----w- c:\programdata\NokiaInstallerCache
2011-10-23 13:58:58 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-10-23 13:57:59 551424 ----a-w- c:\windows\system32\samsrv.dll
2011-10-23 13:56:59 933376 ----a-w- c:\windows\system32\Vault.dll
2011-10-23 13:55:59 87552 ----a-w- c:\windows\system32\wudriver.dll
2011-10-23 13:52:21 189952 ----a-w- c:\program files\windows portable devices\sqmapi.dll
2011-10-23 13:52:20 780288 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2011-10-23 13:52:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2011-10-23 13:52:19 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2011-10-23 13:52:19 351232 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-10-23 13:51:02 189952 ----a-w- c:\windows\system32\sqmapi.dll
2011-10-23 13:51:01 697344 ----a-w- c:\windows\system32\SmiEngine.dll
2011-10-23 13:50:10 209920 ----a-w- c:\windows\system32\PkgMgr.exe
2011-10-23 13:50:10 189952 ----a-w- c:\windows\system32\wdscore.dll
2011-10-23 13:46:30 323072 ----a-w- c:\windows\system32\drvstore.dll
2011-10-23 13:46:27 257024 ----a-w- c:\windows\system32\dpx.dll
2011-10-23 13:17:16 75776 ----a-w- c:\windows\system32\psisrndr.ax
2011-10-23 13:17:16 465408 ----a-w- c:\windows\system32\psisdecd.dll
2011-10-23 13:17:15 72704 ----a-w- c:\windows\system32\Mpeg2Data.ax
2011-10-23 13:17:15 59904 ----a-w- c:\windows\system32\MSDvbNP.ax
2011-10-23 13:17:15 204288 ----a-w- c:\windows\system32\MSNP.ax
2011-10-23 13:17:08 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-10-23 13:17:08 233472 ----a-w- c:\windows\system32\oleacc.dll
2011-10-23 13:16:59 2334720 ----a-w- c:\windows\system32\win32k.sys
2011-10-23 11:56:10 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-10-23 11:56:09 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-10-23 11:56:08 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-10-23 11:56:03 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-10-23 11:56:02 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-10-23 11:56:01 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-10-23 11:55:59 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
.
==================== Find3M ====================
.
2011-10-24 14:31:41 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-10-03 03:06:03 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-03-05 21:51:46 6 ----a-w- c:\program files\common files\UnInstallCompleted.tmp
2010-03-01 17:56:21 147456 ----a-w- c:\program files\common files\osdinst.dll
.
============= FINISH: 21:24:29,53 ===============
Alvast hartelijk dank voor jullie hulp!