Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

i think im infected an hacked


  • Please log in to reply
6 replies to this topic

#1 davezino

davezino

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 07 September 2013 - 02:27 AM

my settings security settings change by them selves ,cant start services or proccesses or stop them.


Edited by hamluis, 07 September 2013 - 07:45 AM.
No logs, moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,660 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:09:10 AM

Posted 07 September 2013 - 11:23 AM

Welcome aboard p22002758.gif

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size

Click Go and post the result.

p22002970.gif Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 davezino

davezino
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 07 September 2013 - 12:14 PM

Rkill 2.6.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/07/2013 07:07:35 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\nogeenkeer\Desktop\rkill\rkill-09-07-2013-07-07-45.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 09/07/2013 07:10:04 PM
Execution time: 0 hours(s), 2 minute(s), and 29 seconds(s)



#4 davezino

davezino
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 07 September 2013 - 12:16 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by nogeenkeer (administrator) on 07-09-2013 at 18:46:22
Running from "C:\Users\nogeenkeer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RH6ZVNOI"
Microsoft Windows 7 Home Premium   (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-configuratie

De DNS-omzettingscache is leeggemaakt.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Generic Marvell Yukon 88E8071 based Ethernet Controller = LAN-verbinding (Connected)

# ----------------------------------
# IPv4-configuratie
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# Einde van IPv4-configuratie

 

Windows IP-configuratie

   Hostnaam  . . . . . . . . . . . . : nogeenkeer-PC
   Primair DNS-achtervoegsel . . . . :
   Knooppunttype . . . . . . . . . . : hybride
   IP-routering ingeschakeld . . . . : nee
   WINS-proxy ingeschakeld . . . . . : nee

Ethernet-adapter voor LAN-verbinding:

   Verbindingsspec. DNS-achtervoegsel:
   Beschrijving. . . . . . . . . . . : Generic Marvell Yukon 88E8071 based Ethernet Controller
   Fysiek adres. . . . . . . . . . . : 6C-62-6D-76-BA-51
   DHCP ingeschakeld . . . . . . . . : ja
   Autom. configuratie ingeschakeld  : ja
   Link-local IPv6-adres . . . . . . : fe80::f186:9bd1:49d9:9e99%11(voorkeur)
   IPv4-adres. . . . . . . . . . . . : 192.168.1.10(voorkeur)
   Subnetmasker. . . . . . . . . . . : 255.255.255.0
   Lease verkregen . . . . . . . . . : zaterdag 7 september 2013 16:51:12
   Lease verlopen. . . . . . . . . . : zaterdag 7 september 2013 19:21:12
   Standaardgateway. . . . . . . . . : 192.168.1.1
   DHCP-server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 241984109
   DHCPv6-client DUID. . . . . . . . : 00-01-00-01-19-BC-EE-18-6C-62-6D-76-BA-51
   DNS-servers . . . . . . . . . . . : 62.179.104.196
                                       213.46.228.196
   NetBIOS via TCPIP . . . . . . . . : ingeschakeld

Tunnel-adapter voor isatap.{816A81C8-84FF-4B88-830A-712D705B1742}:

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld
   Verbindingsspec. DNS-achtervoegsel:
   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter
   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP ingeschakeld . . . . . . . . : nee
   Autom. configuratie ingeschakeld  : ja

Tunnel-adapter voor Teredo Tunneling Pseudo-Interface:

   Verbindingsspec. DNS-achtervoegsel:
   Beschrijving. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP ingeschakeld . . . . . . . . : nee
   Autom. configuratie ingeschakeld  : ja
   IPv6-adres. . . . . . . . . . . . : 2001:0:5ef5:79fb:424:3a3d:3f57:fef5(voorkeur)
   Link-local IPv6-adres . . . . . . : fe80::424:3a3d:3f57:fef5%13(voorkeur)
   Standaardgateway. . . . . . . . . : ::
   NetBIOS via TCPIP . . . . . . . . : uitgeschakeld
Server:  ns01.upclive.nl
Address:  62.179.104.196

Naam:    google.com
Addresses:  2a00:1450:4013:c01::71
   74.125.136.113
   74.125.136.139
   74.125.136.100
   74.125.136.101
   74.125.136.138
   74.125.136.102

Pingen naar google.com [173.194.65.138] met 32 bytes aan gegevens:
Time-out bij opdracht.
Time-out bij opdracht.

Ping-statistieken voor 173.194.65.138:
    Pakketten: verzonden = 2, ontvangen = 0, verloren = 2
    (100% verlies).
Server:  ns01.upclive.nl
Address:  62.179.104.196

Naam:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pingen naar yahoo.com [98.139.183.24] met 32 bytes aan gegevens:
Time-out bij opdracht.
Time-out bij opdracht.

Ping-statistieken voor 98.139.183.24:
    Pakketten: verzonden = 2, ontvangen = 0, verloren = 2
    (100% verlies).

Pingen naar 127.0.0.1 met 32 bytes aan gegevens:
Antwoord van 127.0.0.1: bytes=32 tijd<1 ms TTL=128
Antwoord van 127.0.0.1: bytes=32 tijd<1 ms TTL=128

Ping-statistieken voor 127.0.0.1:
    Pakketten: verzonden = 2, ontvangen = 2, verloren = 0
    (0% verlies).

De gemiddelde tijd voor het uitvoeren van ‚‚n bewerking in milliseconden:
    Minimum = 0ms, Maximum = 0ms, Gemiddelde = 0ms
===========================================================================
Interfacelijst
 11...6c 62 6d 76 ba 51 ......Generic Marvell Yukon 88E8071 based Ethernet Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 routetabel
===========================================================================
Actieve routes:
Netwerkadres             Netmasker          Gateway        Interface Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.10     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.10    266
     192.168.1.10  255.255.255.255         On-link      192.168.1.10    266
    192.168.1.255  255.255.255.255         On-link      192.168.1.10    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.10    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.10    266
===========================================================================
Permanente routes:
  Geen

IPv6 routetabel
===========================================================================
Actieve routes:
 Indien metrische netwerkbestemming      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:5ef5:79fb:424:3a3d:3f57:fef5/128
                                    On-link
 11    266 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::424:3a3d:3f57:fef5/128
                                    On-link
 11    266 fe80::f186:9bd1:49d9:9e99/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
===========================================================================
Permanente routes:
  Geen
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/07/2013 06:17:26 PM) (Source: Application Hang) (User: )
Description: Het programma stpass.exe, versie 7.0.2.78 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

Proces-id: cdc

Starttijd: 01ceabe58f8e4cf8

Eindtijd: 171

Toepassingspad: C:\PROGRA~2\KASPER~1\KASPER~1.0\KASPER~2\stpass.exe

Rapport-id: f3f51b2e-17d8-11e3-82ac-6c626d76ba51

Error: (09/07/2013 05:46:04 PM) (Source: Windows Search Service) (User: )
Description: De lijst met opgenomen en uitgesloten locaties kan niet worden verwerkt door de Windows-zoekservice met de fout <30, 0x80040d07, "file:///C:\Windows\SysWOW64\">.

Error: (09/07/2013 04:54:00 PM) (Source: Application Error) (User: )
Description: Naam van toepassing met fout: stpass.exe, versie: 7.0.2.78, tijdstempel: 0x51c86136
Naam van module met fout: ntdll.dll, versie: 6.1.7600.16385, tijdstempel: 0x4a5bdb3b
Uitzonderingscode: 0xc0000005
Foutoffset: 0x00038c39
Id van proces met fout: 0x950
Starttijd van toepassing met fout: 0xstpass.exe0
Pad naar toepassing met fout: stpass.exe1
Pad naar module met fout: stpass.exe2
Rapport-id: stpass.exe3

System errors:
=============
Error: (09/07/2013 05:37:11 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: De volgende melding van een onherstelbare fout is ontvangen: 47.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB979309: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2769369: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2560656: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB979482: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2535512: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2658846: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2552343: Update voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2620704: Beveiligingsupdate voor Windows 7 voor x64-systemen.

Error: (09/07/2013 04:49:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installatiefout: de volgende update kan niet worden geïnstalleerd, foutcode 0x800706ba: KB2656410: Beveiligingsupdate voor Microsoft .NET Framework 3.5.1 op Windows 7 en Windows Server 2008 R2 voor x64-systemen.

Microsoft Office Sessions:
=========================
Error: (09/07/2013 06:17:26 PM) (Source: Application Hang)(User: )
Description: stpass.exe7.0.2.78cdc01ceabe58f8e4cf8171C:\PROGRA~2\KASPER~1\KASPER~1.0\KASPER~2\stpass.exef3f51b2e-17d8-11e3-82ac-6c626d76ba51

Error: (09/07/2013 05:46:04 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07file:///C:\Windows\SysWOW64\

Error: (09/07/2013 04:54:00 PM) (Source: Application Error)(User: )
Description: stpass.exe7.0.2.7851c86136ntdll.dll6.1.7600.163854a5bdb3bc000000500038c3995001ceabd9f2453050C:\PROGRA~2\KASPER~1\KASPER~1.0\KASPER~2\stpass.exeC:\Windows\SysWOW64\ntdll.dll542c6ada-17cd-11e3-82ac-6c626d76ba51

CodeIntegrity Errors:
===================================
  Date: 2013-09-07 18:23:28.027
  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

  Date: 2013-09-07 18:23:28.027
  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

  Date: 2013-09-07 18:23:28.012
  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

  Date: 2013-09-07 18:23:28.012
  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

=========================== Installed Programs ============================

Kaspersky PURE 3.0 (Version: 13.0.2.558)

========================= Devices: ================================

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: Teller voor Plug en Play-apparatuur
Description: Teller voor Plug en Play-apparatuur
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: swenum

Name: TCP/IP Registry Compatibility
Description: TCP/IP Registry Compatibility
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tcpipreg

Name: ACPI x64-based PC
Description: ACPI x64-based PC
Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardcomputers)
Service: \Driver\ACPI_HAL

Name: kl1
Description: kl1
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: kl1

Name: Printerpoort (LPT1)
Description: Printerpoort
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardpoorttypen)
Service: Parport

Name: UMBus Root Bus Enumerator
Description: UMBus Root Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Intel® G45/G43 Express Chipset (Microsoft Corporation - WDDM 1.1)
Description: Intel® G45/G43 Express Chipset (Microsoft Corporation - WDDM 1.1)
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: NETBT
Description: NETBT
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: Indelen als volumestuurprogramma
Description: Indelen als volumestuurprogramma
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: blbdrive

Name: Intel® ICH10 Family USB Universal Host Controller - 3A38
Description: Intel® ICH10 Family USB Universal Host Controller - 3A38
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Stuurprogramma voor ondersteuning van NetIO Legacy TDI
Description: Stuurprogramma voor ondersteuning van NetIO Legacy TDI
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tdx

Name: Microsoft Virtual Drive Enumerator-stuurprogramma
Description: Microsoft Virtual Drive Enumerator-stuurprogramma
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: vdrvroot

Name: Communicatiepoort (COM1)
Description: Communicatiepoort
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardpoorttypen)
Service: Serial

Name: Composite Bus Enumerator
Description: Composite Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: CompositeBus

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: Volumebeheer
Description: Volumebeheer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: volmgr

Name: Kaspersky Anti-Virus NDIS 6 Filter
Description: Kaspersky Anti-Virus NDIS 6 Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KLIM6

Name: Communicatiepoort (COM2)
Description: Communicatiepoort
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardpoorttypen)
Service: Serial

Name: HL-DT-ST DVDRAM GH60N
Description: Cd-rom-station
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaard cd-rom-stations)
Service: cdrom

Name: Ancillary Function Driver for Winsock
Description: Ancillary Function Driver for Winsock
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: NSI proxy service driver.
Description: NSI proxy service driver.
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: nsiproxy

Name: Algemeen volume
Description: Algemeen volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Systeemluidspreker
Description: Systeemluidspreker
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: Dynamisch Volumebeheer
Description: Dynamisch Volumebeheer
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volmgrx

Name: kltdi
Description: kltdi
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: kltdi

Name: Intel® G45/G43 Express Chipset (Microsoft Corporation - WDDM 1.1)
Description: Intel® G45/G43 Express Chipset (Microsoft Corporation - WDDM 1.1)
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx

Name: Intel® ICH10 Family USB Universal Host Controller - 3A39
Description: Intel® ICH10 Family USB Universal Host Controller - 3A39
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Beep
Description: Beep
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Beep

Name: PCI-bus
Description: PCI-bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: pci

Name: Opslagvolumes
Description: Opslagvolumes
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volsnap

Name: kneps
Description: kneps
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: kneps

Name: ACPI-vaste-functieknop
Description: ACPI-vaste-functieknop
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Systeem-CMOS/Real-timeklok
Description: Systeem-CMOS/Real-timeklok
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Null
Description: Null
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Null

Name: Algemene schaduwkopie van volume
Description: Algemene schaduwkopie van volume
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: KSecDD
Description: KSecDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecDD

Name: IPv6 ARP-stuurprogramma voor externe toegang
Description: IPv6 ARP-stuurprogramma voor externe toegang
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarpv6

Name: Performance Counters for Windows Driver
Description: Performance Counters for Windows Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: pcw

Name: Intel® ICH10R LPC Interface Controller - 3A16
Description: Intel® ICH10R LPC Interface Controller - 3A16
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: msisadrv

Name: VB0250EAVER
Description: Schijfstation
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardschijfstations)
Service: disk

Name: Algemene schaduwkopie van volume
Description: Algemene schaduwkopie van volume
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Intel® ICH10 Family USB Enhanced Host Controller - 3A3A
Description: Intel® ICH10 Family USB Enhanced Host Controller - 3A3A
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: Systeemkaart
Description: Systeemkaart
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Pentium® Dual-Core  CPU      E5500  @ 2.80GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: KSecPkg
Description: KSecPkg
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecPkg

Name: Kernel Mode Driver Frameworks service
Description: Kernel Mode Driver Frameworks service
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: Common Log (CLFS)
Description: Common Log (CLFS)
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CLFS

Name: Systeemkaart
Description: Systeemkaart
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: PEAUTH
Description: PEAUTH
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PEAUTH

Name: Systeemkaartbronnen
Description: Systeemkaartbronnen
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Link-Layer Topology Discovery Mapper I/O Driver
Description: Link-Layer Topology Discovery Mapper I/O Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: lltdio

Name: WFP Lightweight Filter
Description: WFP Lightweight Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WfpLwf

Name: CNG
Description: CNG
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CNG

Name: QoS-pakketplanner
Description: QoS-pakketplanner
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Psched

Name: Algemene schaduwkopie van volume
Description: Algemene schaduwkopie van volume
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Systeemkaartbronnen
Description: Systeemkaartbronnen
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Intel® ICH10 Family SMBus Controller - 3A30
Description: Intel® ICH10 Family SMBus Controller - 3A30
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Intel® ICH10 Family USB Enhanced Host Controller - 3A3C
Description: Intel® ICH10 Family USB Enhanced Host Controller - 3A3C
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: InfoWatch Encrypt Sector Library driver
Description: InfoWatch Encrypt Sector Library driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CSCrySec

Name: BIOS-stuurprogramma voor Microsoft Systeembeheer
Description: BIOS-stuurprogramma voor Microsoft Systeembeheer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: mssmbios

Name: Systeemkaartbronnen
Description: Systeemkaartbronnen
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Printer Poort logische interface
Description: Printer Poort logische interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn

Name: Koppelpuntbeheer
Description: Koppelpuntbeheer
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: Systeemkaartbronnen
Description: Systeemkaartbronnen
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: InfoWatch Virtual Disk driver
Description: InfoWatch Virtual Disk driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CSVirtualDiskDrv

Name: Algemene schaduwkopie van volume
Description: Algemene schaduwkopie van volume
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: Pentium® Dual-Core  CPU      E5500  @ 2.80GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Systeemkaartbronnen
Description: Systeemkaartbronnen
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Autorisatiestuurprogramma van Windows Firewall
Description: Autorisatiestuurprogramma van Windows Firewall
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv

Name: WAN-minipoort (L2TP)
Description: WAN-minipoort (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: Generic Marvell Yukon 88E8071 based Ethernet Controller
Description: Generic Marvell Yukon 88E8071 based Ethernet Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Marvell
Service: yukonw7

Name: RDP Encoder Mirror Driver
Description: RDP Encoder Mirror Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPENCDD

Name: Intel® ICH10 Family USB Universal Host Controller - 3A34
Description: Intel® ICH10 Family USB Universal Host Controller - 3A34
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Numerieke-gegevensprocessor
Description: Numerieke-gegevensprocessor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: High Definition Audio-besturing
Description: High Definition Audio-besturing
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: WAN-minipoort (Network Monitor)
Description: WAN-minipoort (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Reflector Display Driver used to gain access to graphics data
Description: Reflector Display Driver used to gain access to graphics data
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPREFMP

Name: System Attribute Cache
Description: System Attribute Cache
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: discache

Name: ACPI-aan/uit-knop
Description: ACPI-aan/uit-knop
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Microsoft Windows Beheerinterface voor ACPI
Description: Microsoft Windows Beheerinterface voor ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: WmiAcpi

Name: WAN-minipoort (IP)
Description: WAN-minipoort (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Link-Layer Topology Discovery Responder
Description: Link-Layer Topology Discovery Responder
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: rspndr

Name: LDDM Graphics Subsystem
Description: LDDM Graphics Subsystem
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: DXGKrnl

Name: Intel® 82801 PCI Bridge - 244E
Description: Intel® 82801 PCI Bridge - 244E
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Intel® ICH10 Family USB Universal Host Controller - 3A35
Description: Intel® ICH10 Family USB Universal Host Controller - 3A35
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Microsoft PS/2-muis
Description: Microsoft PS/2-muis
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt

Name: Intel® ICH10 Family PCI Express Root Port 1 - 3A40
Description: Intel® ICH10 Family PCI Express Root Port 1 - 3A40
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: UMBus Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: WAN-minipoort (IPv6)
Description: WAN-minipoort (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Intel® 82802 Firmware-hubapparaat
Description: Intel® 82802 Firmware-hubapparaat
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Security Driver
Description: Security Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: secdrv

Name: ACPI-thermale zone
Description: ACPI-thermale zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: WAN-minipoort (PPPOE)
Description: WAN-minipoort (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: Programmeerbare interruptcontroller
Description: Programmeerbare interruptcontroller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: ACPI-thermale zone
Description: ACPI-thermale zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: msisadrv
Description: msisadrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: msisadrv

Name: Intel® ICH8R/ICH9R/ICH10R SATA RAID-controller
Description: Intel® ICH8R/ICH9R/ICH10R SATA RAID-controller
Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: iaStorV

Name: Intel® ICH10 Family USB Universal Host Controller - 3A36
Description: Intel® ICH10 Family USB Universal Host Controller - 3A36
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Intel® ICH10 Family PCI Express Root Port 2 - 3A42
Description: Intel® ICH10 Family PCI Express Root Port 2 - 3A42
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: WAN-minipoort (PPTP)
Description: WAN-minipoort (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: Systeemtimer
Description: Systeemtimer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Systeem dat voldoet aan Microsoft ACPI
Description: Systeem dat voldoet aan Microsoft ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: ACPI

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: WAN-minipoort (SSTP)
Description: WAN-minipoort (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp

Name: Algemeen PnP-beeldscherm
Description: Algemeen PnP-beeldscherm
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standaardbeeldschermtypen)
Service: monitor

Name: Gebeurtenistimer met hoge precisie
Description: Gebeurtenistimer met hoge precisie
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Filterstuurprogramma Bitlocker-stationsvergrendeling
Description: Filterstuurprogramma Bitlocker-stationsvergrendeling
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: fvevol

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: NDIS-systeemstuurprogramma
Description: NDIS-systeemstuurprogramma
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: Toetsenbordstuurprogramma voor Terminal Server
Description: Toetsenbordstuurprogramma voor Terminal Server
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: TermDD

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: Intel® 4 Series Chipset Processor to I/O Controller - 2E20
Description: Intel® 4 Series Chipset Processor to I/O Controller - 2E20
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Controller voor directe geheugentoegang
Description: Controller voor directe geheugentoegang
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service:

Name: Intel® ICH10 Family USB Universal Host Controller - 3A37
Description: Intel® ICH10 Family USB Universal Host Controller - 3A37
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbuhci

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: USB-hoofdhub
Description: USB-hoofdhub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standaard USB Host Controller)
Service: usbhub

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: High Definition Audio-apparaat
Description: High Definition Audio-apparaat
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService

Name: Stuurprogramma voor TCP/IP-protocol
Description: Stuurprogramma voor TCP/IP-protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Tcpip

Name: Muisstuurprogramma voor Terminal Server
Description: Muisstuurprogramma voor Terminal Server
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardsysteemapparaten)
Service: TermDD

Name: Hardware Policy Driver
Description: Hardware Policy Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: hwpolicy

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling-adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Standaard-PS/2-toetsenbord
Description: Standaard-PS/2-toetsenbord
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (standaardtoetsenbord)
Service: i8042prt

========================= Memory info: ===================================

Percentage of memory in use: 89%
Total physical RAM: 4061.13 MB
Available physical RAM: 431.91 MB
Total Pagefile: 8120.41 MB
Available Pagefile: 3522.82 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.79 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:232.54 GB) (Free:208.42 GB) NTFS

========================= Users: ========================================

Gebruikersaccounts voor \\NOGEENKEER-PC

Administrator            Gast                     nogeenkeer              
De opdracht is voltooid.

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

07-09-2013 14:25:31 Windows Update
07-09-2013 14:29:31 Windows Update
07-09-2013 14:47:53 Windows Update
07-09-2013 16:00:52 Windows Update

**** End of log ****



#5 davezino

davezino
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 07 September 2013 - 12:17 PM

Farbar Service Scanner Version: 05-09-2013
Ran by nogeenkeer (administrator) on 07-09-2013 at 18:55:51
Running from "C:\Users\nogeenkeer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D4V2MALA"
Microsoft Windows 7 Home Premium   (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Attempt to access Google.com returned error: Google.com is offline
Attempt to access Yahoo.com returned error: Yahoo.com is offline

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2009-07-14 01:25] - [2009-07-14 03:45] - 1898576 ____A (Microsoft Corporation) 912107716BAB424C7870E8E6AF5E07E1

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****


 Results of screen317's Security Check version 0.99.73 
 Windows 7  x64 (UAC is enabled) 
 Out of date service pack!!
``````````````Antivirus/Firewall Check:``````````````
Kaspersky PURE 3.0  
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
````````Process Check: objlist.exe by Laurent```````` 
 Windows Defender MSASCui.exe
 Windows Defender MSASCui.exe  
 Kaspersky Lab Kaspersky PURE 3.0 avp.exe 
 Kaspersky Lab Kaspersky PURE 3.0 klwtblfs.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 16% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 



#6 davezino

davezino
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:10 PM

Posted 07 September 2013 - 12:21 PM

what can i do now?



#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,660 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:09:10 AM

Posted 07 September 2013 - 12:22 PM

I still need MBAM and MBAR logs.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users