HiJackThis - er der noget at komme efter?

Kan man stole på den i 64 bit system??

f-arn har gjort mig opmærksom på det og her er loggen fra HJT 2.0.4 og den er da 64 bit kompatibel?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:42:48, on 25-02-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Users\Peter Stidsen\Local Settings\Apps\F.lux\flux.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BumpTop\BumpTop.exe
C:\Users\Peter Stidsen\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler.exe
C:\Program Files (x86)\Secunia PSI\psi_tray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe
C:\Program Files (x86)\BumpTop\TexHelper.exe
C:\Program Files (x86)\BumpTop\TexHelper.exe
C:\Users\Peter Stidsen\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\Loader.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\TBConsoleUI.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\TbService.exe
C:\Users\Peter Stidsen\Desktop\Ny mappe\Ny mappe\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mobafire.com/league-of-legends/build/dat-tank-blitz-123053
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Hjælp til logon til Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~2\TEXTware\QUICKF~1\PlugIns\IEHelp.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [OOTag] C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [F.lux] "C:\Users\Peter Stidsen\Local Settings\Apps\F.lux\flux.exe" /noshow
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peter Stidsen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETVÆRKSTJENESTE')
O4 - Startup: Dropbox.lnk = C:\Users\Peter Stidsen\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: opera.exe.lnk = C:\Program Files (x86)\Opera\opera.exe
O4 - Startup: ScreenHunter 5.1 Free.lnk = C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe
O4 - Startup: Skype  (2).lnk = C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - Startup: SyncToy 2.1(x64).lnk = ?
O4 - Startup: Windows Live Mail.lnk = C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
O4 - Startup: Windows Media Player.lnk = ?
O4 - Global Startup: BumpTop.lnk = C:\Program Files (x86)\BumpTop\BumpTop.exe
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia PSI\psi_tray.exe
O4 - Global Startup: WD Quick View.lnk = C:\Program Files\Western Digital\WD SmartWare\WDDMStatus.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: Blog det - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - (no file)
O9 - Extra 'Tools' menuitem: &Blog det i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: BgGamingMonitor.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\BlueSoleil\BlueSoleilCS.exe
O23 - Service: Bonjour tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BullGuard Behavioural Detection (BsBhvScan) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - IVT Corporation - C:\Program Files (x86)\BlueSoleil\BsMobileCS.exe
O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: EaseUS Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS Todo Backup\bin\Agent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Guard Agent - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS Todo Backup\bin\GuardAgent.exe
O23 - Service: Tjenesten Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Tjeneste (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) - Unknown owner - C:\Program Files\Reflect\ReflectService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia PSI\sua.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SetupARService - Realtek Semiconductor. - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
O23 - Service: WDFMEService - Western Digital  - C:\Program Files\Western Digital\WD SmartWare\WDFME.exe
O23 - Service: WDRulesService - Western Digital  - C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15266 bytes

Næ - for at citere mig selv ->



Hvorfor tror du der står alle de

pstidsen, brug DDS i stedet.
Hent DDS og gem programmet på dit Skrivebord:
http://download.bleepingcomputer.com/sUBs/dds.scr
Dobbeltklik på DDS.scr og tillad programmet at køre.
Når programmet er færdig vil det åbne to logs/tekst-filer.

Gem begge filer på dit Skrivebord og kopier indholdet af DDS txt filen herind.

Vejledning fundet i andet spørgsmål.
F-arn er en ørn til DDS - jeg lurer bare med :)

#3: Mærkelige karise har analyseret min HJT før..

Nånå her er en DDS:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421  BrowserJavaVersion: 1.6.0_31
Run by Peter Stidsen at 19:54:48 on 2012-02-25
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.45.1030.18.4091.992 [GMT 1:00]
.
AV: BullGuard Antivirus *Enabled/Updated* {504FFF66-3028-EB7E-2E60-62B19ADD791C}
SP: BullGuard Antispyware *Enabled/Updated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: BullGuard Firewall *Enabled* {68747E43-7A47-EA26-053F-CB84640E3E67}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\atieclxx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\System32\SvcHost.exe -k BullGuard_Backup
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy
C:\Windows\System32\SvcHost.exe -k BullGuard_Main
C:\Program Files (x86)\BlueSoleil\BsMobileCS.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\Agent.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\GuardAgent.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files\Reflect\ReflectService.exe
C:\Program Files (x86)\Secunia PSI\PSIA.exe
C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\Western Digital\WD SmartWare\WDDMService.exe
C:\Program Files\Western Digital\WD SmartWare\WDRulesEngine.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\System32\SvcHost.exe -k BullGuard
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\BlueSoleil\BsHelpCS.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Users\Peter Stidsen\Local Settings\Apps\F.lux\flux.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BumpTop\BumpTop.exe
C:\Users\Peter Stidsen\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler.exe
C:\Program Files (x86)\Secunia PSI\psi_tray.exe
C:\Users\Peter Stidsen\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler64.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files\SyncToy 2.1\SyncToy.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Secunia PSI\sua.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe
C:\Program Files (x86)\BumpTop\TexHelper.exe
C:\Program Files (x86)\BumpTop\TexHelper.exe
C:\Users\Peter Stidsen\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\Loader.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\TBConsoleUI.exe
C:\Windows\explorer.exe
C:\Windows\System32\vds.exe
C:\Program Files (x86)\EaseUS Todo Backup\bin\TbService.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Bar = Preserve
uStart Page = hxxp://www.mobafire.com/league-of-legends/build/dat-tank-blitz-123053
uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5551g&r=27360811a125l04h4z1i5t4572l48p
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe,
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Hjælp til logon til Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: QUICKfind BHO Object: {c08df07a-3e49-4e25-9ab0-d3882835f153} - C:\PROGRA~2\TEXTware\QUICKF~1\PlugIns\IEHelp.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
uRun: [F.lux] "C:\Users\Peter Stidsen\Local Settings\Apps\F.lux\flux.exe" /noshow
uRun: [Google Update] "C:\Users\Peter Stidsen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [OOTag] C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Peter Stidsen\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPERAE~1.LNK - C:\Program Files (x86)\Opera\opera.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SCREEN~2.LNK - C:\Program Files (x86)\Wisdom-soft ScreenHunter 5 Free\ScreenHunter.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SKYPE(~1.LNK - C:\Program Files (x86)\Skype\Phone\Skype.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SYNCTO~1.LNK - C:\Windows\Installer\{88DAAF05-5A72-46D2-A7C5-C3759697E943}\_6FEFF9B68218417F98F549.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\WINDOW~1.LNK - C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
StartupFolder: C:\Users\PETERS~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\WINDOW~2.LNK - C:\Program Files (x86)\Windows Media Player\wmplayer.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BumpTop.lnk - C:\Program Files (x86)\BumpTop\BumpTop.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia PSI\psi_tray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WDQUIC~1.LNK - C:\Program Files (x86)\Western Digital\WD SmartWare\WDDMStatus.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC}
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
IE: {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
LSP: C:\Windows\system32\BGLsp.dll
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: Interfaces\{61CA6824-5BAB-4785-A1D9-120EBE057596} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{61CA6824-5BAB-4785-A1D9-120EBE057596}\8454441444D4F46464 : DhcpNameServer = 80.208.157.41 194.239.134.83
TCP: Interfaces\{61CA6824-5BAB-4785-A1D9-120EBE057596}\C696E6B6379737 : DhcpNameServer = 193.162.153.164 194.239.134.83
TCP: Interfaces\{61CA6824-5BAB-4785-A1D9-120EBE057596}\C696E6B6379737F5F475F51373433353 : DhcpNameServer = 193.162.153.164 194.239.134.83
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: BgGamingMonitor.dll
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{C08DF07A-3E49-4E25-9AB0-D3882835F153}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB-X64: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
mRun-x64: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun-x64: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun-x64: [OOTag] C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe
mRun-x64: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
AppInit_DLLs-X64: BgGamingMonitor.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Peter Stidsen\AppData\Roaming\Mozilla\Firefox\Profiles\pyg92slp.default\
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?AF=100490&babsrc=HP_ss&mntrId=a80ae5660000000000002217c4f53356
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100490&babsrc=adbartrp&mntrId=a80ae5660000000000002217c4f53356&q=
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.68\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll
FF - plugin: C:\Users\Peter Stidsen\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\system32\DRIVERS\amd_sata.sys --> C:\Windows\system32\DRIVERS\amd_sata.sys [?]
R0 amd_xata;amd_xata;C:\Windows\system32\DRIVERS\amd_xata.sys --> C:\Windows\system32\DRIVERS\amd_xata.sys [?]
R0 BtHidBus;Bluetooth HID Bus Service;C:\Windows\system32\Drivers\BtHidBus.sys --> C:\Windows\system32\Drivers\BtHidBus.sys [?]
R0 EUBAKUP;EUBAKUP;C:\Windows\system32\drivers\eubakup.sys --> C:\Windows\system32\drivers\eubakup.sys [?]
R0 EUBKMON;EUBKMON;C:\Windows\system32\drivers\EUBKMON.sys --> C:\Windows\system32\drivers\EUBKMON.sys [?]
R0 hotcore3;hc3ServiceName;C:\Windows\system32\DRIVERS\hotcore3.sys --> C:\Windows\system32\DRIVERS\hotcore3.sys [?]
R1 AFW;Agnitum Firewall Driver;C:\Windows\system32\DRIVERS\afw.sys --> C:\Windows\system32\DRIVERS\afw.sys [?]
R1 BdSpy;BdSpy;C:\Windows\system32\DRIVERS\BdSpy.sys --> C:\Windows\system32\DRIVERS\BdSpy.sys [?]
R1 EUDSKACS;EUDSKACS;\??\C:\Windows\system32\drivers\eudskacs.sys --> C:\Windows\system32\drivers\eudskacs.sys [?]
R1 EUFDDISK;EUFDDISK;\??\C:\Windows\system32\drivers\EuFdDisk.sys --> C:\Windows\system32\drivers\EuFdDisk.sys [?]
R1 NovaShieldFilterDriver;NovaShieldFilterDriver;C:\Windows\system32\DRIVERS\NSKernel.sys --> C:\Windows\system32\DRIVERS\NSKernel.sys [?]
R1 NovaShieldTDIDriver;NovaShieldTDIDriver;C:\Windows\system32\DRIVERS\NSNetmon.sys --> C:\Windows\system32\DRIVERS\NSNetmon.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-9-8 361984]
R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]
R2 BsBackup;BullGuard backup service;C:\Windows\System32\SvcHost.exe -k BullGuard_Backup [2009-7-14 20992]
R2 BsBhvScan;BullGuard Behavioural Detection;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2012-2-17 341344]
R2 BsFileScan;BullGuard on-access service;C:\Windows\System32\SvcHost.exe -k BullGuard [2009-7-14 20992]
R2 BsFire;BullGuard firewall service;C:\Windows\System32\SvcHost.exe -k BullGuard [2009-7-14 20992]
R2 BsMailProxy;BullGuard e-mail monitoring service;C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy [2009-7-14 20992]
R2 BsMain;BullGuard main service;C:\Windows\System32\SvcHost.exe -k BullGuard_Main [2009-7-14 20992]
R2 BsMobileCS;BsMobileCS;C:\Program Files (x86)\BlueSoleil\BsMobileCS.exe [2011-11-7 147563]
R2 BsScanner;BullGuard scanning service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2012-2-17 196960]
R2 BsUpdate;BullGuard update service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2012-2-17 356192]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-4-12 325200]
R2 EaseUS Agent;EaseUS Agent;C:\Program Files (x86)\EaseUS Todo Backup\bin\Agent.exe [2011-11-18 60552]
R3 afwcore;afwcore;C:\Windows\system32\DRIVERS\afwcore.sys --> C:\Windows\system32\DRIVERS\afwcore.sys [?]
R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 BTCOMBUS;Bluetooth Serial Port Bus Service;C:\Windows\system32\Drivers\btcombus.sys --> C:\Windows\system32\Drivers\btcombus.sys [?]
R3 btnetBUs;Bluetooth PAN Bus Service;C:\Windows\system32\Drivers\btnetBus.sys --> C:\Windows\system32\Drivers\btnetBus.sys [?]
R3 IvtBtBUs;IVT Bluetooth Bus Service;C:\Windows\system32\Drivers\IvtBtBus.sys --> C:\Windows\system32\Drivers\IvtBtBus.sys [?]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys --> C:\Windows\system32\DRIVERS\k57nd60a.sys [?]
R3 PSI;PSI;C:\Windows\system32\DRIVERS\psi_mf.sys --> C:\Windows\system32\DRIVERS\psi_mf.sys [?]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys --> C:\Windows\system32\DRIVERS\usbfilter.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]
S3 BTCOM;Bluetooth Serial port driver;C:\Windows\system32\DRIVERS\btcomport.sys --> C:\Windows\system32\DRIVERS\btcomport.sys [?]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2011-10-10 14216]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2011-10-10 8456]
S3 PSMounter;Macrium Reflect Image Explorer Service;\??\C:\Windows\system32\drivers\psmounter.sys --> C:\Windows\system32\drivers\psmounter.sys [?]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?]
S3 S6000KNT;S6000KNT_WebCam Driver;C:\Windows\system32\Drivers\S6000KNT.sys --> C:\Windows\system32\Drivers\S6000KNT.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
.
=============== Created Last 30 ================
.
2012-02-25 17:40:51    388096    ----a-r-    C:\Users\Peter Stidsen\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-02-25 16:54:00    476904    ----a-w-    C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
2012-02-25 16:42:00    331908    ----a-w-    C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2012-02-25 16:29:36    --------    d-----w-    C:\Program Files (x86)\SlimDrivers
2012-02-25 15:44:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{8C305D19-4ABE-4872-8BC0-D48AD540A1D6}
2012-02-25 15:43:42    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{38E52C51-8E27-4AB1-8B1F-6F2218C1790D}
2012-02-25 08:33:14    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{2EA1263C-1969-4AE7-8AC8-B7E3E3DF63F1}
2012-02-25 08:33:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D88E01D7-4898-4E66-9982-EC2646CBC048}
2012-02-25 08:32:12    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5C4F1696-E86F-4F27-847F-C4731303FF46}
2012-02-25 08:31:47    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{2EC637E2-FB84-4885-BC2D-9A54668FA1C7}
2012-02-24 20:16:40    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{947A5ACD-499D-4C5E-BF2B-B7722AC150B3}
2012-02-24 20:16:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0A694B41-6F7B-4F04-9782-1E45BDC15D7F}
2012-02-24 20:16:20    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{51B13F93-427D-4AEA-8849-31DCA02DA5FD}
2012-02-24 20:16:09    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5C585D93-C37D-4D7B-BD2D-370094B2CFF6}
2012-02-24 07:22:31    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5EF9376E-985F-4147-B2B8-AC4A116CFE77}
2012-02-24 07:22:19    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{79BBB899-267F-4905-A13D-F0C45EC6BCA1}
2012-02-24 07:22:09    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{56B96F44-B6F1-4A3E-A236-E5AF998D89DA}
2012-02-24 07:21:56    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{177AEE4B-D4DE-4295-A8B0-83DC6AA48DBA}
2012-02-23 09:34:38    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0DC48ED0-E430-4F2F-BABF-29E959D328F4}
2012-02-23 09:34:26    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C37B73CE-9D15-4CF0-8930-97514A8D7684}
2012-02-23 09:34:15    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{22E35751-C22F-416F-AB9B-A0B913F73860}
2012-02-23 09:34:03    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{4F02E9F3-CD05-4B17-B3C4-C0ADBB93597B}
2012-02-22 21:09:13    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{77ABD3D4-D742-4FBE-A5C9-F92B3BD2D043}
2012-02-22 21:09:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CDEA9C73-57BA-4936-B708-0F122889FCDA}
2012-02-22 21:08:50    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7DB94BDC-57F3-4B08-AE0B-CC0FBF0610B3}
2012-02-22 21:08:37    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F2DE2184-0EE2-4598-A095-FF24B4D21EB9}
2012-02-22 09:04:12    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{35B4BD1D-92FF-4E13-9EEF-B0B304CE3477}
2012-02-22 09:04:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5D69002D-BE4B-4609-ACF4-E581F612B784}
2012-02-22 09:03:52    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A255F6BC-93C1-4B7C-9DAF-621AB340A22A}
2012-02-22 09:03:42    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6A30A7D1-8810-4886-BAB2-64AADFF094A5}
2012-02-21 21:03:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{436E5DF7-FCB3-4C70-A6C9-B1E5BBB73293}
2012-02-21 21:03:21    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{31AAFD2E-FADE-4DDD-8512-C4E24AB38BFA}
2012-02-21 21:03:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6E8D4479-8B70-4D16-8E17-A51E29E80995}
2012-02-21 21:02:55    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{925FE433-6B1B-4155-B53C-F7B9CEF42985}
2012-02-21 08:40:01    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{39FF39B9-D710-4EF9-8EBB-EED168607637}
2012-02-21 08:39:51    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{150E7AF2-E676-4C99-931B-DD207DDF0EA9}
2012-02-21 08:39:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{179433A2-233B-46C5-B472-1EAACE172D3C}
2012-02-20 19:30:18    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{E87B54D2-A4CD-433D-835E-74513CD98C91}
2012-02-20 19:30:08    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{1D267469-1247-46BC-9C4B-408617CA0410}
2012-02-20 19:29:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0BEE31CC-CD2A-4EEE-8836-3C98A87FD115}
2012-02-20 19:29:36    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B77AA0EF-DE4D-45DB-A255-ACB1DF8BDC67}
2012-02-20 07:29:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{BE884A57-C8AC-4157-92B7-7F1E86D4F26A}
2012-02-20 07:28:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{E50851CB-AD0D-4C0A-82E6-FF8C1F2A737C}
2012-02-20 07:28:13    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{16DC3EF4-311C-4FD0-8E8C-39D8D6137263}
2012-02-19 09:43:18    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{DF5A80AD-2BD6-45AE-9055-075C6E2BA3CB}
2012-02-19 09:42:54    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B4BE7BB6-4106-4C5B-981B-38FD8EDE1C5A}
2012-02-19 09:42:23    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7618E588-601D-4D1C-9086-3B44BA5A1E7F}
2012-02-18 17:26:35    --------    d-----w-    C:\Program Files\Image Resizer for Windows
2012-02-18 17:26:35    --------    d-----w-    C:\Program Files (x86)\Image Resizer for Windows
2012-02-18 17:26:19    --------    d-----w-    C:\ProgramData\Package Cache
2012-02-18 17:09:15    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{68A5B908-4057-47EB-8C2F-E399F6E19B9A}
2012-02-18 17:09:04    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{36C0CB63-0387-48C3-A1C9-78B2906B0B80}
2012-02-18 17:08:54    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{3B8A1EC6-B34A-4408-B0AA-15855D29E63C}
2012-02-17 11:59:20    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{8D99BA89-C0C5-4BF8-A1AA-7CC9535E0CE6}
2012-02-17 11:59:08    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{06B9911C-9E7A-4254-9159-22777625FCFA}
2012-02-17 11:58:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{22D42977-64F6-44E3-A4FB-5124F6041F89}
2012-02-17 11:58:46    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C3B80793-0478-48CA-834C-CCA4A5B1CAA2}
2012-02-16 23:15:33    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7D72E378-A8D1-4403-AF25-5DDEB38F7DE1}
2012-02-16 23:15:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7CE58F7A-5D04-4CC1-ADDD-0E7D03FE301F}
2012-02-16 23:15:05    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7B1A0D51-2F10-4EB4-86EB-88CD27545DD7}
2012-02-16 23:14:53    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A7E17E89-BF98-4144-AC1A-31653AC3055B}
2012-02-16 15:40:03    509952    ----a-w-    C:\Windows\System32\ntshrui.dll
2012-02-16 15:40:03    442880    ----a-w-    C:\Windows\SysWow64\ntshrui.dll
2012-02-16 15:39:55    498688    ----a-w-    C:\Windows\System32\drivers\afd.sys
2012-02-16 15:39:54    515584    ----a-w-    C:\Windows\System32\timedate.cpl
2012-02-16 15:39:54    478720    ----a-w-    C:\Windows\SysWow64\timedate.cpl
2012-02-16 15:39:51    690688    ----a-w-    C:\Windows\SysWow64\msvcrt.dll
2012-02-16 15:39:51    634880    ----a-w-    C:\Windows\System32\msvcrt.dll
2012-02-16 15:39:50    3145728    ----a-w-    C:\Windows\System32\win32k.sys
2012-02-16 11:13:59    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{005F5DE6-86F1-46D0-B48D-A397642537BF}
2012-02-16 11:13:45    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{66C13322-6AC6-4C72-8164-7E11F4C4996A}
2012-02-15 21:26:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B9EEC106-2862-4855-B7E6-2F8BC1B9BCF7}
2012-02-15 21:26:12    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{DE08C4FD-39B9-4822-8B58-AB6D1F6427CA}
2012-02-15 21:26:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D3B01AAD-7882-4407-9CF3-05D0BFA47EA3}
2012-02-15 21:25:41    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CB3C9AE5-51D3-48E4-9057-B4469CE7D873}
2012-02-15 14:41:29    --------    d-----w-    C:\ProgramData\IObit
2012-02-15 14:41:28    --------    d-----w-    C:\Program Files (x86)\Game Booster 3
2012-02-15 09:25:19    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{9AE52B19-E897-4852-8DB4-1A6BD117F93E}
2012-02-15 09:24:53    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{29D12961-4EDC-4AC5-B2E4-ACD8B973A49D}
2012-02-14 21:24:28    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{4A3A5058-2F91-454F-9247-D01C15656A82}
2012-02-14 21:24:17    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{8144F365-C3FF-4D7F-951C-DC5A38B43E18}
2012-02-14 21:24:07    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{197D858F-7036-4E16-ABB3-57448EDB5494}
2012-02-14 21:23:49    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{26AB3F09-AE74-4B4E-8D60-1D8CDB1DBB20}
2012-02-14 09:09:15    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{20512D1B-61A2-4746-B03D-B287B048B93E}
2012-02-14 09:08:54    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5B3F7447-B93E-40ED-A88A-133492399997}
2012-02-14 09:05:16    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A9E3BF37-16B5-4FB5-B4A8-DA3FE82DFECB}
2012-02-12 22:55:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0F96647A-87AE-47C0-8881-AAE8C116A5EA}
2012-02-12 22:55:47    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D010DBD4-5306-4A74-8DBB-6E90EEBF542E}
2012-02-12 22:55:37    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5736F885-E8BA-4A84-9DA2-161B9B0330C9}
2012-02-12 22:55:14    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C4BCD458-38ED-448C-8BD9-9305A280BA36}
2012-02-12 16:03:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Roaming\DVDVideoSoft
2012-02-12 16:03:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Roaming\DVDVideoSoftIEHelpers
2012-02-12 10:55:02    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{643CB811-AF8E-4BB9-A80F-670F6C120897}
2012-02-12 10:54:51    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5FF29A8A-3C44-4E4E-9056-5E88FCF01AB5}
2012-02-12 10:54:32    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{833EC21D-C1E3-43AB-A0A3-F770E5DCF7B1}
2012-02-12 10:54:05    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{75753089-CB98-4BEA-BD79-00CCF5006ABA}
2012-02-11 15:03:46    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\Apps
2012-02-11 11:21:21    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{AC8E6211-94F2-4153-8B8A-39C9CD452087}
2012-02-11 11:21:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{9EA376AA-0990-49BC-8296-81BE3AEC2955}
2012-02-11 11:20:57    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0F0CA93C-1A12-4D6E-B6FF-E5F8E44562C8}
2012-02-11 11:20:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{AECF0212-7665-4E46-9729-F76DF49CA958}
2012-02-10 21:03:49    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6C0F7C29-D7E5-4F35-8FF3-B284D6F1159B}
2012-02-10 21:03:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0994EA79-35A1-459A-913F-EFB6A6F6EA10}
2012-02-10 21:03:29    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{053ABC63-5CEC-43F7-B16D-41AE5824BCC4}
2012-02-10 21:03:17    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6041C8E7-2235-4D05-87D3-67AC7F3B7C23}
2012-02-10 08:42:55    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{32E54132-6FB6-435A-9FB7-A24D6F1873CD}
2012-02-10 08:42:34    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A09DECB4-4E3E-4DC4-8AAC-80FCDAC56E37}
2012-02-10 08:38:56    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F628A7EE-71EC-49CC-8748-F62498A6CFE2}
2012-02-09 11:14:36    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5FE4A02F-A086-4BE4-92E9-F39572959491}
2012-02-09 11:14:26    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{241B46AF-686D-40D0-8D0D-3063BCBAB6D4}
2012-02-09 11:14:17    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{2D9011A5-0E21-495D-AB7E-D3FB0A3B60B7}
2012-02-09 11:14:06    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{3D490304-7B33-45BD-9907-0F8D67A3C370}
2012-02-08 19:57:03    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7E87E507-18F0-41F1-8C9E-9FDC47DC6571}
2012-02-08 19:56:53    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{E3D2FFA1-5BCB-48DE-85B1-D0F9036529BF}
2012-02-08 19:56:43    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D7A4D572-C4A3-48E3-8446-67907A37EA70}
2012-02-08 19:56:31    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A2BA1F16-575A-4120-856F-36AE138946B7}
2012-02-08 07:25:07    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{16E29783-1FCD-4C78-A7B0-6EC6070ECAE9}
2012-02-08 07:24:57    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{8B353491-4F6D-453F-B477-7F30550FD83B}
2012-02-08 07:24:47    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{182082A7-D720-466E-9106-072FF3F012CC}
2012-02-08 07:24:37    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{163F9680-9A8F-4DFF-9617-3C5E7A53305B}
2012-02-07 09:39:32    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{BCE224D9-7F4D-4D9E-BBB1-58C992A6FD9A}
2012-02-07 09:39:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{FDC66487-038C-4A2D-A36C-3396FD164821}
2012-02-07 09:39:13    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{648B1098-F37E-45DD-8D35-8DB6026BAFE3}
2012-02-07 09:39:03    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D0A6E090-2FBB-459B-BDCD-FBF4055F2258}
2012-02-06 21:26:21    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0C0212E2-731D-4F81-8011-EEE1C3FC590F}
2012-02-06 21:26:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{BC1699CA-DF96-46D9-89EA-58F698A0B622}
2012-02-06 21:26:01    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CEBFC87F-D5CF-4F48-8313-FE7440BA0077}
2012-02-06 21:25:50    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C438F260-A0E0-4EE8-8115-807EAEADB591}
2012-02-06 15:01:42    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\Western_Digital
2012-02-06 08:42:24    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5BCBFCBD-246C-4C49-B275-8849E7839D71}
2012-02-06 08:41:55    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{81C517EC-77E1-4D3D-8593-2312279D30FC}
2012-02-06 08:41:32    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{2006F04E-438F-4B46-9FAD-6CD7F4020098}
2012-02-05 20:41:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{53982830-230A-4C02-AC76-8ADAEEF56D90}
2012-02-05 20:41:01    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B2182F7F-1796-40BF-A3A9-F23A442F45B1}
2012-02-05 20:40:51    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{80F08090-11F4-4A0A-90B3-654019E79A1B}
2012-02-05 20:40:29    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{9F0452A4-FE59-4824-BA41-48B4933E6461}
2012-02-05 16:30:19    --------    d-----r-    C:\Program Files (x86)\Skype
2012-02-05 08:40:05    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B4229193-47A7-4C85-B884-04B557BA4E9A}
2012-02-05 08:39:43    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{25A9E555-5E5B-4213-883C-67236D5EE7EB}
2012-02-05 08:34:45    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{AA8737A0-F7A5-43B7-9FC7-A26723C949EB}
2012-02-04 09:55:13    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F605D717-A7E8-4FFA-B49E-FB7EE9CA4818}
2012-02-04 09:54:41    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CA4A4B6C-69F2-44A8-BA9A-F3B638CEB615}
2012-02-03 22:26:41    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7CEF02E7-00AE-49CA-8074-B3F7BE0B46CA}
2012-02-03 11:09:12    --------    d-----w-    C:\Program Files\League of Legends
2012-02-03 10:36:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\PMB Files
2012-02-03 10:36:37    --------    d-----w-    C:\ProgramData\PMB Files
2012-02-03 10:19:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0DEF2244-0F29-4C88-A285-1816CDAACBA2}
2012-02-03 10:19:48    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D04A0BBE-837A-4608-A1A6-36BC43BC0CB2}
2012-02-03 10:15:42    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{BCC739E3-8949-4B9B-98F6-912CF1441B84}
2012-02-03 09:13:36    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6F1E9CD9-3CF4-4C5F-BFFA-B11D047FD1FE}
2012-02-03 09:13:27    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F01AE2F3-D134-4A2B-9FC0-B3FD1B153F0D}
2012-02-03 09:13:18    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{FA96BE3E-81D3-46B7-AC2E-C6BD0557D657}
2012-02-03 09:13:08    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{6943A4A4-CFDE-404E-964F-2F9C13CEA28E}
2012-02-02 21:04:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7FDC39FC-A1F9-4A8D-9BC8-86A42D5A8278}
2012-02-02 21:04:48    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{361A6718-A9AE-4132-82B8-B7F0ABF7E3CF}
2012-02-02 21:04:38    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F78F4017-C50E-4D11-AE79-B978FD806647}
2012-02-02 21:04:17    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D9119BF2-54CD-41EC-B54F-97D1B4C07258}
2012-02-02 09:04:05    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5A75A916-CE60-424B-9E25-BA3128E02494}
2012-02-02 09:03:56    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{05AC7724-32CE-4E8D-AC09-9F7FDABA9A17}
2012-02-02 09:03:46    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{35C974E7-2AAA-4E1E-A12D-98E10440F9F6}
2012-02-02 09:03:33    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7FA48088-05E1-4A58-94D3-BBF27B2FB2CF}
2012-02-01 21:03:19    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{3B9A9FD7-EE1F-400B-A4F6-7C5B1215A137}
2012-02-01 21:03:09    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{4539573A-67AE-4D83-8C00-B6033D69BE45}
2012-02-01 21:02:59    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{ECE21C17-A614-4CCA-9656-31A83A4EE30D}
2012-02-01 21:02:49    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D8EA5671-0747-486E-A2BB-2F1F43C8028F}
2012-02-01 08:46:13    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A7AE4C99-7A25-48DE-9173-F2745F80894E}
2012-02-01 08:46:03    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{46A1F26D-6D6F-4E98-BB07-C2F0AFB7743E}
2012-02-01 08:45:53    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{40A9A3A3-65DA-4BA5-876F-D4236DD533CF}
2012-02-01 08:45:40    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F0BE5FE6-B096-463F-98FD-F871928ADE3E}
2012-01-31 20:40:58    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0F6EF77B-0BF2-4A7D-9465-70F91093AFE2}
2012-01-31 20:40:49    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{44AC53D1-8CCD-49AB-9222-B898D84930A9}
2012-01-31 20:40:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5A8A30B0-3003-4686-A746-B2F5C491AC0C}
2012-01-31 20:40:18    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{15BF36BC-D779-4822-8F08-148AC4AB0FC8}
2012-01-31 08:39:53    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{9A6D431F-0829-4618-A139-2AC67679ADEA}
2012-01-31 08:39:43    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{84205B42-C71A-4B96-9BF3-ADDB3898DB61}
2012-01-31 08:39:33    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CF3079B7-C3A8-44DC-B211-896C2D156BE8}
2012-01-31 08:39:20    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{B5285D04-4D7C-4334-8965-6927B18EACBC}
2012-01-30 20:37:49    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D9FF2EA2-8B72-4287-80D6-1E6253DB7912}
2012-01-30 20:37:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{FF8AAC44-2AC1-4C1A-BEAF-BA675B3A4FC8}
2012-01-30 20:37:29    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{290DE415-A0D8-49F1-B46E-D38AFA69F921}
2012-01-30 20:37:17    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A234B265-A6CB-451B-8370-530900F05C4E}
2012-01-30 07:24:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C4EA928D-E4DE-4BFB-8E89-2576D6A39672}
2012-01-30 07:24:21    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{9FE47AF0-BFAF-4701-87CB-50FB4E165516}
2012-01-30 07:24:11    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5427516B-A405-45D4-A3E8-23256CDF69CE}
2012-01-30 07:23:57    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{7057E1E3-39A0-4CA9-83DC-D3EB20C8085B}
2012-01-29 20:52:33    --------    d-----w-    C:\Program Files\Western Digital
2012-01-29 10:15:42    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{DC6F316F-501E-4BF5-AA37-9EEAB5AED922}
2012-01-29 10:15:32    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{075BC530-955E-4652-8186-335350F371A0}
2012-01-29 10:15:22    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5E2EFB2F-5BCF-4BE5-9B82-B2EFAFF46B3D}
2012-01-29 10:14:59    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{67636AB8-DA18-4AF9-8923-54AB23837C1A}
2012-01-28 13:40:39    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{0D209972-514A-4E56-9890-5B75FFFBFDB6}
2012-01-28 13:40:30    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{C0DC7694-83E9-4B2A-BBF8-F8A9736AD1D5}
2012-01-28 13:40:19    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{35085607-53BF-432F-A062-6667E77F23F8}
2012-01-28 13:40:01    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{EF7C0066-EB8A-4746-AB90-5B0A87BE3096}
2012-01-27 21:24:06    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{3FDE0293-9871-4808-B829-2CBF9842E196}
2012-01-27 21:23:56    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{CC940CC6-8363-4FEA-BD33-EADD9775F0F6}
2012-01-27 21:23:46    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{F2C0CF95-F3EB-49BE-9583-5772E8CA73F9}
2012-01-27 21:23:36    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{5E5F8238-53DB-4118-8322-FCFB77424E90}
2012-01-27 07:03:46    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{A2013D02-8D2C-4037-A744-E667F543805B}
2012-01-27 07:03:36    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{1D771BFA-3ACF-4D46-97F1-928BEEEFFD7E}
2012-01-26 19:03:24    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{D0D08799-D252-4E9A-8270-FB469361E00A}
2012-01-26 19:03:15    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{618CE4FC-37AC-4937-B37C-A35886122834}
2012-01-26 19:03:05    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{DA321D96-C350-4927-AC99-57DF59EC86F2}
2012-01-26 19:02:54    --------    d-----w-    C:\Users\Peter Stidsen\AppData\Local\{AB87AAC8-9C1B-4914-97C8-E11338C9D7F8}
.
==================== Find3M  ====================
.
2012-02-25 17:16:41    472064    --sha-w-    C:\EUMONBMP.SYS
2012-02-25 16:53:36    472808    ----a-w-    C:\Windows\SysWow64\deployJava1.dll
2012-02-18 17:19:09    414368    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-09 15:11:22    424040    ----a-w-    C:\Windows\System32\drivers\afwcore.sys
2012-01-09 15:11:22    39528    ----a-w-    C:\Windows\System32\drivers\afw.sys
2012-01-09 15:11:14    256072    ----a-w-    C:\Windows\System32\drivers\NSKernel.sys
2012-01-09 15:11:14    25160    ----a-w-    C:\Windows\System32\drivers\NSNetmon.sys
2012-01-09 15:11:04    290376    ----a-w-    C:\Windows\System32\drivers\Trufos.sys
2012-01-09 15:10:54    66272    ----a-w-    C:\Windows\System32\drivers\BdSpy.sys
2012-01-09 14:45:58    111064    ----a-w-    C:\Windows\System32\BgGamingMonitor.dll
2012-01-09 14:45:58    100216    ----a-w-    C:\Windows\SysWow64\BgGamingMonitor.dll
2011-12-22 15:54:50    13464    ----a-w-    C:\Windows\System32\drivers\PSVolAcc.sys
2011-12-22 15:54:43    43672    ----a-w-    C:\Windows\System32\drivers\psmounter.sys
2011-12-19 12:45:22    224048    ----a-w-    C:\Windows\System32\drivers\VBoxDrv.sys
2011-12-19 12:45:22    146736    ----a-w-    C:\Windows\System32\drivers\VBoxNetAdp.sys
2011-12-19 12:45:22    130864    ----a-w-    C:\Windows\System32\drivers\VBoxUSBMon.sys
2011-12-19 12:43:54    320816    ----a-w-    C:\Windows\System32\VBoxNetFltNobj.dll
2011-12-19 12:43:54    165680    ----a-w-    C:\Windows\System32\drivers\VBoxNetFlt.sys
2011-12-17 19:17:26    319785    ----a-w-    C:\Users\Peter Stidsen\Empties.bat
2011-12-14 07:11:03    2308096    ----a-w-    C:\Windows\System32\jscript9.dll
2011-12-14 07:04:30    1390080    ----a-w-    C:\Windows\System32\wininet.dll
2011-12-14 07:03:38    1493504    ----a-w-    C:\Windows\System32\inetcpl.cpl
2011-12-14 06:57:28    2382848    ----a-w-    C:\Windows\System32\mshtml.tlb
2011-12-14 03:04:54    1798656    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2011-12-14 02:57:18    1127424    ----a-w-    C:\Windows\SysWow64\wininet.dll
2011-12-14 02:56:58    1427456    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2011-12-14 02:50:04    2382848    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2011-12-10 14:24:08    23152    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2004-09-06 12:59:42    18735434    ----a-w-    C:\Program Files\melodivalg.exe
2006-05-03 10:06:54    163328    --sha-r-    C:\Windows\SysWOW64\flvDX.dll
2007-02-21 11:47:16    31232    --sha-r-    C:\Windows\SysWOW64\msfDX.dll
2008-03-16 13:30:52    216064    --sha-r-    C:\Windows\SysWOW64\nbDX.dll
2010-01-06 22:00:00    107520    --sha-r-    C:\Windows\SysWOW64\TAKDSDecoder.dll
.
============= FINISH: 19:57:07,38 ===============

jeg kan da lige indskyde en sidenote:


Den opdaterede Malwarebytes fandt heller ikke noget.

Vil I smed et svar??

Ingen der vil ha points?

Åbenbart ikke :)