Just nu i M3-nätverket
Gå till innehåll
Eforum är stängt för nya inlägg och svar sedan 20 juni 2022. Klicka för att läsa vad som hände och om alternativ.

whilokii

ikna

Startad av ikna,
i Virus, skadliga program & botemedel

Rekommendera Poster

ikna

ikna

Postad
Postad

Jag har fått in någon skit i min dator som heter Whilokii. Jag kan inte få bort det, har testat med Avast, Adaware, men inget hittar den. Kollade med Hijackthis och det programmet hittade det, men är lite osäker  på hur man ska ta bort det. 

 

Har kört DDS och klistrar in texten här nedan för:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16453
Run by Anki at 23:21:49 on 2013-11-01
Microsoft Windows 8  6.2.9200.0.1252.46.1053.18.3685.1797 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Ad-Aware Antivirus *Disabled/Outdated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Ad-Aware Antivirus *Disabled/Outdated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
.
============== Running Processes ===============
.
C:\windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\system32\dwm.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\WLANExt.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
C:\windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
C:\Program Files (x86)\Whilokii\updateWhilokii.exe
C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe
C:\Program Files\TOSHIBA\Teco\TecoService.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\unsecapp.exe
C:\windows\system32\atieclxx.exe
C:\windows\system32\taskhostex.exe
C:\windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\windows\system32\SearchIndexer.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
C:\Program Files\TOSHIBA\Teco\TecoResident.exe
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
C:\ProgramData\Search Protection\SearchProtection.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
C:\windows\system32\taskhost.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\NGenTask.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe
C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\msiexec.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\vssvc.exe
C:\windows\System32\svchost.exe -k swprv
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_6&idate=2013-11-01&ent=hp&u=FF37F0A38A31738BB578AC52740EA204
uDefault_Page_URL = hxxp://toshiba13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Whilokii: {204df522-9a96-4a72-abb0-60f7a216d6d2} - C:\Program Files (x86)\Whilokii\Whilokiibho.dll
BHO: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll
uRun: [browserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run
uRun: [spotify Web Helper] "C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
uRun: [spotify] "C:\Users\Anki\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
mRun: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [ToshibaDynamicIconUtility] "C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe"
mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
mRun: [search Protection] C:\ProgramData\Search Protection\SearchProtection.exe
IE: E&xportera till Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Ski&cka till OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
TCP: Interfaces\{150D1D7F-A678-453B-AD7E-517EF18857A5} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{1D872EDB-830E-4ACF-B88D-E78CE2A05950} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{20622040-BB76-48C7-9E4D-EEAB5BC74607} : DHCPNameServer = 193.150.193.150 83.255.245.11
TCP: Interfaces\{ADA7BC75-BB46-40FC-9219-0D32C5F57517} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C69E69B6-2939-410A-9BC9-71505932514F} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C86F10B7-3754-44A6-99E3-F195709D6EFF} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{CF25C87E-8D1A-4361-B875-11A7BD8BA9B9} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{EDDA74D8-0738-4AC8-9763-EDC6367F14DA} : NameServer = 80.251.201.177 80.251.201.178
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: Ad-Aware Security Add-on: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [sRS Premium Sound HD] "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe"  /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
x64-Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\Hotkey\TCrdMain_Win8.exe
x64-Run: [TecoResident] C:\Program Files\TOSHIBA\Teco\TecoResident.exe
x64-Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
x64-Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\windows\System32\Drivers\aswRvrt.sys [2013-3-17 65336]
R0 aswVmm;aswVmm;C:\windows\System32\Drivers\aswVmm.sys [2013-3-17 204880]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\Drivers\tos_sps64.sys [2012-10-18 499096]
R1 aswSnx;aswSnx;C:\windows\System32\Drivers\aswSnx.sys [2013-1-19 1030952]
R1 aswSP;aswSP;C:\windows\System32\Drivers\aswSP.sys [2013-1-19 378944]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-8-8 239616]
R2 aswFsBlk;aswFsBlk;C:\windows\System32\Drivers\aswFsBlk.sys [2013-1-19 33400]
R2 aswMonFlt;aswMonFlt;C:\windows\System32\Drivers\aswMonFlt.sys [2013-1-19 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-5 46808]
R2 GFNEXSrv;GFNEX Service;C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-13 156672]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-3-14 346976]
R2 LavasoftAdAwareService11;Ad-Aware Service 11;C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [2013-10-18 517344]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-7-13 769432]
R2 PEGAGFN;PEGAGFN;C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-9-11 14344]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-8-13 289192]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\Drivers\TVALZFL.sys [2012-7-21 16768]
R2 Update Whilokii;Update Whilokii;C:\Program Files (x86)\Whilokii\updateWhilokii.exe [2013-10-5 65304]
R2 Util Whilokii;Util Whilokii;C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [2013-10-9 65304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\windows\System32\Drivers\AtihdW86.sys [2012-7-17 98472]
R3 huawei_enumerator;huawei_enumerator;C:\windows\System32\Drivers\ew_jubusenum.sys [2013-1-19 86016]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\Drivers\RtsUStor.sys [2012-10-18 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\windows\System32\Drivers\Rt630x64.sys [2012-10-18 690832]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
R3 TemproMonitoringService;TEMPRO Service;C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2012-8-14 114656]
R3 TMachInfo;TMachInfo;C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-7-27 53384]
R3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-7-28 458152]
R3 usbfilter;AMD USB Filter Driver;C:\windows\System32\Drivers\usbfilter.sys [2012-10-18 57000]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC;C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-1-19 246112]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\windows\System32\Drivers\ew_hwusbdev.sys [2013-1-19 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\windows\System32\Drivers\ew_usbenumfilter.sys [2013-1-19 13952]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\windows\System32\Drivers\ewusbwwan.sys [2013-1-19 415744]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 ggflt;SEMC USB Flash Driver Filter;C:\windows\System32\Drivers\ggflt.sys [2013-6-22 14448]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial;C:\windows\System32\Drivers\ewusbmdm.sys [2013-1-19 222464]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\Drivers\rdpvideominiport.sys [2013-1-26 27880]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-6-22 155824]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\Drivers\usbaapl64.sys [2012-9-28 53760]
S3 WUDFWpdComp;WUDFWpdComp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
.
=============== Created Last 30 ================
.
2013-11-01 22:11:00 -------- d-----w- C:\Users\Anki\AppData\Local\{5CF48A15-2458-4A2F-8F8E-2D5D58F9729C}
2013-11-01 21:47:34 388096 ----a-r- C:\Users\Anki\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-11-01 21:47:33 -------- d-----w- C:\Program Files (x86)\Trend Micro
2013-11-01 20:43:09 -------- d-----w- C:\Users\Anki\AppData\Roaming\LavasoftStatistics
2013-11-01 20:28:46 -------- d-----w- C:\Program Files\Lavasoft
2013-11-01 20:28:13 -------- d-----w- C:\ProgramData\Search Protection
2013-11-01 20:28:13 -------- d-----w- C:\ProgramData\blekko toolbars
2013-11-01 20:28:12 -------- d-----w- C:\Users\Anki\AppData\Local\adawarebp
2013-11-01 20:28:08 -------- d-----w- C:\ProgramData\Ad-Aware Browsing Protection
2013-11-01 20:27:58 -------- d-----w- C:\Program Files (x86)\Toolbar Cleaner
2013-11-01 20:27:27 -------- d-----w- C:\Program Files (x86)\Lavasoft
2013-11-01 20:24:41 -------- d-----w- C:\Program Files\Common Files\Lavasoft
2013-11-01 20:21:07 623448 ----a-w- C:\windows\System32\drivers\usbhub.sys
2013-11-01 20:21:07 498008 ----a-w- C:\windows\System32\drivers\usbport.sys
2013-11-01 20:21:05 79192 ----a-w- C:\windows\System32\drivers\usbehci.sys
2013-11-01 20:21:05 32256 ----a-w- C:\windows\System32\drivers\usbuhci.sys
2013-11-01 20:21:05 21848 ----a-w- C:\windows\System32\drivers\usbd.sys
2013-11-01 20:21:05 120832 ----a-w- C:\windows\System32\drivers\usbccgp.sys
2013-11-01 20:20:57 102608 ----a-w- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:20:56 124112 ----a-w- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:19:13 -------- d-----w- C:\Users\Anki\AppData\Local\{5B278B13-7C41-4828-BBCB-4984681A4241}
2013-11-01 19:21:27 337752 ----a-w- C:\windows\System32\drivers\USBXHCI.SYS
2013-11-01 19:21:26 447320 ----a-w- C:\windows\System32\drivers\USBHUB3.SYS
2013-11-01 19:21:26 213336 ----a-w- C:\windows\System32\drivers\UCX01000.SYS
2013-11-01 19:21:23 785624 ----a-w- C:\windows\System32\drivers\Wdf01000.sys
2013-11-01 19:21:23 54488 ----a-w- C:\windows\System32\drivers\WdfLdr.sys
2013-11-01 19:09:59 3265256 ----a-w- C:\windows\System32\drivers\evbda.sys
2013-11-01 19:08:19 2397184 ----a-w- C:\windows\System32\WpcMon.exe
2013-11-01 19:07:31 3847168 ----a-w- C:\windows\System32\d2d1.dll
2013-11-01 19:06:50 3964416 ----a-w- C:\windows\System32\WinSAT.exe
2013-11-01 19:06:18 533224 ----a-w- C:\windows\System32\drivers\bxvbda.sys
2013-11-01 19:05:58 3296256 ----a-w- C:\windows\SysWow64\d2d1.dll
2013-11-01 19:05:45 1513984 ----a-w- C:\windows\System32\vssapi.dll
2013-11-01 19:05:15 1314816 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe
2013-11-01 19:04:30 1019392 ----a-w- C:\windows\System32\MsSpellCheckingFacility.dll
2013-11-01 19:04:15 1739264 ----a-w- C:\windows\System32\RacEngn.dll
2013-11-01 19:03:47 2219008 ----a-w- C:\windows\System32\d3d10warp.dll
2013-11-01 19:03:47 1304064 ----a-w- C:\windows\System32\Windows.Media.Streaming.dll
2013-11-01 19:03:25 757248 ----a-w- C:\windows\System32\uDWM.dll
2013-11-01 19:03:18 389360 ----a-w- C:\windows\System32\MMDevAPI.dll
2013-11-01 19:03:02 762368 ----a-w- C:\windows\System32\provcore.dll
2013-11-01 19:02:30 1196032 ----a-w- C:\windows\SysWow64\vssapi.dll
2013-11-01 19:02:14 2033664 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2013-11-01 19:02:02 573440 ----a-w- C:\windows\System32\WinSATAPI.dll
2013-11-01 19:01:53 675840 ----a-w- C:\windows\SysWow64\apphelp.dll
2013-11-01 19:01:50 307192 ----a-w- C:\windows\SysWow64\MMDevAPI.dll
2013-11-01 19:01:46 995328 ----a-w- C:\windows\SysWow64\Windows.Media.Streaming.dll
2013-11-01 19:01:34 634880 ----a-w- C:\windows\System32\apphelp.dll
2013-11-01 19:00:52 709632 ----a-w- C:\windows\SysWow64\MsSpellCheckingFacility.dll
2013-11-01 19:00:36 1743872 ----a-w- C:\windows\System32\combase.dll
2013-11-01 19:00:32 236544 ----a-w- C:\windows\System32\MFPlay.dll
2013-11-01 19:00:01 573952 ----a-w- C:\Program Files\Windows Media Player\wmpnssci.dll
2013-11-01 18:58:58 541184 ----a-w- C:\windows\System32\VAN.dll
2013-11-01 18:58:54 303616 ----a-w- C:\windows\SysWow64\WinSATAPI.dll
2013-11-01 18:58:40 410624 ----a-w- C:\windows\System32\services.exe
2013-11-01 18:58:39 240640 ----a-w- C:\windows\System32\fveapibase.dll
2013-11-01 18:58:27 751104 ----a-w- C:\windows\System32\appwiz.cpl
2013-11-01 18:58:25 80896 ----a-w- C:\windows\System32\mmcss.dll
2013-11-01 18:58:08 28392 ----a-w- C:\windows\System32\drivers\msgpiowin32.sys
2013-11-01 18:56:58 1137152 ----a-w- C:\windows\SysWow64\propsys.dll
2013-11-01 18:55:59 100072 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2013-11-01 18:54:58 21504 ----a-w- C:\windows\SysWow64\perfnet.dll
2013-11-01 18:53:47 39424 ----a-w- C:\windows\SysWow64\perfctrs.dll
2013-11-01 18:52:59 1126912 ----a-w- C:\windows\SysWow64\user32.dll
2013-11-01 18:52:58 98816 ----a-w- C:\windows\SysWow64\sspicli.dll
2013-10-31 23:03:01 652288 ----a-w- C:\windows\System32\comctl32.dll
2013-10-31 23:03:00 541696 ----a-w- C:\windows\SysWow64\comctl32.dll
2013-10-31 23:00:42 83968 ----a-w- C:\windows\System32\drivers\hidclass.sys
2013-10-31 23:00:41 32768 ----a-w- C:\windows\System32\drivers\hidparse.sys
2013-10-31 23:00:41 25600 ----a-w- C:\windows\System32\drivers\usbprint.sys
2013-10-31 22:10:22 -------- d-----w- C:\Program Files\Enigma Software Group
2013-10-31 22:08:32 -------- d-----w- C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-10-31 22:08:25 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2013-10-31 22:07:39 4040192 ----a-w- C:\windows\System32\win32k.sys
2013-10-31 22:03:03 4917760 ----a-w- C:\windows\System32\sppsvc.exe
2013-10-31 22:03:02 209200 ----a-w- C:\windows\System32\NotificationUI.exe
2013-10-31 22:03:01 2371728 ----a-w- C:\windows\System32\WSService.dll
2013-10-31 22:03:00 1164288 ----a-w- C:\windows\System32\sppobjs.dll
2013-10-31 21:37:42 -------- d-----w- C:\Users\Anki\AppData\Local\{B8034DD8-B9BD-4873-8DFB-C93223AA9E13}
2013-10-29 16:34:04 -------- d-----w- C:\Users\Anki\AppData\Local\{50BE714F-100A-4F9D-8561-4DB90C3BA30E}
2013-10-23 16:56:50 -------- d-----w- C:\Users\Anki\AppData\Local\{F5A60931-0ECB-4EC6-933B-774B9AC62D38}
2013-10-22 17:36:19 -------- d-----w- C:\Users\Anki\AppData\Local\{5FB40E13-3487-45F1-AC24-30F16814D6DB}
2013-10-19 19:59:48 -------- d-----w- C:\Users\Anki\AppData\Local\{0332EA04-38C6-4205-BB45-F76B7EF2841A}
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\TOSHIBA Tempro
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\IsolatedStorage
2013-10-19 07:36:53 -------- d-----w- C:\Users\Anki\AppData\Local\{3B880D6A-A483-478B-ADE1-2ED6E68031A6}
2013-10-15 17:58:04 -------- d-----w- C:\Users\Anki\AppData\Local\{09C8DBA6-D57C-4767-922F-0BE0CA7756F5}
2013-10-14 15:49:57 -------- d-----w- C:\Users\Anki\AppData\Local\{A315ED85-4D21-4DA5-9659-69D091D64AF9}
2013-10-13 15:06:04 -------- d-----w- C:\Users\Anki\AppData\Local\{19838262-ECB9-4A4D-93FA-033193237DC6}
2013-10-12 17:03:48 78296 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-12 17:03:48 694232 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-10-12 12:16:10 -------- d-----w- C:\Users\Anki\AppData\Local\{4B061877-8B4E-4151-A67E-85466EAD2EE1}
2013-10-09 16:54:56 -------- d-----w- C:\Users\Anki\AppData\Local\{068AF893-B0F5-41E8-89BC-CE999243122A}
2013-10-08 16:36:26 -------- d-----w- C:\Users\Anki\AppData\Local\{4B2B0073-443B-497E-9F41-123F38282E2C}
2013-10-07 18:28:28 -------- d-----w- C:\Users\Anki\AppData\Local\{3FEC2446-BE72-4369-A8D0-DD4B72F09C65}
2013-10-05 20:56:52 1455368 ----a-w- C:\windows\System32\drivers\dxgkrnl.sys
2013-10-05 20:56:49 303848 ----a-w- C:\windows\System32\drivers\dxgmms1.sys
2013-10-05 20:56:08 -------- d-----w- C:\Program Files (x86)\Whilokii
2013-10-05 20:23:40 -------- d-----w- C:\windows\System32\MRT
2013-10-05 20:07:46 17888 ----a-w- C:\windows\System32\msvcr100_clr0400.dll
2013-10-05 20:06:36 17888 ----a-w- C:\windows\SysWow64\msvcr100_clr0400.dll
2013-10-05 19:44:59 550912 ----a-w- C:\windows\SysWow64\drvstore.dll
2013-10-05 17:36:43 1314816 ----a-w- C:\windows\System32\rpcrt4.dll
2013-10-05 17:36:42 694272 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2013-10-05 17:35:54 2233168 ----a-w- C:\windows\System32\drivers\tcpip.sys
2013-10-05 17:35:52 411880 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
2013-10-05 17:35:46 1255936 ----a-w- C:\windows\System32\certutil.exe
2013-10-05 17:35:46 1013248 ----a-w- C:\windows\SysWow64\certutil.exe
2013-10-05 17:35:45 141312 ----a-w- C:\windows\System32\cryptnet.dll
2013-10-05 17:35:45 109056 ----a-w- C:\windows\SysWow64\cryptnet.dll
2013-10-05 17:34:28 595968 ----a-w- C:\windows\System32\qedit.dll
2013-10-05 17:34:28 496640 ----a-w- C:\windows\SysWow64\qedit.dll
2013-10-05 17:34:27 83688 ----a-w- C:\windows\System32\mcupdate_AuthenticAMD.dll
2013-10-05 17:34:11 375808 ----a-w- C:\windows\SysWow64\ReAgent.dll
2013-10-05 17:34:10 443392 ----a-w- C:\windows\System32\ReAgent.dll
2013-10-05 17:34:10 1011200 ----a-w- C:\windows\System32\reseteng.dll
2013-10-05 17:34:04 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:34:01 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:32:58 1690624 ----a-w- C:\windows\System32\GdiPlus.dll
2013-10-05 17:32:56 1437184 ----a-w- C:\windows\SysWow64\GdiPlus.dll
2013-10-05 17:31:56 20992 ----a-w- C:\windows\System32\drivers\usb8023.sys
2013-10-05 17:31:54 1838080 ----a-w- C:\windows\System32\DWrite.dll
2013-10-05 17:31:53 1421312 ----a-w- C:\windows\SysWow64\DWrite.dll
2013-10-05 17:30:36 3552768 ----a-w- C:\windows\System32\tquery.dll
2013-10-05 17:30:25 2107904 ----a-w- C:\windows\System32\mssrch.dll
2013-10-05 17:30:19 2767360 ----a-w- C:\windows\SysWow64\tquery.dll
2013-10-05 17:30:12 1593344 ----a-w- C:\windows\SysWow64\mssrch.dll
2013-10-05 17:30:11 1829408 ----a-w- C:\windows\System32\ntdll.dll
2013-10-05 17:30:06 1444864 ----a-w- C:\windows\System32\MSAudDecMFT.dll
2013-10-05 17:30:02 1113600 ----a-w- C:\windows\SysWow64\MSAudDecMFT.dll
2013-10-05 17:28:58 9374208 ----a-w- C:\windows\SysWow64\wmploc.DLL
2013-10-05 17:28:57 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2013-10-05 17:28:57 2048 ----a-w- C:\windows\System32\tzres.dll
2013-10-05 17:26:37 888320 ----a-w- C:\windows\System32\autochk.exe
2013-10-05 17:25:41 733184 ----a-w- C:\windows\System32\win32spl.dll
2013-10-05 17:24:42 70144 ----a-w- C:\windows\System32\appinfo.dll
2013-10-05 17:24:42 112872 ----a-w- C:\windows\System32\consent.exe
2013-10-05 17:24:17 6987528 ----a-w- C:\windows\System32\ntoskrnl.exe
2013-10-05 17:18:54 144896 ----a-w- C:\windows\System32\tssdisai.dll
2013-10-05 17:17:42 30720 ----a-w- C:\windows\System32\cryptdlg.dll
2013-10-05 17:17:42 25088 ----a-w- C:\windows\SysWow64\cryptdlg.dll
2013-10-05 17:17:38 2382336 ----a-w- C:\windows\SysWow64\esent.dll
2013-10-05 17:17:37 2851840 ----a-w- C:\windows\System32\esent.dll
2013-10-05 17:15:32 861184 ----a-w- C:\windows\System32\drivers\http.sys
2013-10-05 16:29:42 -------- d-----w- C:\Users\Anki\AppData\Local\ElevatedDiagnostics
2013-10-04 17:21:26 -------- d-----w- C:\Users\Anki\AppData\Local\{75DA0392-48DB-4106-87C6-C8EE3E7B31B4}
2013-10-03 18:14:24 -------- d-----w- C:\Users\Anki\AppData\Local\{3FC0553D-F1D3-4641-82C6-25A08FEBAF6B}
.
==================== Find3M  ====================
.
2013-08-30 07:48:10 72016 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
2013-08-30 07:48:10 65336 ----a-w- C:\windows\System32\drivers\aswRvrt.sys
2013-08-30 07:48:10 204880 ----a-w- C:\windows\System32\drivers\aswVmm.sys
2013-08-30 07:48:10 1030952 ----a-w- C:\windows\System32\drivers\aswSnx.sys
2013-08-30 07:48:09 80816 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
2013-08-30 07:47:40 41664 ----a-w- C:\windows\avastSS.scr
2013-08-16 05:41:13 58200 ----a-w- C:\windows\System32\drivers\dam.sys
2013-08-16 05:22:22 40448 ----a-w- C:\windows\System32\wuapp.exe
2013-08-16 05:20:30 105984 ----a-w- C:\windows\System32\WinSetupUI.dll
2013-08-15 22:43:21 35328 ----a-w- C:\windows\SysWow64\wuapp.exe
2013-08-15 22:43:07 84992 ----a-w- C:\windows\SysWow64\wudriver.dll
2013-08-15 22:43:07 126976 ----a-w- C:\windows\SysWow64attach.txtattach.txt\wuwebv.dll
2013-08-15 22:43:03 562688 ----a-w- C:\windows\SysWow64\WSShared.dll
2013-08-15 22:43:03 159232 ----a-w- C:\windows\SysWow64\WSSync.dll
2013-08-15 22:43:02 83968 ----a-w- C:\windows\SysWow64\OEMLicense.dll
2013-08-15 22:43:02 167424 ----a-w- C:\windows\SysWow64\WSClient.dll
2013-08-15 22:43:02 143872 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-15 22:43:02 124928 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-15 22:42:52 76800 ----a-w- C:\windows\SysWow64\setupcln.dll
2013-08-15 22:42:47 91648 ----a-w- C:\windows\SysWow64\sppc.dll
.
============= FINISH: 23:22:31,66 ===============
 
Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad

Har du försökt avinstallera Whilokii i Kontrollpanelen?

Om inte gör det, starta om datorn och klistra in en ny DDS-logg.

 

Är Avast inställd på att även hitta det som brukar kallas PUP (Potentially Unwanted Programs, dvs möjligen oönskade program)?

Det är inte aktiverat som standard utan man måste själv välja till det.

 

2013-10-05 20:56:52 1455368 ----a-w- C:\windows\System32\drivers\dxgkrnl.sys
2013-10-05 20:56:49 303848 ----a-w- C:\windows\System32\drivers\dxgmms1.sys

Dessa två filer kom in samtidigt som Whilokii så det är nog bäst att kolla upp dem lite mer.

 

På sidan http://www.virustotal.com klickar du på Choose File -knappen och bläddrar fram C:\windows\System32\drivers\dxgkrnl.sys, klicka på Öppna och sedan på Scan it!. Om det kommer upp en fråga om filen ska analyseras om så välj det alternativet. Vänta tills resultatet är klart. Klistra in länken (webbadressen) till resultatet här.

 

Upprepa med C:\windows\System32\drivers\dxgmms1.sys.

Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad

När jag försökte plocka bort det i kontrollpanelen så sa den att den redan var borttagen så jag plockade bort texten och startade om datorn. här kommer den DDS-loggen

 

 DDS (Ver_2012-11-20.01) - NTFS_AMD64 

Internet Explorer: 10.0.9200.16537
Run by Anki at 1:30:06 on 2013-11-02
Microsoft Windows 8  6.2.9200.0.1252.46.1053.18.3685.1500 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Ad-Aware Antivirus *Disabled/Outdated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Ad-Aware Antivirus *Disabled/Outdated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
.
============== Running Processes ===============
.
C:\windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\dwm.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\WLANExt.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
C:\windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
C:\Program Files (x86)\Whilokii\updateWhilokii.exe
C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe
C:\Program Files\TOSHIBA\Teco\TecoService.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\WUDFHost.exe
C:\windows\system32\wbem\unsecapp.exe
C:\windows\System32\svchost.exe -k swprv
C:\windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
C:\windows\system32\atieclxx.exe
C:\windows\system32\taskhostex.exe
C:\windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\SearchProtocolHost.exe
C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
C:\Program Files\TOSHIBA\Teco\TecoResident.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe
C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
\\?\C:\windows\system32\wbem\WMIADAP.EXE
C:\windows\system32\taskhost.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_6&idate=2013-11-01&ent=hp&u=FF37F0A38A31738BB578AC52740EA204
uDefault_Page_URL = hxxp://toshiba13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Whilokii: {204df522-9a96-4a72-abb0-60f7a216d6d2} - C:\Program Files (x86)\Whilokii\Whilokiibho.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [browserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run
uRun: [spotify Web Helper] "C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
uRun: [spotify] "C:\Users\Anki\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
mRun: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [ToshibaDynamicIconUtility] "C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe"
mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [search Protection] C:\ProgramData\Search Protection\SearchProtection.exe
IE: E&xportera till Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Ski&cka till OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
TCP: Interfaces\{150D1D7F-A678-453B-AD7E-517EF18857A5} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{1D872EDB-830E-4ACF-B88D-E78CE2A05950} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{20622040-BB76-48C7-9E4D-EEAB5BC74607} : DHCPNameServer = 193.150.193.150 83.255.245.11
TCP: Interfaces\{ADA7BC75-BB46-40FC-9219-0D32C5F57517} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C69E69B6-2939-410A-9BC9-71505932514F} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C86F10B7-3754-44A6-99E3-F195709D6EFF} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{CF25C87E-8D1A-4361-B875-11A7BD8BA9B9} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{EDDA74D8-0738-4AC8-9763-EDC6367F14DA} : NameServer = 80.251.201.177 80.251.201.178
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [sRS Premium Sound HD] "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe"  /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
x64-Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\Hotkey\TCrdMain_Win8.exe
x64-Run: [TecoResident] C:\Program Files\TOSHIBA\Teco\TecoResident.exe
x64-Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
x64-Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
x64-Run: [AdAwareTray] "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareTray.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\windows\System32\Drivers\aswRvrt.sys [2013-3-17 65336]
R0 aswVmm;aswVmm;C:\windows\System32\Drivers\aswVmm.sys [2013-3-17 204880]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\Drivers\tos_sps64.sys [2012-10-18 499096]
R1 aswSnx;aswSnx;C:\windows\System32\Drivers\aswSnx.sys [2013-1-19 1030952]
R1 aswSP;aswSP;C:\windows\System32\Drivers\aswSP.sys [2013-1-19 378944]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-8-8 239616]
R2 aswFsBlk;aswFsBlk;C:\windows\System32\Drivers\aswFsBlk.sys [2013-1-19 33400]
R2 aswMonFlt;aswMonFlt;C:\windows\System32\Drivers\aswMonFlt.sys [2013-1-19 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-5 46808]
R2 GFNEXSrv;GFNEX Service;C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-13 156672]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-3-14 346976]
R2 LavasoftAdAwareService11;Ad-Aware Service 11;C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [2013-10-18 517344]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-7-13 769432]
R2 PEGAGFN;PEGAGFN;C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-9-11 14344]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-8-13 289192]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\Drivers\TVALZFL.sys [2012-7-21 16768]
R2 Update Whilokii;Update Whilokii;C:\Program Files (x86)\Whilokii\updateWhilokii.exe [2013-10-5 65304]
R2 Util Whilokii;Util Whilokii;C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [2013-10-9 65304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\windows\System32\Drivers\AtihdW86.sys [2012-7-17 98472]
R3 ew_usbenumfilter;huawei_CompositeFilter;C:\windows\System32\Drivers\ew_usbenumfilter.sys [2013-1-19 13952]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\windows\System32\Drivers\ewusbwwan.sys [2013-1-19 415744]
R3 huawei_enumerator;huawei_enumerator;C:\windows\System32\Drivers\ew_jubusenum.sys [2013-1-19 86016]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial;C:\windows\System32\Drivers\ewusbmdm.sys [2013-1-19 222464]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\Drivers\RtsUStor.sys [2012-10-18 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\windows\System32\Drivers\Rt630x64.sys [2012-10-18 690832]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
R3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-7-28 458152]
R3 usbfilter;AMD USB Filter Driver;C:\windows\System32\Drivers\usbfilter.sys [2012-10-18 57000]
R3 WUDFWpdComp;WUDFWpdComp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC;C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-1-19 246112]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\windows\System32\Drivers\ew_hwusbdev.sys [2013-1-19 117248]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 ggflt;SEMC USB Flash Driver Filter;C:\windows\System32\Drivers\ggflt.sys [2013-6-22 14448]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\Drivers\rdpvideominiport.sys [2013-1-26 27880]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-6-22 155824]
S3 TemproMonitoringService;TEMPRO Service;C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2012-8-14 114656]
S3 TMachInfo;TMachInfo;C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-7-27 53384]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\Drivers\usbaapl64.sys [2012-9-28 53760]
.
=============== Created Last 30 ================
.
2013-11-01 22:11:00 -------- d-----w- C:\Users\Anki\AppData\Local\{5CF48A15-2458-4A2F-8F8E-2D5D58F9729C}
2013-11-01 21:48:38 1374208 ----a-w- C:\windows\System32\wdc.dll
2013-11-01 21:48:37 566784 ----a-w- C:\windows\System32\wvc.dll
2013-11-01 21:48:37 1245696 ----a-w- C:\windows\SysWow64\wdc.dll
2013-11-01 21:48:36 462336 ----a-w- C:\windows\System32\sysmon.ocx
2013-11-01 21:48:35 399360 ----a-w- C:\windows\SysWow64\sysmon.ocx
2013-11-01 21:48:34 437248 ----a-w- C:\windows\SysWow64\wvc.dll
2013-11-01 21:47:34 388096 ----a-r- C:\Users\Anki\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-11-01 21:47:33 -------- d-----w- C:\Program Files (x86)\Trend Micro
2013-11-01 21:03:33 356864 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-11-01 21:01:35 3959296 ----a-w- C:\windows\System32\jscript9.dll
2013-11-01 20:59:32 301568 ----a-w- C:\windows\System32\newdev.dll
2013-11-01 20:43:09 -------- d-----w- C:\Users\Anki\AppData\Roaming\LavasoftStatistics
2013-11-01 20:28:46 -------- d-----w- C:\Program Files\Lavasoft
2013-11-01 20:27:27 -------- d-----w- C:\Program Files (x86)\Lavasoft
2013-11-01 20:24:41 -------- d-----w- C:\Program Files\Common Files\Lavasoft
2013-11-01 20:21:07 623448 ----a-w- C:\windows\System32\drivers\usbhub.sys
2013-11-01 20:21:07 498008 ----a-w- C:\windows\System32\drivers\usbport.sys
2013-11-01 20:21:05 79192 ----a-w- C:\windows\System32\drivers\usbehci.sys
2013-11-01 20:21:05 32256 ----a-w- C:\windows\System32\drivers\usbuhci.sys
2013-11-01 20:21:05 21848 ----a-w- C:\windows\System32\drivers\usbd.sys
2013-11-01 20:21:05 120832 ----a-w- C:\windows\System32\drivers\usbccgp.sys
2013-11-01 20:20:57 102608 ----a-w- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:20:56 124112 ----a-w- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:19:13 -------- d-----w- C:\Users\Anki\AppData\Local\{5B278B13-7C41-4828-BBCB-4984681A4241}
2013-11-01 19:21:27 337752 ----a-w- C:\windows\System32\drivers\USBXHCI.SYS
2013-11-01 19:21:26 447320 ----a-w- C:\windows\System32\drivers\USBHUB3.SYS
2013-11-01 19:21:26 213336 ----a-w- C:\windows\System32\drivers\UCX01000.SYS
2013-11-01 19:21:23 785624 ----a-w- C:\windows\System32\drivers\Wdf01000.sys
2013-11-01 19:21:23 54488 ----a-w- C:\windows\System32\drivers\WdfLdr.sys
2013-11-01 19:09:59 3265256 ----a-w- C:\windows\System32\drivers\evbda.sys
2013-11-01 19:08:19 2397184 ----a-w- C:\windows\System32\WpcMon.exe
2013-11-01 19:07:31 3847168 ----a-w- C:\windows\System32\d2d1.dll
2013-11-01 19:06:50 3964416 ----a-w- C:\windows\System32\WinSAT.exe
2013-11-01 19:06:18 533224 ----a-w- C:\windows\System32\drivers\bxvbda.sys
2013-11-01 19:05:58 3296256 ----a-w- C:\windows\SysWow64\d2d1.dll
2013-11-01 19:05:45 1513984 ----a-w- C:\windows\System32\vssapi.dll
2013-11-01 19:05:15 1314816 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe
2013-11-01 19:04:30 1019392 ----a-w- C:\windows\System32\MsSpellCheckingFacility.dll
2013-11-01 19:04:15 1739264 ----a-w- C:\windows\System32\RacEngn.dll
2013-11-01 19:03:47 2219008 ----a-w- C:\windows\System32\d3d10warp.dll
2013-11-01 19:03:47 1304064 ----a-w- C:\windows\System32\Windows.Media.Streaming.dll
2013-11-01 19:03:25 757248 ----a-w- C:\windows\System32\uDWM.dll
2013-11-01 19:03:18 389360 ----a-w- C:\windows\System32\MMDevAPI.dll
2013-11-01 19:03:02 762368 ----a-w- C:\windows\System32\provcore.dll
2013-11-01 19:02:30 1196032 ----a-w- C:\windows\SysWow64\vssapi.dll
2013-11-01 19:02:14 2033664 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2013-11-01 19:02:02 573440 ----a-w- C:\windows\System32\WinSATAPI.dll
2013-11-01 19:01:53 675840 ----a-w- C:\windows\SysWow64\apphelp.dll
2013-11-01 19:01:50 307192 ----a-w- C:\windows\SysWow64\MMDevAPI.dll
2013-11-01 19:01:46 995328 ----a-w- C:\windows\SysWow64\Windows.Media.Streaming.dll
2013-11-01 19:01:34 634880 ----a-w- C:\windows\System32\apphelp.dll
2013-11-01 19:00:52 709632 ----a-w- C:\windows\SysWow64\MsSpellCheckingFacility.dll
2013-11-01 19:00:36 1743872 ----a-w- C:\windows\System32\combase.dll
2013-11-01 19:00:32 236544 ----a-w- C:\windows\System32\MFPlay.dll
2013-11-01 19:00:01 573952 ----a-w- C:\Program Files\Windows Media Player\wmpnssci.dll
2013-11-01 18:58:58 541184 ----a-w- C:\windows\System32\VAN.dll
2013-11-01 18:58:54 303616 ----a-w- C:\windows\SysWow64\WinSATAPI.dll
2013-11-01 18:58:40 410624 ----a-w- C:\windows\System32\services.exe
2013-11-01 18:58:39 240640 ----a-w- C:\windows\System32\fveapibase.dll
2013-11-01 18:58:27 751104 ----a-w- C:\windows\System32\appwiz.cpl
2013-11-01 18:58:25 80896 ----a-w- C:\windows\System32\mmcss.dll
2013-11-01 18:58:08 28392 ----a-w- C:\windows\System32\drivers\msgpiowin32.sys
2013-11-01 18:56:58 1137152 ----a-w- C:\windows\SysWow64\propsys.dll
2013-11-01 18:55:59 100072 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2013-11-01 18:54:58 21504 ----a-w- C:\windows\SysWow64\perfnet.dll
2013-11-01 18:53:47 39424 ----a-w- C:\windows\SysWow64\perfctrs.dll
2013-11-01 18:52:59 1126912 ----a-w- C:\windows\SysWow64\user32.dll
2013-11-01 18:52:58 98816 ----a-w- C:\windows\SysWow64\sspicli.dll
2013-10-31 23:03:01 652288 ----a-w- C:\windows\System32\comctl32.dll
2013-10-31 23:03:00 541696 ----a-w- C:\windows\SysWow64\comctl32.dll
2013-10-31 23:00:42 83968 ----a-w- C:\windows\System32\drivers\hidclass.sys
2013-10-31 23:00:41 32768 ----a-w- C:\windows\System32\drivers\hidparse.sys
2013-10-31 23:00:41 25600 ----a-w- C:\windows\System32\drivers\usbprint.sys
2013-10-31 22:10:22 -------- d-----w- C:\Program Files\Enigma Software Group
2013-10-31 22:08:32 -------- d-----w- C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-10-31 22:08:25 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2013-10-31 22:07:39 4040192 ----a-w- C:\windows\System32\win32k.sys
2013-10-31 22:03:03 4917760 ----a-w- C:\windows\System32\sppsvc.exe
2013-10-31 22:03:02 209200 ----a-w- C:\windows\System32\NotificationUI.exe
2013-10-31 22:03:01 2371728 ----a-w- C:\windows\System32\WSService.dll
2013-10-31 22:03:00 1164288 ----a-w- C:\windows\System32\sppobjs.dll
2013-10-31 21:37:42 -------- d-----w- C:\Users\Anki\AppData\Local\{B8034DD8-B9BD-4873-8DFB-C93223AA9E13}
2013-10-29 16:34:04 -------- d-----w- C:\Users\Anki\AppData\Local\{50BE714F-100A-4F9D-8561-4DB90C3BA30E}
2013-10-23 16:56:50 -------- d-----w- C:\Users\Anki\AppData\Local\{F5A60931-0ECB-4EC6-933B-774B9AC62D38}
2013-10-22 17:36:19 -------- d-----w- C:\Users\Anki\AppData\Local\{5FB40E13-3487-45F1-AC24-30F16814D6DB}
2013-10-19 19:59:48 -------- d-----w- C:\Users\Anki\AppData\Local\{0332EA04-38C6-4205-BB45-F76B7EF2841A}
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\TOSHIBA Tempro
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\IsolatedStorage
2013-10-19 07:36:53 -------- d-----w- C:\Users\Anki\AppData\Local\{3B880D6A-A483-478B-ADE1-2ED6E68031A6}
2013-10-15 17:58:04 -------- d-----w- C:\Users\Anki\AppData\Local\{09C8DBA6-D57C-4767-922F-0BE0CA7756F5}
2013-10-14 15:49:57 -------- d-----w- C:\Users\Anki\AppData\Local\{A315ED85-4D21-4DA5-9659-69D091D64AF9}
2013-10-13 15:06:04 -------- d-----w- C:\Users\Anki\AppData\Local\{19838262-ECB9-4A4D-93FA-033193237DC6}
2013-10-12 17:03:48 78296 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-12 17:03:48 694232 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-10-12 12:16:10 -------- d-----w- C:\Users\Anki\AppData\Local\{4B061877-8B4E-4151-A67E-85466EAD2EE1}
2013-10-09 16:54:56 -------- d-----w- C:\Users\Anki\AppData\Local\{068AF893-B0F5-41E8-89BC-CE999243122A}
2013-10-08 16:36:26 -------- d-----w- C:\Users\Anki\AppData\Local\{4B2B0073-443B-497E-9F41-123F38282E2C}
2013-10-07 18:28:28 -------- d-----w- C:\Users\Anki\AppData\Local\{3FEC2446-BE72-4369-A8D0-DD4B72F09C65}
2013-10-05 20:56:52 1455368 ----a-w- C:\windows\System32\drivers\dxgkrnl.sys
2013-10-05 20:56:49 303848 ----a-w- C:\windows\System32\drivers\dxgmms1.sys
2013-10-05 20:56:08 -------- d-----w- C:\Program Files (x86)\Whilokii
2013-10-05 20:23:40 -------- d-----w- C:\windows\System32\MRT
2013-10-05 20:07:46 17888 ----a-w- C:\windows\System32\msvcr100_clr0400.dll
2013-10-05 20:06:36 17888 ----a-w- C:\windows\SysWow64\msvcr100_clr0400.dll
2013-10-05 19:44:59 550912 ----a-w- C:\windows\SysWow64\drvstore.dll
2013-10-05 17:36:43 1314816 ----a-w- C:\windows\System32\rpcrt4.dll
2013-10-05 17:36:42 694272 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2013-10-05 17:35:52 411880 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
2013-10-05 17:35:46 1255936 ----a-w- C:\windows\System32\certutil.exe
2013-10-05 17:35:46 1013248 ----a-w- C:\windows\SysWow64\certutil.exe
2013-10-05 17:35:45 141312 ----a-w- C:\windows\System32\cryptnet.dll
2013-10-05 17:35:45 109056 ----a-w- C:\windows\SysWow64\cryptnet.dll
2013-10-05 17:34:28 595968 ----a-w- C:\windows\System32\qedit.dll
2013-10-05 17:34:28 496640 ----a-w- C:\windows\SysWow64\qedit.dll
2013-10-05 17:34:27 83688 ----a-w- C:\windows\System32\mcupdate_AuthenticAMD.dll
2013-10-05 17:34:11 375808 ----a-w- C:\windows\SysWow64\ReAgent.dll
2013-10-05 17:34:10 443392 ----a-w- C:\windows\System32\ReAgent.dll
2013-10-05 17:34:10 1011200 ----a-w- C:\windows\System32\reseteng.dll
2013-10-05 17:34:04 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:34:01 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:32:58 1690624 ----a-w- C:\windows\System32\GdiPlus.dll
2013-10-05 17:32:56 1437184 ----a-w- C:\windows\SysWow64\GdiPlus.dll
2013-10-05 17:31:56 20992 ----a-w- C:\windows\System32\drivers\usb8023.sys
2013-10-05 17:31:54 1838080 ----a-w- C:\windows\System32\DWrite.dll
2013-10-05 17:31:53 1421312 ----a-w- C:\windows\SysWow64\DWrite.dll
2013-10-05 17:30:36 3552768 ----a-w- C:\windows\System32\tquery.dll
2013-10-05 17:30:25 2107904 ----a-w- C:\windows\System32\mssrch.dll
2013-10-05 17:30:19 2767360 ----a-w- C:\windows\SysWow64\tquery.dll
2013-10-05 17:30:12 1593344 ----a-w- C:\windows\SysWow64\mssrch.dll
2013-10-05 17:30:11 1829408 ----a-w- C:\windows\System32\ntdll.dll
2013-10-05 17:30:06 1444864 ----a-w- C:\windows\System32\MSAudDecMFT.dll
2013-10-05 17:30:02 1113600 ----a-w- C:\windows\SysWow64\MSAudDecMFT.dll
2013-10-05 17:28:58 9374208 ----a-w- C:\windows\SysWow64\wmploc.DLL
2013-10-05 17:28:57 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2013-10-05 17:28:57 2048 ----a-w- C:\windows\System32\tzres.dll
2013-10-05 17:26:37 888320 ----a-w- C:\windows\System32\autochk.exe
2013-10-05 17:25:41 733184 ----a-w- C:\windows\System32\win32spl.dll
2013-10-05 17:24:42 70144 ----a-w- C:\windows\System32\appinfo.dll
2013-10-05 17:24:42 112872 ----a-w- C:\windows\System32\consent.exe
2013-10-05 17:24:17 6987528 ----a-w- C:\windows\System32\ntoskrnl.exe
2013-10-05 17:18:54 144896 ----a-w- C:\windows\System32\tssdisai.dll
2013-10-05 17:17:42 30720 ----a-w- C:\windows\System32\cryptdlg.dll
2013-10-05 17:17:42 25088 ----a-w- C:\windows\SysWow64\cryptdlg.dll
2013-10-05 17:17:38 2382336 ----a-w- C:\windows\SysWow64\esent.dll
2013-10-05 17:17:37 2851840 ----a-w- C:\windows\System32\esent.dll
2013-10-05 17:15:32 861184 ----a-w- C:\windows\System32\drivers\http.sys
2013-10-05 16:29:42 -------- d-----w- C:\Users\Anki\AppData\Local\ElevatedDiagnostics
2013-10-04 17:21:26 -------- d-----w- C:\Users\Anki\AppData\Local\{75DA0392-48DB-4106-87C6-C8EE3E7B31B4}
2013-10-03 18:14:24 -------- d-----w- C:\Users\Anki\AppData\Local\{3FC0553D-F1D3-4641-82C6-25A08FEBAF6B}
.
==================== Find3M  ====================
.
2013-09-22 23:28:06 1767936 ----a-w- C:\windows\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\windows\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\windows\System32\wininet.dll
2013-08-30 07:48:10 72016 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
2013-08-30 07:48:10 65336 ----a-w- C:\windows\System32\drivers\aswRvrt.sys
2013-08-30 07:48:10 204880 ----a-w- C:\windows\System32\drivers\aswVmm.sys
2013-08-30 07:48:10 1030952 ----a-w- C:\windows\System32\drivers\aswSnx.sys
2013-08-30 07:48:09 80816 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
2013-08-30 07:47:40 41664 ----a-w- C:\windows\avastSS.scr
2013-08-16 05:41:13 58200 ----a-w- C:\windows\System32\drivers\dam.sys
2013-08-16 05:22:22 40448 ----a-w- C:\windows\System32\wuapp.exe
2013-08-16 05:20:30 105984 ----a-w- C:\windows\System32\WinSetupUI.dll
2013-08-15 22:43:21 35328 ----a-w- C:\windows\SysWow64\wuapp.exe
2013-08-15 22:43:07 84992 ----a-w- C:\windows\SysWow64\wudriver.dll
2013-08-15 22:43:07 126976 ----a-w- C:\windows\SysWow64\wuwebv.dll
2013-08-15 22:43:03 562688 ----a-w- C:\windows\SysWow64\WSShared.dll
2013-08-15 22:43:03 159232 ----a-w- C:\windows\SysWow64\WSSync.dll
2013-08-15 22:43:02 83968 ----a-w- C:\windows\SysWow64\OEMLicense.dll
2013-08-15 22:43:02 167424 ----a-w- C:\windows\SysWow64\WSClient.dll
2013-08-15 22:43:02 143872 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-15 22:43:02 124928 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-15 22:42:52 76800 ----a-w- C:\windows\SysWow64\setupcln.dll
2013-08-15 22:42:47 91648 ----a-w- C:\windows\SysWow64\sppc.dll
2013-08-10 05:21:51 448512 ----a-w- C:\windows\System32\SettingSync.dll
2013-08-10 05:21:51 128512 ----a-w- C:\windows\System32\SettingSyncInfo.dll
2013-08-10 03:58:51 356352 ----a-w- C:\windows\SysWow64\SettingSync.dll
.
============= FINISH:  1:32:27,71 ===============
 
 
Nu ska jag kolla upp de filerna som du sa och kommer snart lägga in länken här.
Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad

 

På sidan http://www.virustotal.com klickar du på Choose File -knappen och bläddrar fram C:\windows\System32\drivers\dxgkrnl.sys, klicka på Öppna och sedan påScan it!. Om det kommer upp en fråga om filen ska analyseras om så välj det alternativet. Vänta tills resultatet är klart. Klistra in länken (webbadressen) till resultatet här.

 

Upprepa med C:\windows\System32\drivers\dxgmms1.sys.

 

Jag hittar dem i datorn, men inte när jag väler Choose File?  Detta ser jag när jag ska välja fil (se bifogad fil drivers)post-131836-0-99151600-1383353376_thumb.jpg

Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad
R2 Update Whilokii;Update Whilokii;C:\Program Files (x86)\Whilokii\updateWhilokii.exe [2013-10-5 65304]

R2 Util Whilokii;Util Whilokii;C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [2013-10-9 65304]

 

Högerklicka på Dator och välj Hantera.

Välj Tjänster och program och sedan Tjänster i vänsterkolumnen.

Leta upp Update Whilokii i listan.

Dubbelklicka på den.

Ändra Startmetod till Inaktiverad.

 

Upprepa med Util Whilokii.

 

Starta om datorn.

Ta bort mappen C:\Program (x86)\Whilokii.

 

Starta om datorn.

Hur fungerar datorn nu?

Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad

 

Då kan du klistra in C:\windows\System32\drivers\dxgkrnl.sys i rutan Filnamn i stället.

 
Filen kan inte hittas står det när jag klistrar in texten i filnamn.
 
Jag gick in och gjorde det andra avaktiverade de och startade om plockade bort programet och startade om.
 
Den har ju varit slö, men inget som jag tänkt på utan jag såg bara i ccleaner att det var något program där som jag inte visste vad det var. sökte på det och såg att det inte var något bra ;) Den känns lite piggare faktistk.
 
Vill du att jag ska lägga in en DDS igen?
Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad

DDS

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16537
Run by Anki at 16:08:36 on 2013-11-02
Microsoft Windows 8  6.2.9200.0.1252.46.1053.18.3685.2198 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\system32\dwm.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\atieclxx.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\windows\system32\WLANExt.exe
C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\taskhostex.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService64.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Teco\TecoResident.exe
C:\Program Files\TOSHIBA\Teco\TecoService.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\unsecapp.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe
C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
C:\Users\Anki\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\windows\servicing\TrustedInstaller.exe
C:\windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16683_none_62280e15510f8e79\TiWorker.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\SearchProtocolHost.exe
C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_6&idate=2013-11-01&ent=hp&u=FF37F0A38A31738BB578AC52740EA204
uDefault_Page_URL = hxxp://toshiba13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: Whilokii: {204df522-9a96-4a72-abb0-60f7a216d6d2} - 
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [browserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run
uRun: [spotify Web Helper] "C:\Users\Anki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
uRun: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
uRun: [spotify] "C:\Users\Anki\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
mRun: [intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [ToshibaDynamicIconUtility] "C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe"
mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [TPUReg] "C:\Program Files (x86)\TOSHIBA\Password Utility\TosPU.exe" /Retimes
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [search Protection] C:\ProgramData\Search Protection\SearchProtection.exe
IE: E&xportera till Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Ski&cka till OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
TCP: Interfaces\{150D1D7F-A678-453B-AD7E-517EF18857A5} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{1D872EDB-830E-4ACF-B88D-E78CE2A05950} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{20622040-BB76-48C7-9E4D-EEAB5BC74607} : DHCPNameServer = 193.150.193.150 83.255.245.11
TCP: Interfaces\{ADA7BC75-BB46-40FC-9219-0D32C5F57517} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C69E69B6-2939-410A-9BC9-71505932514F} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{C86F10B7-3754-44A6-99E3-F195709D6EFF} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{CF25C87E-8D1A-4361-B875-11A7BD8BA9B9} : NameServer = 80.251.201.177 80.251.201.178
TCP: Interfaces\{EDDA74D8-0738-4AC8-9763-EDC6367F14DA} : NameServer = 80.251.201.177 80.251.201.178
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [sRS Premium Sound HD] "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe"  /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
x64-Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\Hotkey\TCrdMain_Win8.exe
x64-Run: [TecoResident] C:\Program Files\TOSHIBA\Teco\TecoResident.exe
x64-Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
x64-Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\windows\System32\Drivers\aswRvrt.sys [2013-3-17 65336]
R0 aswVmm;aswVmm;C:\windows\System32\Drivers\aswVmm.sys [2013-3-17 204880]
R0 tos_sps64;TOSHIBA tos_sps64 Service;C:\windows\System32\Drivers\tos_sps64.sys [2012-10-18 499096]
R1 aswSnx;aswSnx;C:\windows\System32\Drivers\aswSnx.sys [2013-1-19 1030952]
R1 aswSP;aswSP;C:\windows\System32\Drivers\aswSP.sys [2013-1-19 378944]
R2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2012-8-8 239616]
R2 aswFsBlk;aswFsBlk;C:\windows\System32\Drivers\aswFsBlk.sys [2013-1-19 33400]
R2 aswMonFlt;aswMonFlt;C:\windows\System32\Drivers\aswMonFlt.sys [2013-1-19 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-5 46808]
R2 GFNEXSrv;GFNEX Service;C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [2011-10-13 156672]
R2 HWDeviceService64.exe;HWDeviceService64.exe;C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-3-14 346976]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-7-13 769432]
R2 PEGAGFN;PEGAGFN;C:\Program Files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [2009-9-11 14344]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\Teco\TecoService.exe [2012-8-13 289192]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\Drivers\TVALZFL.sys [2012-7-21 16768]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\windows\System32\Drivers\AtihdW86.sys [2012-7-17 98472]
R3 ew_usbenumfilter;huawei_CompositeFilter;C:\windows\System32\Drivers\ew_usbenumfilter.sys [2013-1-19 13952]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\windows\System32\Drivers\ewusbwwan.sys [2013-1-19 415744]
R3 huawei_enumerator;huawei_enumerator;C:\windows\System32\Drivers\ew_jubusenum.sys [2013-1-19 86016]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial;C:\windows\System32\Drivers\ewusbmdm.sys [2013-1-19 222464]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\Drivers\RtsUStor.sys [2012-10-18 252048]
R3 RTL8168;Realtek 8168 NT Driver;C:\windows\System32\Drivers\Rt630x64.sys [2012-10-18 690832]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
R3 TemproMonitoringService;TEMPRO Service;C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2012-8-14 114656]
R3 TMachInfo;TMachInfo;C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2012-7-27 53384]
R3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2012-7-28 458152]
R3 usbfilter;AMD USB Filter Driver;C:\windows\System32\Drivers\usbfilter.sys [2012-10-18 57000]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC;C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-1-19 246112]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\windows\System32\Drivers\ew_hwusbdev.sys [2013-1-19 117248]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 ggflt;SEMC USB Flash Driver Filter;C:\windows\System32\Drivers\ggflt.sys [2013-6-22 14448]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\Drivers\rdpvideominiport.sys [2013-1-26 27880]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\Drivers\rtwlane.sys [2012-6-30 1496720]
S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-6-22 155824]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\Drivers\usbaapl64.sys [2012-9-28 53760]
S3 WUDFWpdComp;WUDFWpdComp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S4 Update Whilokii;Update Whilokii;"C:\Program Files (x86)\Whilokii\updateWhilokii.exe" --> C:\Program Files (x86)\Whilokii\updateWhilokii.exe [?]
S4 Util Whilokii;Util Whilokii;"C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe" --> C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [?]
.
=============== Created Last 30 ================
.
2013-11-02 14:19:20 -------- d-----w- C:\Users\Anki\AppData\Local\{135BB5D0-B01E-4258-A416-15538F9DDDB2}
2013-11-01 22:11:00 -------- d-----w- C:\Users\Anki\AppData\Local\{5CF48A15-2458-4A2F-8F8E-2D5D58F9729C}
2013-11-01 21:48:38 1374208 ----a-w- C:\windows\System32\wdc.dll
2013-11-01 21:48:37 566784 ----a-w- C:\windows\System32\wvc.dll
2013-11-01 21:48:37 1245696 ----a-w- C:\windows\SysWow64\wdc.dll
2013-11-01 21:48:36 462336 ----a-w- C:\windows\System32\sysmon.ocx
2013-11-01 21:48:35 399360 ----a-w- C:\windows\SysWow64\sysmon.ocx
2013-11-01 21:48:34 437248 ----a-w- C:\windows\SysWow64\wvc.dll
2013-11-01 21:45:17 2219520 ----a-w- C:\windows\System32\dwmcore.dll
2013-11-01 21:45:11 1842176 ----a-w- C:\windows\SysWow64\dwmcore.dll
2013-11-01 21:45:09 2391280 ----a-w- C:\windows\explorer.exe
2013-11-01 21:45:06 2106176 ----a-w- C:\windows\SysWow64\explorer.exe
2013-11-01 21:45:00 6987008 ----a-w- C:\windows\System32\ntoskrnl.exe
2013-11-01 21:43:38 997632 ----a-w- C:\windows\System32\drivers\ndis.sys
2013-11-01 21:39:59 44032 ----a-w- C:\windows\System32\wbem\netnccim.dll
2013-11-01 21:39:59 22528 ----a-w- C:\windows\System32\adhapi.dll
2013-11-01 21:39:59 17920 ----a-w- C:\windows\System32\httpprxp.dll
2013-11-01 21:39:59 15872 ----a-w- C:\windows\System32\keepaliveprovider.dll
2013-11-01 21:03:33 356864 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-11-01 21:01:35 3959296 ----a-w- C:\windows\System32\jscript9.dll
2013-11-01 20:59:32 301568 ----a-w- C:\windows\System32\newdev.dll
2013-11-01 20:43:09 -------- d-----w- C:\Users\Anki\AppData\Roaming\LavasoftStatistics
2013-11-01 20:27:27 -------- d-----w- C:\Program Files (x86)\Lavasoft
2013-11-01 20:21:07 623448 ----a-w- C:\windows\System32\drivers\usbhub.sys
2013-11-01 20:21:07 498008 ----a-w- C:\windows\System32\drivers\usbport.sys
2013-11-01 20:21:05 79192 ----a-w- C:\windows\System32\drivers\usbehci.sys
2013-11-01 20:21:05 32256 ----a-w- C:\windows\System32\drivers\usbuhci.sys
2013-11-01 20:21:05 21848 ----a-w- C:\windows\System32\drivers\usbd.sys
2013-11-01 20:21:05 120832 ----a-w- C:\windows\System32\drivers\usbccgp.sys
2013-11-01 20:20:57 102608 ----a-w- C:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:20:56 124112 ----a-w- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-11-01 20:19:13 -------- d-----w- C:\Users\Anki\AppData\Local\{5B278B13-7C41-4828-BBCB-4984681A4241}
2013-11-01 19:21:27 337752 ----a-w- C:\windows\System32\drivers\USBXHCI.SYS
2013-11-01 19:21:26 447320 ----a-w- C:\windows\System32\drivers\USBHUB3.SYS
2013-11-01 19:21:26 213336 ----a-w- C:\windows\System32\drivers\UCX01000.SYS
2013-11-01 19:21:23 785624 ----a-w- C:\windows\System32\drivers\Wdf01000.sys
2013-11-01 19:21:23 54488 ----a-w- C:\windows\System32\drivers\WdfLdr.sys
2013-11-01 19:09:59 3265256 ----a-w- C:\windows\System32\drivers\evbda.sys
2013-11-01 19:08:19 2397184 ----a-w- C:\windows\System32\WpcMon.exe
2013-11-01 19:07:31 3847168 ----a-w- C:\windows\System32\d2d1.dll
2013-11-01 19:06:50 3964416 ----a-w- C:\windows\System32\WinSAT.exe
2013-11-01 19:06:18 533224 ----a-w- C:\windows\System32\drivers\bxvbda.sys
2013-11-01 19:05:58 3296256 ----a-w- C:\windows\SysWow64\d2d1.dll
2013-11-01 19:05:45 1513984 ----a-w- C:\windows\System32\vssapi.dll
2013-11-01 19:05:15 1314816 ----a-w- C:\Program Files\Windows Media Player\wmpnetwk.exe
2013-11-01 19:04:30 1019392 ----a-w- C:\windows\System32\MsSpellCheckingFacility.dll
2013-11-01 19:04:15 1739264 ----a-w- C:\windows\System32\RacEngn.dll
2013-11-01 19:03:47 2219008 ----a-w- C:\windows\System32\d3d10warp.dll
2013-11-01 19:03:47 1304064 ----a-w- C:\windows\System32\Windows.Media.Streaming.dll
2013-11-01 19:03:25 757248 ----a-w- C:\windows\System32\uDWM.dll
2013-11-01 19:03:18 389360 ----a-w- C:\windows\System32\MMDevAPI.dll
2013-11-01 19:03:02 762368 ----a-w- C:\windows\System32\provcore.dll
2013-11-01 19:02:30 1196032 ----a-w- C:\windows\SysWow64\vssapi.dll
2013-11-01 19:02:14 2033664 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2013-11-01 19:02:02 573440 ----a-w- C:\windows\System32\WinSATAPI.dll
2013-11-01 19:01:53 675840 ----a-w- C:\windows\SysWow64\apphelp.dll
2013-11-01 19:01:50 307192 ----a-w- C:\windows\SysWow64\MMDevAPI.dll
2013-11-01 19:01:46 995328 ----a-w- C:\windows\SysWow64\Windows.Media.Streaming.dll
2013-11-01 19:01:34 634880 ----a-w- C:\windows\System32\apphelp.dll
2013-11-01 19:00:52 709632 ----a-w- C:\windows\SysWow64\MsSpellCheckingFacility.dll
2013-11-01 19:00:36 1743872 ----a-w- C:\windows\System32\combase.dll
2013-11-01 19:00:32 236544 ----a-w- C:\windows\System32\MFPlay.dll
2013-11-01 19:00:01 573952 ----a-w- C:\Program Files\Windows Media Player\wmpnssci.dll
2013-11-01 18:58:58 541184 ----a-w- C:\windows\System32\VAN.dll
2013-11-01 18:58:54 303616 ----a-w- C:\windows\SysWow64\WinSATAPI.dll
2013-11-01 18:58:40 410624 ----a-w- C:\windows\System32\services.exe
2013-11-01 18:58:39 240640 ----a-w- C:\windows\System32\fveapibase.dll
2013-11-01 18:58:27 751104 ----a-w- C:\windows\System32\appwiz.cpl
2013-11-01 18:58:25 80896 ----a-w- C:\windows\System32\mmcss.dll
2013-11-01 18:56:58 1137152 ----a-w- C:\windows\SysWow64\propsys.dll
2013-11-01 18:55:59 100072 ----a-w- C:\windows\System32\drivers\ksecdd.sys
2013-11-01 18:54:58 21504 ----a-w- C:\windows\SysWow64\perfnet.dll
2013-11-01 18:53:47 39424 ----a-w- C:\windows\SysWow64\perfctrs.dll
2013-11-01 18:52:59 1126912 ----a-w- C:\windows\SysWow64\user32.dll
2013-11-01 18:52:58 98816 ----a-w- C:\windows\SysWow64\sspicli.dll
2013-10-31 23:03:01 652288 ----a-w- C:\windows\System32\comctl32.dll
2013-10-31 23:03:00 541696 ----a-w- C:\windows\SysWow64\comctl32.dll
2013-10-31 23:00:42 83968 ----a-w- C:\windows\System32\drivers\hidclass.sys
2013-10-31 23:00:41 32768 ----a-w- C:\windows\System32\drivers\hidparse.sys
2013-10-31 23:00:41 25600 ----a-w- C:\windows\System32\drivers\usbprint.sys
2013-10-31 22:10:22 -------- d-----w- C:\Program Files\Enigma Software Group
2013-10-31 22:08:32 -------- d-----w- C:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-10-31 22:08:25 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2013-10-31 22:07:39 4040192 ----a-w- C:\windows\System32\win32k.sys
2013-10-31 22:03:03 4917760 ----a-w- C:\windows\System32\sppsvc.exe
2013-10-31 22:03:02 209200 ----a-w- C:\windows\System32\NotificationUI.exe
2013-10-31 22:03:01 2371728 ----a-w- C:\windows\System32\WSService.dll
2013-10-31 22:03:00 1164288 ----a-w- C:\windows\System32\sppobjs.dll
2013-10-31 21:37:42 -------- d-----w- C:\Users\Anki\AppData\Local\{B8034DD8-B9BD-4873-8DFB-C93223AA9E13}
2013-10-29 16:34:04 -------- d-----w- C:\Users\Anki\AppData\Local\{50BE714F-100A-4F9D-8561-4DB90C3BA30E}
2013-10-23 16:56:50 -------- d-----w- C:\Users\Anki\AppData\Local\{F5A60931-0ECB-4EC6-933B-774B9AC62D38}
2013-10-22 17:36:19 -------- d-----w- C:\Users\Anki\AppData\Local\{5FB40E13-3487-45F1-AC24-30F16814D6DB}
2013-10-19 19:59:48 -------- d-----w- C:\Users\Anki\AppData\Local\{0332EA04-38C6-4205-BB45-F76B7EF2841A}
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\TOSHIBA Tempro
2013-10-19 18:43:05 -------- d-----w- C:\ProgramData\IsolatedStorage
2013-10-19 07:36:53 -------- d-----w- C:\Users\Anki\AppData\Local\{3B880D6A-A483-478B-ADE1-2ED6E68031A6}
2013-10-15 17:58:04 -------- d-----w- C:\Users\Anki\AppData\Local\{09C8DBA6-D57C-4767-922F-0BE0CA7756F5}
2013-10-14 15:49:57 -------- d-----w- C:\Users\Anki\AppData\Local\{A315ED85-4D21-4DA5-9659-69D091D64AF9}
2013-10-13 15:06:04 -------- d-----w- C:\Users\Anki\AppData\Local\{19838262-ECB9-4A4D-93FA-033193237DC6}
2013-10-12 17:03:48 78296 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-12 17:03:48 694232 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2013-10-12 12:16:10 -------- d-----w- C:\Users\Anki\AppData\Local\{4B061877-8B4E-4151-A67E-85466EAD2EE1}
2013-10-09 16:54:56 -------- d-----w- C:\Users\Anki\AppData\Local\{068AF893-B0F5-41E8-89BC-CE999243122A}
2013-10-08 16:36:26 -------- d-----w- C:\Users\Anki\AppData\Local\{4B2B0073-443B-497E-9F41-123F38282E2C}
2013-10-07 18:28:28 -------- d-----w- C:\Users\Anki\AppData\Local\{3FEC2446-BE72-4369-A8D0-DD4B72F09C65}
2013-10-05 20:56:52 1455368 ----a-w- C:\windows\System32\drivers\dxgkrnl.sys
2013-10-05 20:56:49 303848 ----a-w- C:\windows\System32\drivers\dxgmms1.sys
2013-10-05 20:23:40 -------- d-----w- C:\windows\System32\MRT
2013-10-05 20:07:46 17888 ----a-w- C:\windows\System32\msvcr100_clr0400.dll
2013-10-05 20:06:36 17888 ----a-w- C:\windows\SysWow64\msvcr100_clr0400.dll
2013-10-05 19:44:59 550912 ----a-w- C:\windows\SysWow64\drvstore.dll
2013-10-05 17:36:43 1314816 ----a-w- C:\windows\System32\rpcrt4.dll
2013-10-05 17:36:42 694272 ----a-w- C:\windows\SysWow64\rpcrt4.dll
2013-10-05 17:35:52 411880 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
2013-10-05 17:35:46 1255936 ----a-w- C:\windows\System32\certutil.exe
2013-10-05 17:35:46 1013248 ----a-w- C:\windows\SysWow64\certutil.exe
2013-10-05 17:35:45 141312 ----a-w- C:\windows\System32\cryptnet.dll
2013-10-05 17:35:45 109056 ----a-w- C:\windows\SysWow64\cryptnet.dll
2013-10-05 17:34:28 595968 ----a-w- C:\windows\System32\qedit.dll
2013-10-05 17:34:28 496640 ----a-w- C:\windows\SysWow64\qedit.dll
2013-10-05 17:34:27 83688 ----a-w- C:\windows\System32\mcupdate_AuthenticAMD.dll
2013-10-05 17:34:11 375808 ----a-w- C:\windows\SysWow64\ReAgent.dll
2013-10-05 17:34:10 443392 ----a-w- C:\windows\System32\ReAgent.dll
2013-10-05 17:34:10 1011200 ----a-w- C:\windows\System32\reseteng.dll
2013-10-05 17:34:04 19187712 ----a-w- C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:34:01 18523648 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-10-05 17:32:58 1690624 ----a-w- C:\windows\System32\GdiPlus.dll
2013-10-05 17:32:56 1437184 ----a-w- C:\windows\SysWow64\GdiPlus.dll
2013-10-05 17:31:56 20992 ----a-w- C:\windows\System32\drivers\usb8023.sys
2013-10-05 17:31:54 1838080 ----a-w- C:\windows\System32\DWrite.dll
2013-10-05 17:31:53 1421312 ----a-w- C:\windows\SysWow64\DWrite.dll
2013-10-05 17:30:36 3552768 ----a-w- C:\windows\System32\tquery.dll
2013-10-05 17:30:25 2107904 ----a-w- C:\windows\System32\mssrch.dll
2013-10-05 17:30:19 2767360 ----a-w- C:\windows\SysWow64\tquery.dll
2013-10-05 17:30:12 1593344 ----a-w- C:\windows\SysWow64\mssrch.dll
2013-10-05 17:30:11 1829408 ----a-w- C:\windows\System32\ntdll.dll
2013-10-05 17:30:06 1444864 ----a-w- C:\windows\System32\MSAudDecMFT.dll
2013-10-05 17:30:02 1113600 ----a-w- C:\windows\SysWow64\MSAudDecMFT.dll
2013-10-05 17:28:58 9374208 ----a-w- C:\windows\SysWow64\wmploc.DLL
2013-10-05 17:28:57 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2013-10-05 17:28:57 2048 ----a-w- C:\windows\System32\tzres.dll
2013-10-05 17:26:37 888320 ----a-w- C:\windows\System32\autochk.exe
2013-10-05 17:25:41 733184 ----a-w- C:\windows\System32\win32spl.dll
2013-10-05 17:24:42 70144 ----a-w- C:\windows\System32\appinfo.dll
2013-10-05 17:24:42 112872 ----a-w- C:\windows\System32\consent.exe
2013-10-05 17:21:44 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll
2013-10-05 17:21:44 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll
2013-10-05 17:21:17 2842112 ----a-w- C:\windows\System32\WMVDECOD.DLL
2013-10-05 17:21:16 2620928 ----a-w- C:\windows\SysWow64\WMVDECOD.DLL
2013-10-05 17:18:54 144896 ----a-w- C:\windows\System32\tssdisai.dll
2013-10-05 17:17:42 30720 ----a-w- C:\windows\System32\cryptdlg.dll
2013-10-05 17:17:42 25088 ----a-w- C:\windows\SysWow64\cryptdlg.dll
2013-10-05 17:17:38 2382336 ----a-w- C:\windows\SysWow64\esent.dll
2013-10-05 17:17:37 2851840 ----a-w- C:\windows\System32\esent.dll
2013-10-05 17:15:32 861184 ----a-w- C:\windows\System32\drivers\http.sys
2013-10-05 16:29:42 -------- d-----w- C:\Users\Anki\AppData\Local\ElevatedDiagnostics
2013-10-04 17:21:26 -------- d-----w- C:\Users\Anki\AppData\Local\{75DA0392-48DB-4106-87C6-C8EE3E7B31B4}
2013-10-03 18:14:24 -------- d-----w- C:\Users\Anki\AppData\Local\{3FC0553D-F1D3-4641-82C6-25A08FEBAF6B}
.
==================== Find3M  ====================
.
2013-09-22 23:28:06 1767936 ----a-w- C:\windows\SysWow64\wininet.dll
2013-09-22 23:27:49 2876928 ----a-w- C:\windows\SysWow64\jscript9.dll
2013-09-22 22:55:10 2241024 ----a-w- C:\windows\System32\wininet.dll
2013-08-30 07:48:10 72016 ----a-w- C:\windows\System32\drivers\aswRdr2.sys
2013-08-30 07:48:10 65336 ----a-w- C:\windows\System32\drivers\aswRvrt.sys
2013-08-30 07:48:10 204880 ----a-w- C:\windows\System32\drivers\aswVmm.sys
2013-08-30 07:48:10 1030952 ----a-w- C:\windows\System32\drivers\aswSnx.sys
2013-08-30 07:48:09 80816 ----a-w- C:\windows\System32\drivers\aswMonFlt.sys
2013-08-30 07:47:40 41664 ----a-w- C:\windows\avastSS.scr
2013-08-16 05:41:13 58200 ----a-w- C:\windows\System32\drivers\dam.sys
2013-08-16 05:22:22 40448 ----a-w- C:\windows\System32\wuapp.exe
2013-08-16 05:20:30 105984 ----a-w- C:\windows\System32\WinSetupUI.dll
2013-08-15 22:43:21 35328 ----a-w- C:\windows\SysWow64\wuapp.exe
2013-08-15 22:43:07 84992 ----a-w- C:\windows\SysWow64\wudriver.dll
2013-08-15 22:43:07 126976 ----a-w- C:\windows\SysWow64\wuwebv.dll
2013-08-15 22:43:03 562688 ----a-w- C:\windows\SysWow64\WSShared.dll
2013-08-15 22:43:03 159232 ----a-w- C:\windows\SysWow64\WSSync.dll
2013-08-15 22:43:02 83968 ----a-w- C:\windows\SysWow64\OEMLicense.dll
2013-08-15 22:43:02 167424 ----a-w- C:\windows\SysWow64\WSClient.dll
2013-08-15 22:43:02 143872 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2013-08-15 22:43:02 124928 ----a-w- C:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-08-15 22:42:52 76800 ----a-w- C:\windows\SysWow64\setupcln.dll
2013-08-15 22:42:47 91648 ----a-w- C:\windows\SysWow64\sppc.dll
2013-08-10 05:21:51 448512 ----a-w- C:\windows\System32\SettingSync.dll
2013-08-10 05:21:51 128512 ----a-w- C:\windows\System32\SettingSyncInfo.dll
2013-08-10 03:58:51 356352 ----a-w- C:\windows\SysWow64\SettingSync.dll
.
============= FINISH: 16:09:38,19 ===============
Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad

Nog finns de två filerna kvar enligt loggen i alla fall.

 

Spara SystemLook på Skrivbordet från:

http://jpshortstuff.247fixes.com/SystemLook_x64.exe

 

Dubbelklicka på SystemLook-filen för att köra den.

 

Kopiera alla rader i rutan

:file
C:\windows\System32\drivers\dxgkrnl.sys
C:\windows\System32\drivers\dxgmms1.sys
och klistra in i det stora textfältet i SýstemLook.

Tryck på knappen Look för att starta sökningen.

När det är klart så kommer Anteckningar upp med en logg, och den klistrar du in här. Om loggen inte kommer upp så finns den som SystemLook.txt på Skrivbordet.

Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad
SystemLook 30.07.11 by jpshortstuff

Log created at 10:34 on 03/11/2013 by Anki

Administrator - Elevation successful

 

========== file ==========

 

C:\windows\System32\drivers\dxgkrnl.sys - File found and opened.

MD5: 6D1B8A9A2C0BD4851D8AF1AB43E67AD9

Created at 20:56 on 05/10/2013

Modified at 02:34 on 16/04/2013

Size: 1455368 bytes

Attributes: --a----

FileDescription: DirectX Graphics Kernel

FileVersion: 6.2.9200.16583 (win8_gdr.130412-1706)

ProductVersion: 6.2.9200.16583

OriginalFilename: dxgkrnl.sys

InternalName: dxgkrnl.sys

ProductName: Microsoft® Windows® Operating System

CompanyName: Microsoft Corporation

LegalCopyright: © Microsoft Corporation. All rights reserved.

 

C:\windows\System32\drivers\dxgmms1.sys - File found and opened.

MD5: 28619B6E5A37F71AE1145643949CFA60

Created at 20:56 on 05/10/2013

Modified at 01:40 on 10/01/2013

Size: 303848 bytes

Attributes: --a----

FileDescription: DirectX Graphics MMS

FileVersion: 6.2.9200.16496 (win8_gdr.130108-1504)

ProductVersion: 6.2.9200.16496

OriginalFilename: dxgmms1.sys

InternalName: dxgmms1.sys

ProductName: Microsoft® Windows® Operating System

CompanyName: Microsoft Corporation

LegalCopyright: © Microsoft Corporation. All rights reserved.

 

-= EOF =-

Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad

Det verkar vara de korrekta filerna från Microsoft. Bra!

 

Skanna datorn online på http://www.eset.com/onlinescan/

För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

 

Avbocka alternativet Remove found threats

Bocka för Scan Archives

 

Klicka på Advanced Settings

Bocka för:

Scan for potentially unwanted applications

Scan for potentially unsafe applications

Enable Anti-Stealth Technology

 

Klicka på Scan

 

När skanningen är klar klicka på List of threats found, följt av Export to a text file. Spara till en fil på skrivbordet, öppna filen, kopiera resultatet och klistra sedan in det i ditt svar.

Länk till kommentar
Dela på andra webbplatser
ikna

ikna

Postad
  • Trådskapare
Postad

Detta är vad som kommer upp efter scanningen.

 

C:\Users\Anki\Downloads\BitlordSetup (1).exe a variant of Win32/InstallCore.CH application
C:\Users\Anki\Downloads\BitlordSetup.exe a variant of Win32/InstallCore.CH application
Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad

Det betyder att de installationsprogrammen även kan installera något tillägg till webbläsare eller liknande. Behöver inte åtgärdas.

 

Är allt bra nu eller har du några fler frågor innan jag skriver hur du ska avinstallera DDS?

Länk till kommentar
Dela på andra webbplatser
Cecilia

Cecilia

Postad
Postad

Ladda ner avinstallationsprogrammet OTC till Skrivbordet.
http://oldtimer.geekstogo.com/OTC.exe
Dubbelklicka på filen för att starta programmet.
Tryck på knappen CleanUp! och DDS m.fl. rensningsprogram kommer att avinstalleras efter en omstart av datorn. Om SystemLook är kvar släng det i papperskorgen och samma sak med eventuella loggar.

Förbättra skyddet i datorn, se mina Råd för en säkrare dator: http://ceciliasec.wordpress.com/rad/
Det är mycket viktigt att hålla alla småprogram i datorn uppdaterade, gamla versioner av t ex Flash, Java och Adobe Reader innehåller kända säkerhetshål, vilka kan användas av en webbsida för att infektera datorn. Jag tycker att Secunias program (länk på min webbsida) är en bra hjälp för att kontrollera hur det står till med säkerhetshål i datorn och ange vad som behöver åtgärdas.

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.

Gå till ämneslista


×
×
  • Skapa nytt...